Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/v5SKcqS18EWZTKBGIC3CXb69ETA.roa
File: v5SKcqS18EWZTKBGIC3CXb69ETA.roa (raw, json)
Hash identifier: /PDX8qgyNCFpSO4gtfmmF6QeXBc0qy07vMlPQS611FA=
Subject key identifier: BF:94:8A:72:A4:B5:F0:45:99:4C:A0:46:20:2D:C2:5D:BE:BD:11:30
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 374DA3EF
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/v5SKcqS18EWZTKBGIC3CXb69ETA.roa
Signing time: Sat 01 Jan 2022 15:06:58 +0000
ROA not before: Sat 01 Jan 2022 15:06:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 31.222.204.0/23 maxlen: 24
31.222.206.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927835119 (0x374da3ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 15:06:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf948a72a4b5f045994ca046202dc25dbebd1130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:47:e7:83:15:4d:9a:05:d5:9a:8d:67:f4:2c:
2f:a2:8c:05:f8:80:26:4e:92:26:31:79:00:f9:4b:
ee:dd:2a:15:98:74:23:f0:0f:f4:95:30:80:86:93:
61:b2:ce:4e:af:b5:87:41:4f:54:63:3b:bf:d3:35:
f3:bc:6c:04:73:fc:3e:27:18:bf:b9:6c:75:9c:96:
9d:47:98:0d:6d:81:16:de:f1:4c:77:0d:15:27:1e:
d4:f9:42:84:9b:4a:46:b0:d7:a4:26:61:08:37:10:
6f:f9:4e:34:39:c6:ab:b9:8a:b8:c6:6c:f3:95:40:
b9:19:0f:f5:25:87:1c:d7:fd:9c:8a:83:84:71:14:
da:56:cb:c8:9d:ee:54:7f:1d:50:ed:da:09:71:bc:
1a:c6:8d:65:8f:0c:02:66:81:45:87:f6:1e:02:cb:
ee:6e:0c:16:de:a2:be:87:4f:3a:73:6c:e3:46:b7:
9c:95:18:ff:42:c3:69:7e:43:d6:08:9d:a6:39:d1:
a9:86:40:c4:9a:e3:1b:ef:21:2f:9e:05:46:8c:47:
7a:e8:4d:0a:10:26:e6:eb:5b:2e:aa:6e:73:2a:1b:
a4:d9:a4:f0:72:54:98:f1:ac:96:7f:09:ad:d7:d0:
fe:67:3f:95:08:63:8d:35:fb:5c:d1:e1:38:fe:74:
8f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:94:8A:72:A4:B5:F0:45:99:4C:A0:46:20:2D:C2:5D:BE:BD:11:30
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/v5SKcqS18EWZTKBGIC3CXb69ETA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.204.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:6c:6e:45:97:6a:02:f6:b6:3b:a9:03:98:48:47:9b:e4:4d:
32:62:08:0f:d5:71:76:11:89:97:c0:44:5e:4d:36:4e:56:c4:
6d:ba:34:e8:7d:da:be:bb:d8:5d:43:ab:83:1d:ab:46:cc:52:
9e:46:f9:96:e6:39:7f:7d:dc:42:63:5e:71:09:d2:37:24:ff:
f7:b0:39:97:e7:fc:9c:23:db:a2:ce:df:a1:a5:bb:50:cc:10:
e4:07:3d:48:a3:d0:4e:b9:40:b7:79:8a:83:a3:8b:a7:ef:ec:
7d:fd:a7:63:10:4d:4c:b9:14:9d:d4:a6:98:8b:be:bb:a1:90:
92:c3:df:88:26:bd:0c:f7:88:87:2b:c8:70:17:0c:74:00:e9:
d4:e4:c5:b7:67:53:2a:79:9f:37:92:98:06:52:60:2a:d4:ac:
2a:c2:54:a8:68:d5:5e:e7:40:07:eb:13:36:05:a7:cf:4f:6b:
2e:94:1e:f8:bc:c3:ce:bc:de:35:cf:69:6d:f1:f3:68:33:a6:
b1:7e:b0:aa:5f:36:ff:75:18:51:48:42:22:95:22:02:24:c6:
04:a9:e8:8a:a8:72:48:a8:9c:ec:f4:79:0d:59:7d:09:53:f8:
95:41:03:5f:1d:5c:35:99:6f:53:10:92:0f:2a:a5:97:f8:14:
fb:fa:07:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org