Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b311d4-e358-4721-ab8d-6e6a5f172be3/1/cHjxgVCAZq2hgZyplYaYRzSKAkc.roa
File: cHjxgVCAZq2hgZyplYaYRzSKAkc.roa (raw, json)
Hash identifier: I6xV5FEDD0hj7NQhIyCBp71ALsnkimmq2NUaxDm0S5o=
Subject key identifier: 70:78:F1:81:50:80:66:AD:A1:81:9C:A9:95:86:98:47:34:8A:02:47
Certificate issuer: /CN=0b1027ace17f0067f697c65361488192eaf64138
Certificate serial: 0893D8AF
Authority key identifier: 0B:10:27:AC:E1:7F:00:67:F6:97:C6:53:61:48:81:92:EA:F6:41:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CxAnrOF_AGf2l8ZTYUiBkur2QTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b311d4-e358-4721-ab8d-6e6a5f172be3/1/cHjxgVCAZq2hgZyplYaYRzSKAkc.roa
Signing time: Sat 01 Jan 2022 14:08:47 +0000
ROA not before: Sat 01 Jan 2022 14:08:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209919
IP address blocks: 31.40.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143906991 (0x893d8af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b1027ace17f0067f697c65361488192eaf64138
Validity
Not Before: Jan 1 14:08:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7078f181508066ada1819ca995869847348a0247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d7:84:ad:00:e3:f0:11:05:4b:2f:29:cd:b1:
f6:3b:b0:6d:ec:1d:6f:23:ec:1f:ed:28:75:af:c1:
16:56:75:de:2a:47:d7:cc:88:69:bb:fa:f9:2a:88:
33:ca:33:5c:2d:2b:9b:43:3f:c8:1e:53:52:9c:eb:
b2:6e:8a:01:19:69:af:b6:4b:31:af:39:cb:0e:9b:
3d:c1:e6:19:bd:bd:a6:6c:64:6f:5f:1b:73:03:c3:
7d:52:00:8c:4e:1c:cc:09:bc:da:a6:24:7b:31:4b:
38:de:9f:a6:73:d8:de:dc:73:26:91:8f:cc:13:dd:
2c:7a:97:cf:b4:36:df:27:ae:7b:18:3d:f2:f5:48:
68:06:e3:e8:ca:44:9a:87:5f:76:25:06:15:c1:ed:
ba:39:14:48:e3:b6:a6:d4:52:86:f7:33:38:cc:47:
a1:55:ba:50:e5:76:bd:8a:35:9f:c6:75:b4:87:93:
5d:d7:58:0b:fe:19:7c:87:b6:ed:55:b4:30:dd:ff:
3f:3c:11:eb:59:3e:bf:fa:b6:e3:99:44:8e:f3:40:
77:60:40:76:07:1b:e9:46:e6:c0:b1:10:af:4a:f5:
01:f0:4f:59:65:3b:1d:10:59:be:6e:99:61:a5:fc:
30:c8:4a:44:17:b7:fc:79:1a:7b:7d:a8:24:03:c9:
81:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:78:F1:81:50:80:66:AD:A1:81:9C:A9:95:86:98:47:34:8A:02:47
X509v3 Authority Key Identifier:
keyid:0B:10:27:AC:E1:7F:00:67:F6:97:C6:53:61:48:81:92:EA:F6:41:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CxAnrOF_AGf2l8ZTYUiBkur2QTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b311d4-e358-4721-ab8d-6e6a5f172be3/1/cHjxgVCAZq2hgZyplYaYRzSKAkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b311d4-e358-4721-ab8d-6e6a5f172be3/1/CxAnrOF_AGf2l8ZTYUiBkur2QTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.244.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:90:ae:f5:4a:7e:e0:d2:bc:b8:78:da:67:5b:fb:e8:67:b0:
de:52:bc:e9:ae:82:f1:cb:75:c5:49:73:e9:a4:a6:1d:e6:3e:
54:cc:37:4b:e0:ac:c0:50:b9:39:3d:68:5d:bb:8d:16:5c:e7:
57:db:7c:a5:bf:12:9a:48:35:1c:c9:6f:25:3d:c2:10:90:6e:
1c:6a:b7:f0:04:6e:b8:03:c5:db:36:3d:b5:35:2f:40:4c:a9:
f8:0c:41:81:d1:76:6f:b2:8f:9d:37:ef:03:55:14:c6:4f:e1:
67:7c:b3:de:77:99:65:42:f5:85:c3:a0:46:41:27:b0:76:10:
48:e5:45:39:1b:d2:cb:bf:44:0c:4b:12:7f:03:cf:5c:e7:b6:
e8:77:a0:27:36:2d:0c:c7:78:a6:6c:c8:98:b4:23:3b:9b:32:
66:2f:4f:bd:a3:64:93:18:6d:59:72:71:63:7c:99:8c:8d:75:
3c:55:9e:8b:39:2a:c4:be:77:81:7b:31:36:52:98:3b:60:27:
bc:c0:50:71:2a:b9:51:69:e2:83:45:de:1b:80:30:6e:29:83:
97:7a:3f:8e:cc:5a:ba:82:b7:39:4e:18:60:91:db:c6:76:8e:
68:07:54:57:62:18:41:26:9c:f7:44:22:a8:3f:7c:92:5c:bd:
81:f6:6c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-ams.rpki-client.org