Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/GjAtSm3FVgT_bVATcMYQbFVm5kk.roa
File: GjAtSm3FVgT_bVATcMYQbFVm5kk.roa (raw, json)
Hash identifier: fJeEhI+qnXcOFwzDOwH0ZjXRhgT2XA7pjeUbx8Znqrw=
Subject key identifier: 1A:30:2D:4A:6D:C5:56:04:FF:6D:50:13:70:C6:10:6C:55:66:E6:49
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 1762AA33
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/GjAtSm3FVgT_bVATcMYQbFVm5kk.roa
Signing time: Sat 01 Jan 2022 09:54:03 +0000
ROA not before: Sat 01 Jan 2022 09:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50233
IP address blocks: 212.31.118.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392342067 (0x1762aa33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 1 09:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a302d4a6dc55604ff6d501370c6106c5566e649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:74:93:a3:10:38:b9:d6:14:79:45:20:56:e6:
0f:c6:80:15:68:c4:a3:a3:c5:4b:41:13:80:4f:4b:
4e:1f:17:bd:98:c3:f6:14:91:32:20:3c:47:5b:7a:
24:8f:fb:35:16:9d:e3:fc:36:76:d6:1e:8e:2a:1d:
4f:be:a3:0c:79:e0:c8:0d:e1:02:55:a7:9a:29:14:
c8:c6:65:f4:81:0a:f5:13:8f:01:17:93:61:1e:26:
84:6f:0d:39:61:54:44:a1:b4:86:5c:bd:18:ad:b1:
d3:3a:9c:1b:d4:09:fa:70:f7:2e:c7:19:63:7e:d6:
9d:4c:ff:ba:db:53:9d:72:7f:2b:e4:75:69:db:c6:
0d:da:7e:2a:11:bc:59:4e:e9:28:b7:c3:e6:6d:6e:
a3:3c:5e:75:aa:68:33:7b:9c:c4:ab:8a:e4:38:2c:
ce:ca:4c:21:ba:33:6f:80:02:ba:6d:e7:54:0a:85:
6c:24:9a:4e:13:56:8a:e4:ec:a9:2a:2f:08:12:51:
51:6e:76:4b:1f:aa:0c:b9:14:5e:1c:83:ed:3a:be:
3c:bc:b0:87:bc:00:c6:f4:4a:32:f5:99:5d:9b:41:
2c:81:bd:eb:c5:5f:de:6e:d4:5c:d0:c9:fc:1c:98:
c8:17:5e:94:84:07:51:14:6e:b3:e5:9b:8a:97:17:
b5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:30:2D:4A:6D:C5:56:04:FF:6D:50:13:70:C6:10:6C:55:66:E6:49
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/GjAtSm3FVgT_bVATcMYQbFVm5kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.31.118.0/23
Signature Algorithm: sha256WithRSAEncryption
68:e1:ce:b1:e3:30:4d:b7:34:52:e3:ec:14:83:7b:b8:6e:ce:
ad:aa:a7:7e:9e:51:08:15:99:f9:0c:15:6c:fa:b0:90:ee:aa:
2a:d4:bd:2b:d5:b2:ca:94:b6:31:9f:2d:b2:c5:c8:71:42:bf:
35:8b:af:67:3e:b4:f4:30:f7:c4:d6:ce:05:b5:34:1b:b0:4b:
47:ff:3e:55:1e:ad:a7:0e:26:43:cc:51:57:4d:36:99:f9:f5:
aa:13:53:67:6a:ea:89:65:22:77:1d:f9:04:65:d3:05:9f:c3:
24:77:54:92:ae:a4:20:6e:ec:d9:2a:51:bd:d6:fa:e3:54:82:
c2:d6:04:62:cb:45:03:51:0c:40:f0:1d:d9:66:72:34:35:2f:
79:90:29:0c:44:96:1b:01:9b:58:3e:d1:9b:f3:ad:ee:a3:3f:
2b:d4:78:a9:06:93:1d:1e:fc:26:70:fd:56:ad:5d:2f:22:94:
08:da:3b:89:84:b4:0d:25:e0:b8:4f:3a:e5:99:ce:c7:0c:3e:
70:72:82:d3:dd:71:89:c5:90:50:c2:b3:4d:43:db:27:5d:dc:
5d:f1:dc:65:a5:20:98:83:c6:f6:c4:17:55:c5:4d:31:19:e1:
08:ff:c8:da:4b:f5:72:b1:6b:2f:ee:71:8d:e7:b4:83:6d:9e:
fd:13:a5:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-ams.rpki-client.org