Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/g93KDjvF9fmx8r7W1BVUNJDv9Go.roa
File: g93KDjvF9fmx8r7W1BVUNJDv9Go.roa (raw, json)
Hash identifier: l4I4pFTpbnyJ3XEeA90dt+ZfEN7+8YyV+hGRQJ3MVkE=
Subject key identifier: 83:DD:CA:0E:3B:C5:F5:F9:B1:F2:BE:D6:D4:15:54:34:90:EF:F4:6A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: A26982
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/g93KDjvF9fmx8r7W1BVUNJDv9Go.roa
Signing time: Sat 01 Jan 2022 02:56:53 +0000
ROA not before: Sat 01 Jan 2022 02:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33171
IP address blocks: 31.217.254.0/24 maxlen: 24
2a11:7346::/32 maxlen: 32
2a11:7347::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10643842 (0xa26982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Jan 1 02:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83ddca0e3bc5f5f9b1f2bed6d415543490eff46a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:21:1f:ca:19:9e:1c:58:1f:82:b3:30:52:a6:
58:1b:6d:7c:95:16:ef:46:39:f2:8b:75:c5:31:28:
98:7f:9d:8c:33:ca:cf:0c:57:ff:09:b3:bf:97:e2:
c9:40:92:da:50:de:ef:d8:b7:0f:b0:bf:70:b9:6f:
95:72:d5:a2:7a:2b:d5:c6:3f:1e:11:d3:da:51:1b:
e4:58:38:b5:db:7a:fb:37:65:5c:43:66:4a:c4:8e:
4d:60:de:ad:00:e4:bf:18:f0:a2:ef:1b:e0:cb:2a:
78:d2:2c:cd:fb:da:48:42:4d:dd:e0:55:02:01:63:
e7:24:8d:95:17:61:39:65:e4:2e:31:18:ea:62:1d:
c0:53:97:b3:19:5a:20:9c:92:1c:94:9a:52:87:85:
e8:0c:ad:a9:0f:4a:48:1d:87:fd:52:25:28:ba:05:
fb:a9:91:39:6f:b2:5a:8d:da:93:1a:bc:0a:2b:86:
f5:f5:fe:44:54:7c:0a:fa:ac:e6:0c:43:4d:0f:d5:
7b:49:e8:dd:10:16:b4:30:34:cb:83:20:32:c5:04:
b7:71:11:41:70:84:72:18:71:1b:5c:e7:32:1c:d1:
31:73:65:b5:55:6e:54:f6:08:71:ac:00:ec:59:ad:
7e:c7:47:fc:af:3f:71:98:81:ac:cd:58:de:f0:9e:
14:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:DD:CA:0E:3B:C5:F5:F9:B1:F2:BE:D6:D4:15:54:34:90:EF:F4:6A
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/g93KDjvF9fmx8r7W1BVUNJDv9Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.254.0/24
IPv6:
2a11:7346::/31
Signature Algorithm: sha256WithRSAEncryption
f2:a5:d9:de:ae:93:38:02:00:07:ba:d0:76:c2:93:2d:bf:c7:
4b:90:00:10:b1:2c:25:10:f6:3e:d6:d7:ce:1c:e1:07:9d:7e:
6a:f6:d0:e1:e0:c5:9b:17:d3:e7:6c:d3:60:f3:c7:51:f6:2e:
63:24:ef:d3:4b:33:e5:77:e2:57:b7:80:22:64:bb:c6:68:0d:
6a:9c:90:a4:62:96:cb:8b:d8:ef:32:d2:1e:01:43:6e:7f:c3:
cc:2c:73:8c:05:36:a9:b6:f4:b7:40:3c:31:65:66:dc:4a:ea:
b2:9a:4c:78:eb:14:80:b5:db:e9:ef:66:74:11:79:bf:a0:9d:
17:96:74:ce:34:ab:12:67:c7:84:32:25:14:56:48:58:58:e0:
c4:03:e5:c0:67:99:db:88:86:be:3b:a9:7e:23:b3:8a:c3:21:
15:d6:18:af:c8:e6:4f:45:a1:58:d3:68:01:27:51:8f:16:69:
06:f8:fe:b4:cf:74:38:a8:f4:59:31:ba:f7:f0:42:97:c5:98:
e1:56:f2:4a:22:4a:32:23:84:33:e9:76:ad:0c:44:6b:12:96:
e6:4f:e4:bc:97:0c:bc:8d:3b:19:0a:4c:5f:64:4a:92:4c:12:
60:3e:d8:90:e2:8b:46:87:94:7d:58:11:2a:96:09:2b:fc:ce:
38:97:db:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:48:27 2025 by rpki-client