Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/KTv6wqmXNG2Xq5gJlk_Ly96oM4Y.roa
File: KTv6wqmXNG2Xq5gJlk_Ly96oM4Y.roa (raw, json)
Hash identifier: /zTHVGwV5CYzgFxM0MdFwjpUHXkTWtfa6tbjcEy0epw=
Subject key identifier: 29:3B:FA:C2:A9:97:34:6D:97:AB:98:09:96:4F:CB:CB:DE:A8:33:86
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 374C51FE
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/KTv6wqmXNG2Xq5gJlk_Ly96oM4Y.roa
Signing time: Sat 01 Jan 2022 15:06:57 +0000
ROA not before: Sat 01 Jan 2022 15:06:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25098
IP address blocks: 31.222.202.0/23 maxlen: 24
31.222.200.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927748606 (0x374c51fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 15:06:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=293bfac2a997346d97ab9809964fcbcbdea83386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:56:20:ab:e1:cf:96:34:48:0f:0f:28:b1:df:
5c:a7:65:68:81:99:b1:7a:ac:f5:cd:66:69:53:33:
a3:79:7b:21:9f:6d:53:be:45:1e:6e:cb:03:eb:79:
d6:a1:89:89:e9:79:2e:52:13:88:48:99:26:e0:d2:
b7:a4:a1:b6:7d:bf:08:0a:80:8f:bf:e5:aa:38:ee:
ff:14:9a:b8:9a:f1:33:83:1d:26:4a:69:3f:69:e3:
a3:ae:41:17:07:1c:53:87:b6:5c:df:4a:21:d0:2f:
8c:b2:fe:97:6f:76:06:a0:b3:38:2d:49:aa:08:dd:
ea:2b:24:8d:d2:29:56:cb:95:0c:4c:f3:e3:59:a4:
46:ef:c0:be:46:8d:45:a4:32:37:5a:97:8d:bd:ba:
b3:72:65:ea:23:23:c6:b6:2e:7d:37:94:f3:a3:03:
33:34:d6:11:c6:2a:f2:0e:e2:32:89:d3:2f:d7:f1:
99:34:f9:7e:b4:2d:30:bd:55:e2:6b:b1:f7:39:d0:
8a:9d:18:c7:98:cf:55:43:a6:f3:ee:b3:29:12:fd:
60:49:15:ec:f5:36:c5:29:aa:64:e8:5b:f1:a1:fb:
47:d1:c1:1d:89:de:cd:18:6f:ce:dc:e6:32:e3:43:
59:9c:f0:bd:16:a3:cf:1d:a2:79:3c:7e:35:18:97:
bf:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:3B:FA:C2:A9:97:34:6D:97:AB:98:09:96:4F:CB:CB:DE:A8:33:86
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/KTv6wqmXNG2Xq5gJlk_Ly96oM4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.200.0/22
Signature Algorithm: sha256WithRSAEncryption
80:a3:97:b3:0a:01:f5:ad:ac:c0:b1:2d:fe:a7:0e:d3:2d:be:
92:f6:25:a3:a9:47:00:7f:12:ea:b8:2b:7d:76:4a:9e:53:67:
e1:74:d0:32:61:46:43:62:fa:2f:ff:6d:d6:10:4a:7b:9d:ab:
91:98:e7:35:60:e6:07:38:34:a4:78:fe:21:08:a8:5d:8c:0e:
f6:e7:5c:06:2d:c5:dc:c7:bb:89:31:fb:53:e1:d8:bf:af:15:
7f:c6:02:8e:cc:be:60:e8:8a:60:e4:03:8f:60:d7:ec:ee:df:
e3:78:c7:cc:01:7c:62:39:cc:d5:d4:06:01:2f:91:41:2e:d6:
c9:cd:e5:8c:43:5c:b9:1c:c2:2c:20:61:62:d9:a1:d4:de:8f:
55:d0:89:73:5a:96:f4:15:ed:a6:98:39:5f:66:50:2c:ae:2d:
59:71:eb:27:a2:77:8d:f7:0d:bc:d7:dc:72:ad:86:f5:a6:2f:
c7:7e:1f:dc:f1:81:0d:bd:5d:a7:0e:ec:d4:a3:89:e5:75:18:
71:2c:7a:52:94:89:5d:da:de:a6:25:33:41:6c:c6:e4:37:e0:
f8:43:f8:d6:e3:62:53:0f:7f:ca:ad:c3:8a:60:76:a4:eb:30:
88:81:9d:d9:b8:77:62:e9:5b:f4:b8:b7:3e:b2:0b:4c:a5:7a:
6c:58:bc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org