Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa
File: ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa (raw, json)
Hash identifier: x53fYZkRyuYn6ozOhRjD1RCOafrSQ0tkxhO1CoR3AZs=
Subject key identifier: 8A:53:2C:D2:43:17:8B:9B:CC:A4:BC:3E:5E:F4:D6:BE:9F:44:7F:FD
Certificate issuer: /CN=baa63d3ba6dae4a4493bc14a675b94ad2aa45b69
Certificate serial: 013FE904
Authority key identifier: BA:A6:3D:3B:A6:DA:E4:A4:49:3B:C1:4A:67:5B:94:AD:2A:A4:5B:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa
Signing time: Sat 01 Jan 2022 11:56:32 +0000
ROA not before: Sat 01 Jan 2022 11:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 31.217.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20965636 (0x13fe904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa63d3ba6dae4a4493bc14a675b94ad2aa45b69
Validity
Not Before: Jan 1 11:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a532cd243178b9bcca4bc3e5ef4d6be9f447ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:80:64:ca:46:f7:be:d2:5d:2e:60:fb:65:5b:
2f:f3:8a:f5:c1:27:69:97:1e:42:b0:a5:27:ed:90:
40:2a:e3:5c:e1:63:1f:eb:ae:b4:01:a9:fc:bb:4f:
7a:5c:83:51:46:76:6d:1b:d3:57:53:9d:f9:fa:27:
01:ac:2f:a8:79:73:ee:13:d9:3e:e0:a2:48:06:7f:
3a:16:a9:bb:fc:e8:22:63:2b:37:f1:aa:04:0a:a3:
c2:5f:a5:3d:96:0d:35:66:1c:9e:26:5d:ae:f9:82:
55:f1:93:e6:1a:e8:7d:4f:e9:d8:41:6d:56:b4:06:
54:13:5b:d6:29:71:d9:9f:a7:eb:9a:bd:62:e7:12:
76:cf:b1:72:21:ab:20:9b:ab:50:c9:7f:6f:e7:31:
36:41:c0:16:05:fd:d6:c8:35:8b:ee:8a:27:fc:9e:
2e:23:3a:38:dc:15:93:ba:c0:c1:89:83:57:94:9c:
bb:ae:a7:8e:b8:0d:8a:57:4b:63:cc:88:df:47:1c:
de:c4:4f:2c:ff:8c:e8:e2:b0:72:30:9f:47:2e:37:
76:a7:d8:3a:bf:d3:07:85:a4:a8:3c:d3:f5:d6:71:
95:ce:e9:99:cb:7c:1d:2c:87:8d:9b:55:3d:c4:5a:
6d:55:87:4f:8d:19:6c:2f:0a:7d:a9:bf:a8:57:b5:
ce:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:53:2C:D2:43:17:8B:9B:CC:A4:BC:3E:5E:F4:D6:BE:9F:44:7F:FD
X509v3 Authority Key Identifier:
keyid:BA:A6:3D:3B:A6:DA:E4:A4:49:3B:C1:4A:67:5B:94:AD:2A:A4:5B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.248.0/24
Signature Algorithm: sha256WithRSAEncryption
89:09:96:c8:72:10:cc:39:1b:84:29:3c:68:95:5d:8d:2d:4e:
5a:ee:89:8c:ce:c4:a4:78:da:fb:d6:31:d9:30:da:bf:df:74:
03:8b:f5:58:a0:4e:b2:ec:1e:d6:f0:56:0a:07:df:eb:82:93:
e1:2f:e4:2f:15:83:76:97:f0:29:ec:61:9e:02:71:fe:5b:f3:
e5:61:13:2f:49:dc:1a:c1:b4:1c:cc:b4:01:b6:9c:3f:c5:3b:
98:22:9d:3a:24:8c:2a:4b:06:d4:b7:50:85:52:d4:06:5d:23:
48:ef:43:7e:e1:9b:85:50:ce:c2:02:ed:79:2f:9b:2f:2e:82:
d1:7b:a0:ee:f5:b4:59:76:72:d5:83:ff:d1:a3:9a:bb:2e:c8:
e4:90:a5:28:8a:67:a6:b3:c9:3e:ba:64:20:69:6a:70:57:6a:
58:31:3c:0d:da:ef:05:eb:7f:89:b3:a1:e5:ff:de:97:66:dd:
1f:fb:13:61:6b:13:78:f2:b7:e2:d6:92:76:87:87:d5:7a:7c:
0b:f6:d9:66:43:fc:2d:66:df:b7:8e:d0:4e:7b:fd:7d:44:81:
9e:eb:2c:78:da:b4:9b:56:44:d7:ed:c1:d4:27:a6:05:04:07:
f7:7d:5e:3c:5e:1a:42:3a:a4:51:5b:1a:29:f3:80:9a:a0:a8:
e7:ea:e7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:41 2023 by rpki-client on console-fra.rpki-client.org