Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/nZP_n7xVGsVlf0ZEZKiO1VEYEkY.roa
File: nZP_n7xVGsVlf0ZEZKiO1VEYEkY.roa (raw, json)
Hash identifier: EVP4YSB0qA8tJE5PfbgYlKrL5qrgFWpl8fySmuErDA4=
Subject key identifier: 9D:93:FF:9F:BC:55:1A:C5:65:7F:46:44:64:A8:8E:D5:51:18:12:46
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 01834A2F26B82730E50954C0BB2894D201C4
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/nZP_n7xVGsVlf0ZEZKiO1VEYEkY.roa
Signing time: Sat 17 Sep 2022 06:42:27 +0000
ROA not before: Sat 17 Sep 2022 06:42:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137443
IP address blocks: 31.14.38.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4a:2f:26:b8:27:30:e5:09:54:c0:bb:28:94:d2:01:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Sep 17 06:42:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d93ff9fbc551ac5657f464464a88ed551181246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fa:9b:1d:1d:bb:df:8a:04:1f:70:d3:0b:f2:
6d:25:b8:45:6a:7b:1a:31:a4:4f:61:03:05:03:40:
d6:fd:82:43:29:46:a2:4a:a1:5d:7d:28:c2:c0:4a:
ce:c1:8d:7a:f6:30:a8:34:fe:ee:4d:8a:e5:3f:ee:
be:6d:8d:46:20:c5:29:84:79:b0:87:99:bf:af:51:
8b:e0:8d:1b:a4:22:b7:16:48:af:e4:de:c2:12:fc:
0f:4b:fa:ec:d2:d6:dc:b3:eb:9b:a5:9b:cd:69:8f:
4e:30:74:66:e2:fa:9d:24:17:c7:b7:1c:25:20:43:
42:dc:2e:d4:d4:1c:59:e7:1b:d7:a2:25:74:d0:cf:
93:61:df:5a:15:88:f4:5b:c9:cc:b1:71:43:51:7a:
78:35:5b:60:57:e6:1a:27:3b:c5:f4:76:de:04:84:
95:fb:82:9b:23:d3:02:c8:0b:77:bf:cc:6e:f6:f7:
43:af:72:99:9e:29:d8:21:71:4b:50:b2:ce:cc:76:
6b:9d:db:92:06:77:9d:c9:d7:ac:b6:0f:fe:da:97:
27:6a:cc:85:a5:d0:6e:40:92:68:c5:4d:59:89:1f:
81:ea:db:a7:19:b3:42:fb:46:c3:f8:ae:c0:33:2d:
18:1c:56:49:fd:07:33:79:e3:a0:4b:d8:c0:96:61:
d5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:93:FF:9F:BC:55:1A:C5:65:7F:46:44:64:A8:8E:D5:51:18:12:46
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/nZP_n7xVGsVlf0ZEZKiO1VEYEkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.38.0/23
Signature Algorithm: sha256WithRSAEncryption
71:e9:bd:8d:87:38:46:53:14:1c:2f:50:a0:1d:ef:44:8f:40:
d8:8f:94:aa:b3:a8:c1:d1:e5:85:d9:6d:3e:fc:cc:cc:4a:56:
54:7b:d8:70:aa:0d:f9:d1:d2:1f:7c:4a:75:7d:32:a2:18:6d:
f1:fe:0e:d7:5d:b6:86:ed:c3:01:7d:59:a1:67:5f:fa:45:fd:
33:63:1a:5e:bc:76:87:7c:51:3f:96:90:c7:bc:64:20:29:a5:
3c:52:b8:eb:c5:e8:b3:92:b8:6f:86:e1:03:3b:a2:94:9f:dd:
d5:dd:98:3e:9b:9d:0f:cb:4d:47:78:e5:9f:f9:7d:c3:03:59:
44:29:ab:d5:67:5c:7e:7e:f2:18:63:67:03:28:fc:fd:4f:12:
5b:07:62:89:7f:03:6d:75:69:d8:40:9d:39:4b:30:50:48:a6:
0b:67:c7:a4:a4:ed:59:61:05:c3:68:3b:67:52:7f:dc:dc:26:
10:68:c8:86:ca:5b:94:dc:7b:9a:42:49:0f:51:1c:7c:dd:e9:
10:82:c7:71:ed:9f:6d:05:70:97:8f:59:d8:14:ae:63:42:76:
e7:00:f9:bb:a2:0c:a8:df:63:a8:c1:32:3f:88:13:63:2a:f6:
0b:a6:f8:2e:44:1b:cd:94:9c:e2:1e:c4:d0:a2:79:58:f6:bc:
71:b0:48:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org