Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f406c3-2789-43a5-b1d6-ddddef241216/1/wrGemmAcZuZJ9KUaxmzFvbn_jJ8.roa
File: wrGemmAcZuZJ9KUaxmzFvbn_jJ8.roa (raw, json)
Hash identifier: tDjeBxrWdw2BD6E2riS2B7lcFWlWlC/5kkjONR67qjk=
Subject key identifier: C2:B1:9E:9A:60:1C:66:E6:49:F4:A5:1A:C6:6C:C5:BD:B9:FF:8C:9F
Certificate issuer: /CN=dfec5c945d03535d9673095110546b1c98e61860
Certificate serial: 011A315F
Authority key identifier: DF:EC:5C:94:5D:03:53:5D:96:73:09:51:10:54:6B:1C:98:E6:18:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-xclF0DU12WcwlREFRrHJjmGGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f406c3-2789-43a5-b1d6-ddddef241216/1/wrGemmAcZuZJ9KUaxmzFvbn_jJ8.roa
Signing time: Sat 01 Jan 2022 08:55:37 +0000
ROA not before: Sat 01 Jan 2022 08:55:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197799
IP address blocks: 31.193.200.0/21 maxlen: 21
2a03:1e40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18493791 (0x11a315f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfec5c945d03535d9673095110546b1c98e61860
Validity
Not Before: Jan 1 08:55:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2b19e9a601c66e649f4a51ac66cc5bdb9ff8c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:37:bb:b8:fe:85:00:49:37:47:73:3f:8c:7a:
77:4d:29:78:95:db:a9:28:49:18:ca:0f:db:6b:00:
b0:6d:f5:c2:b6:ab:1e:a2:75:71:c9:4a:d6:f9:91:
00:34:23:3e:10:cb:22:c2:73:55:b2:d3:6b:ae:51:
8e:51:ce:6e:0f:de:5d:5e:99:b9:d0:cc:26:87:6e:
6b:9f:76:e9:96:50:0c:75:47:67:37:89:fa:17:22:
88:17:83:74:cc:4f:c7:60:31:ae:4d:61:45:3d:dd:
df:23:87:04:d9:e3:48:b8:2e:fd:47:65:fb:3b:4d:
1e:b1:7e:d4:dc:0c:42:57:ce:78:7c:63:26:ff:05:
5b:70:68:12:34:6f:80:b7:ae:12:5b:c1:33:e3:6d:
95:50:d5:9e:af:9d:3a:63:c3:49:3e:f1:6d:0e:43:
fc:31:75:a9:eb:cf:61:68:1f:55:ab:72:09:c7:7e:
5a:8c:6b:9a:73:f2:b4:a5:bf:50:1a:e2:b5:72:bb:
6e:df:6b:2a:d5:c6:79:e8:de:49:a2:42:14:5f:f9:
59:26:6d:43:1c:0a:fc:a3:69:8c:9c:da:a1:70:f9:
0e:db:4d:fb:be:98:23:25:75:91:f2:e6:f6:f6:1d:
97:38:4d:cb:f3:73:fd:c8:6a:23:fa:63:58:5d:98:
89:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B1:9E:9A:60:1C:66:E6:49:F4:A5:1A:C6:6C:C5:BD:B9:FF:8C:9F
X509v3 Authority Key Identifier:
keyid:DF:EC:5C:94:5D:03:53:5D:96:73:09:51:10:54:6B:1C:98:E6:18:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-xclF0DU12WcwlREFRrHJjmGGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f406c3-2789-43a5-b1d6-ddddef241216/1/wrGemmAcZuZJ9KUaxmzFvbn_jJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f406c3-2789-43a5-b1d6-ddddef241216/1/3-xclF0DU12WcwlREFRrHJjmGGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.200.0/21
IPv6:
2a03:1e40::/32
Signature Algorithm: sha256WithRSAEncryption
6b:2c:27:bb:31:02:db:fc:91:22:2f:46:08:c1:72:c1:4e:b5:
1e:52:d2:1f:66:be:35:00:b8:d1:14:fa:76:fb:8a:82:5d:9e:
fc:17:eb:c3:81:c2:7f:ee:69:c0:34:47:ad:d6:ec:58:13:43:
80:cc:90:a2:76:53:ca:af:6c:6d:85:2b:ba:bb:6f:b4:5d:50:
dc:c4:30:b1:c3:98:87:89:62:a6:99:51:15:d3:83:b2:22:36:
c4:cc:0e:03:a7:65:a2:e3:45:5c:f3:e1:a8:eb:b9:9b:b0:bf:
cf:95:f9:81:84:e2:3a:bf:f0:b0:42:b6:e5:4d:fd:ce:88:e7:
71:84:e8:a6:87:42:01:cb:f6:31:b2:ca:c2:95:67:a3:59:79:
b7:b0:e8:4b:97:fa:fc:e0:06:97:99:0d:ed:b9:e9:71:c3:c6:
41:37:1c:31:4f:5d:9c:f1:8d:bd:02:fa:77:40:28:25:99:ee:
f5:3b:c4:18:c8:c5:d8:20:32:1d:4d:ab:98:3a:32:9c:89:6f:
3f:37:d1:6a:cd:a6:11:23:75:f9:49:d7:17:a9:c5:7a:23:e0:
2c:b5:8e:eb:8c:09:5e:6f:15:cf:98:20:4e:06:28:ec:c8:10:
b0:ad:b4:90:91:06:29:01:40:4a:7a:0e:07:3f:70:56:de:11:
df:1c:ad:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:14 2023 by rpki-client on console-ams.rpki-client.org