Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/0a7826-6db0-4662-901a-975ad03d88e6/1/maAtfdZ9p7_VQRt_TXx1hggJelI.roa
File: maAtfdZ9p7_VQRt_TXx1hggJelI.roa (raw, json)
Hash identifier: DYoZ7qazqXwwzkjQ83ep7SvnzOEPjw7iQM/YtwhmQHk=
Subject key identifier: 99:A0:2D:7D:D6:7D:A7:BF:D5:41:1B:7F:4D:7C:75:86:08:09:7A:52
Certificate issuer: /CN=72e6826c8628489db041fe78c09ef28b5421e45c
Certificate serial: 08D33715
Authority key identifier: 72:E6:82:6C:86:28:48:9D:B0:41:FE:78:C0:9E:F2:8B:54:21:E4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuaCbIYoSJ2wQf54wJ7yi1Qh5Fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/0a7826-6db0-4662-901a-975ad03d88e6/1/maAtfdZ9p7_VQRt_TXx1hggJelI.roa
Signing time: Sat 01 Jan 2022 14:54:34 +0000
ROA not before: Sat 01 Jan 2022 14:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34385
IP address blocks: 31.47.200.0/21 maxlen: 21
217.28.192.0/20 maxlen: 20
2a02:24f8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148059925 (0x8d33715)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6826c8628489db041fe78c09ef28b5421e45c
Validity
Not Before: Jan 1 14:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99a02d7dd67da7bfd5411b7f4d7c758608097a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f7:94:92:94:5c:ac:3d:1a:54:0d:af:0d:0e:
03:0e:20:00:31:80:fc:73:15:5f:c2:bc:5d:c3:5a:
ca:b6:9f:91:f9:e5:6f:1a:43:9c:dc:6b:4e:8b:96:
39:e7:59:ca:5c:e5:d9:71:83:10:da:e9:05:c9:62:
24:02:3c:8e:92:ef:9f:f4:f6:b5:52:3f:2e:28:f4:
2b:30:57:78:32:18:e3:75:d6:9b:6e:af:33:ef:08:
c6:ff:d0:6b:45:ab:97:2f:77:b1:3c:ff:35:e5:bb:
0d:fc:df:fb:80:27:5b:5e:63:d7:ff:7d:70:54:dc:
5b:2f:b6:8c:37:c9:c8:e6:08:71:47:63:63:cd:5c:
56:71:f6:1e:a4:55:c1:6e:73:0c:12:f1:8f:b2:3b:
cb:47:4b:27:88:08:0f:09:73:b0:65:56:68:a7:ed:
79:b0:f0:3b:dc:84:96:66:f1:0d:1b:f0:87:b2:65:
b6:e7:e5:56:8c:89:93:65:e5:21:d0:d1:6d:f4:d1:
22:7b:bf:97:8f:3e:cb:ff:58:5d:54:a7:dd:0c:43:
b8:eb:c5:9e:74:57:1e:96:c1:04:35:18:c0:23:bb:
d7:d2:64:3b:9c:76:1b:16:b8:8c:98:71:5a:16:7d:
ec:80:0a:b0:d3:b2:e3:a4:1f:79:5a:9f:4d:1a:2e:
9c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A0:2D:7D:D6:7D:A7:BF:D5:41:1B:7F:4D:7C:75:86:08:09:7A:52
X509v3 Authority Key Identifier:
keyid:72:E6:82:6C:86:28:48:9D:B0:41:FE:78:C0:9E:F2:8B:54:21:E4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuaCbIYoSJ2wQf54wJ7yi1Qh5Fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/0a7826-6db0-4662-901a-975ad03d88e6/1/maAtfdZ9p7_VQRt_TXx1hggJelI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/0a7826-6db0-4662-901a-975ad03d88e6/1/cuaCbIYoSJ2wQf54wJ7yi1Qh5Fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.47.200.0/21
217.28.192.0/20
IPv6:
2a02:24f8::/32
Signature Algorithm: sha256WithRSAEncryption
45:ea:8b:3a:2b:fd:63:b2:9a:b7:fa:55:f8:7b:e4:37:60:21:
5e:bb:6d:59:66:ce:da:a6:e6:26:62:6a:d5:2a:a1:d3:5b:a7:
5f:0c:5c:80:53:44:6d:d7:5c:ce:b1:69:2b:e1:30:21:8d:d3:
f7:41:39:ed:7e:da:38:60:16:c2:e3:4b:da:b7:15:c8:74:0d:
03:cb:7c:b4:a1:f0:b7:64:e8:54:4f:95:44:bb:dd:b2:d1:7c:
b2:c8:f4:19:a6:f8:80:94:46:3d:a1:0c:36:cf:2d:83:04:ef:
f7:d8:8b:cf:af:67:41:e5:58:6b:fb:e1:b1:8f:73:98:c7:c4:
81:76:28:09:e1:86:ee:ca:3a:ae:85:4f:9c:73:41:17:c3:2e:
5a:82:74:9c:f6:b7:13:58:4c:3c:ab:1d:42:36:de:c6:96:f7:
31:06:01:b1:a5:34:75:08:23:67:89:13:94:95:51:48:08:36:
04:b8:9d:37:e9:c6:2c:16:a6:02:a8:32:f2:89:1d:46:d7:b1:
02:27:b4:f4:88:7b:3c:aa:ab:19:1a:05:bb:4a:8e:69:e6:fe:
90:fb:49:d9:df:3a:df:36:73:94:6b:be:c8:89:bc:cb:f8:fd:
cd:f3:92:35:e2:95:a3:fa:e7:66:18:57:25:2c:f5:57:ec:64:
d4:7c:0d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:42 2024 by rpki-client on console-fra.rpki-client.org