Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/9F5B2DTX92UIp6qpeos8FsFCeSU.roa
File: 9F5B2DTX92UIp6qpeos8FsFCeSU.roa (raw, json)
Hash identifier: G/g9BLk4+KR6c6jP1AIV+YlIghxs42z5r9qMcHOK1rg=
Subject key identifier: F4:5E:41:D8:34:D7:F7:65:08:A7:AA:A9:7A:8B:3C:16:C1:42:79:25
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 07F2F804
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/9F5B2DTX92UIp6qpeos8FsFCeSU.roa
Signing time: Sat 01 Jan 2022 01:01:36 +0000
ROA not before: Sat 01 Jan 2022 01:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 31.40.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133363716 (0x7f2f804)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 1 01:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f45e41d834d7f76508a7aaa97a8b3c16c1427925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:c3:74:fe:90:58:f9:c2:2d:c3:73:34:f1:
e4:8d:8d:d6:4f:da:12:3b:6b:c4:51:f3:4b:63:d3:
b3:92:2c:a0:89:ae:63:fb:71:78:df:79:a8:49:58:
c1:ca:0c:71:c8:3d:45:9d:4c:b2:42:ad:3c:97:00:
79:29:19:3a:49:ac:bf:6f:54:53:94:27:b2:ea:ce:
90:f2:96:ff:4d:37:f9:f4:09:c0:c4:19:c0:8f:b7:
51:4f:21:50:63:48:bd:43:21:a0:5c:73:b6:3f:7a:
0b:fc:ce:43:02:3f:6f:ea:42:97:61:c6:39:ae:cd:
73:e4:84:41:8d:0b:8e:d6:65:69:26:51:60:3d:52:
3e:68:57:49:65:d3:22:95:30:67:ac:2c:50:ed:e8:
8d:f2:d9:d1:c7:21:a7:3a:35:53:dc:95:6f:15:90:
02:82:1c:8f:f9:2b:8b:b9:82:eb:9c:95:bc:74:85:
a9:77:08:c6:63:9f:dc:5f:c8:e6:54:59:a6:76:aa:
9f:b0:45:de:54:23:73:c6:0b:81:94:38:4f:5d:61:
bc:28:54:72:68:3f:d9:52:4b:b5:52:56:c2:02:2e:
96:44:b9:66:53:30:29:ff:13:39:30:7d:c2:de:b9:
f8:3e:0b:90:35:25:5d:ad:45:b6:0b:5c:d3:9c:6b:
30:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5E:41:D8:34:D7:F7:65:08:A7:AA:A9:7A:8B:3C:16:C1:42:79:25
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/9F5B2DTX92UIp6qpeos8FsFCeSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.232.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:76:3c:44:21:8a:44:ef:d3:f5:0d:20:a5:ef:80:10:29:4e:
b8:80:47:36:0a:41:98:36:56:2d:39:24:33:43:6d:77:9c:29:
cb:b7:95:dd:be:36:b4:e4:f3:aa:e0:2f:4b:76:ed:24:6e:6a:
b8:af:2c:5d:9a:3a:b1:cb:a3:90:55:af:e1:5c:22:9f:91:ab:
74:38:bc:ee:89:ce:77:9e:a7:74:d1:17:91:3d:a3:b5:87:8a:
4a:f7:61:d8:11:db:f5:f4:45:1e:7a:78:ab:b3:ab:72:8c:53:
84:3f:7c:6c:f1:70:99:f2:93:58:a5:28:bf:fd:d3:80:1e:1d:
60:b1:59:a3:14:b1:e5:6c:87:11:51:df:0b:dd:1f:11:b6:53:
27:67:6f:84:2d:e5:d8:35:c9:df:b3:c2:62:bb:69:73:a8:7d:
85:47:74:be:11:9d:1d:84:c5:31:03:df:bb:93:5d:fe:d8:60:
a0:09:76:5e:d3:17:71:ae:ce:11:3b:46:57:e2:a9:16:96:32:
dd:94:79:bb:92:b6:32:c6:0d:5a:5e:fe:7b:f5:0f:72:a6:26:
ee:f8:f9:f9:d7:1b:cd:03:b9:d6:22:c9:4b:29:79:7b:49:f9:
4f:74:e4:e9:6a:0a:aa:fe:26:c9:81:97:3f:e0:8e:e4:ae:be:
48:6b:f0:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:57 2023 by rpki-client on console-fra.rpki-client.org