Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/0gG8Ar0ioBobVF9dnNhJ5HS6OJk.roa
File: 0gG8Ar0ioBobVF9dnNhJ5HS6OJk.roa (raw, json)
Hash identifier: KLJopi9TMbarch+0iszhygF1yWceetVAbRgkQ/gOi4w=
Subject key identifier: D2:01:BC:02:BD:22:A0:1A:1B:54:5F:5D:9C:D8:49:E4:74:BA:38:99
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 0183BBCD5E4BB759E21C53AB96F2DA8EBB2F
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/0gG8Ar0ioBobVF9dnNhJ5HS6OJk.roa
Signing time: Sun 09 Oct 2022 08:12:21 +0000
ROA not before: Sun 09 Oct 2022 08:12:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212335
IP address blocks: 31.193.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:bb:cd:5e:4b:b7:59:e2:1c:53:ab:96:f2:da:8e:bb:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Oct 9 08:12:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d201bc02bd22a01a1b545f5d9cd849e474ba3899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7c:10:21:87:36:1e:08:22:8c:2c:9c:6e:1d:
f4:a4:5a:db:11:ae:e8:01:0e:49:ba:a1:64:36:4f:
83:05:b0:34:8f:05:9b:c0:de:ad:b2:8d:09:9d:75:
d1:6c:57:28:62:97:f6:38:b2:fc:a6:97:23:2a:ff:
b6:ef:01:d3:d5:03:d6:7d:72:bd:d2:bc:2d:31:5b:
53:26:61:e9:d3:db:aa:40:45:a0:6b:d1:be:7e:08:
0f:8d:91:74:65:9e:5a:16:e5:5e:d9:60:d1:78:38:
2a:2e:fd:5b:63:f2:8c:de:8f:4b:1c:13:3f:ae:c0:
05:f2:d7:a9:2c:8e:11:fb:47:ff:c9:2d:10:48:be:
09:53:eb:0b:44:12:01:e4:54:8a:4d:b6:76:78:51:
12:d7:35:60:91:9a:98:60:79:4c:23:66:96:1e:8c:
3b:75:a7:9e:5d:79:3a:99:0a:51:a7:12:14:a5:40:
16:cd:1e:94:d8:af:0d:65:11:82:fe:6e:40:dd:1a:
d1:56:32:ee:37:b5:cc:33:72:52:17:c9:20:f8:a2:
6f:c4:84:cf:24:99:07:cf:3d:7d:87:48:7a:7f:28:
20:f7:fa:1b:8e:45:d8:2c:5c:58:3a:e4:59:ef:61:
00:f1:7c:97:93:fb:a1:fa:b8:61:f7:4f:a8:9b:06:
94:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:01:BC:02:BD:22:A0:1A:1B:54:5F:5D:9C:D8:49:E4:74:BA:38:99
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/0gG8Ar0ioBobVF9dnNhJ5HS6OJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.244.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:b4:01:73:90:15:ae:86:95:2b:37:70:a0:8e:a6:df:6a:4f:
ed:59:38:9e:bc:0a:f2:ba:c6:33:d1:d8:7e:82:73:8d:b6:bd:
00:3a:e8:5b:d2:58:30:f8:b8:58:c5:6d:d1:a7:13:b3:57:58:
32:80:90:0c:9f:7a:78:2d:20:31:9e:77:3e:d6:0f:0e:63:5c:
5d:34:10:d9:3a:35:c7:4d:a5:d2:2c:32:81:73:24:52:90:ab:
ee:bb:9e:dd:7b:66:18:70:a2:cd:f3:df:49:c8:b8:64:96:20:
33:46:9c:59:d1:e7:a7:09:45:6e:8c:c8:c5:53:0f:58:ae:7f:
40:2f:1a:ee:2c:bc:8d:20:04:a3:10:75:3c:79:ce:07:e1:2c:
07:e2:83:da:48:d2:7d:ab:3c:4b:b7:bd:d4:16:e3:c5:03:19:
78:ef:c5:e8:41:1e:19:17:e4:7c:29:7e:7d:df:a9:90:38:80:
d6:e5:d2:3b:c0:dc:00:1e:3b:9d:b7:b1:ea:33:a0:cf:68:7c:
29:1e:7b:20:5f:dd:84:2b:b5:4a:ff:da:fc:83:73:6b:af:3f:
5d:7a:0e:58:1f:53:9f:db:81:47:59:db:b3:4e:fd:38:0a:b9:
fa:f5:87:0b:a5:f8:08:73:ef:ae:23:dc:18:32:38:8e:4a:67:
9f:a3:64:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:26 2024 by rpki-client on console-ams.rpki-client.org