Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Pw9YmG0bASklR-FLQolqJf7qYj4.roa
File: Pw9YmG0bASklR-FLQolqJf7qYj4.roa (raw, json)
Hash identifier: 50BuITtlkIq2Vg18Cs8TV9D2zSXTJzBNojnGIqPedvY=
Subject key identifier: 3F:0F:58:98:6D:1B:01:29:25:47:E1:4B:42:89:6A:25:FE:EA:62:3E
Certificate issuer: /CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Certificate serial: 38019275
Authority key identifier: FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Pw9YmG0bASklR-FLQolqJf7qYj4.roa
Signing time: Sat 01 Jan 2022 10:01:03 +0000
ROA not before: Sat 01 Jan 2022 10:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51411
IP address blocks: 178.236.32.0/22 maxlen: 22
31.25.93.0/24 maxlen: 24
31.25.94.0/24 maxlen: 24
31.25.92.0/24 maxlen: 24
31.25.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939627125 (0x38019275)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Validity
Not Before: Jan 1 10:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f0f58986d1b01292547e14b42896a25feea623e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b9:67:8c:15:6d:b9:8d:6c:1e:ca:fc:d6:31:
de:1e:67:08:98:da:8a:48:c5:be:f1:fd:3a:98:21:
44:ef:e8:4f:9f:8d:a9:51:84:f9:66:46:82:fa:f4:
55:15:fc:0a:25:10:a5:71:8b:fd:6b:71:21:75:b8:
71:7b:6b:cd:c4:61:69:74:68:67:f8:9e:f5:d3:fb:
bf:1f:c2:61:48:c0:c8:80:1b:4c:16:d7:17:18:eb:
ae:00:dd:5a:0f:1f:70:d4:80:6b:38:77:bf:a0:41:
de:6f:68:35:c0:99:c9:f1:21:65:07:2b:75:51:b8:
24:d4:59:2d:9c:98:23:e0:f8:da:fc:99:52:7f:23:
62:f5:ea:30:52:a2:be:0b:7e:55:5d:48:63:5c:9c:
c0:6c:93:f6:fa:8c:43:5a:06:d9:10:eb:dd:59:e3:
49:f5:09:c5:3e:16:9b:62:12:41:32:a5:9e:06:fb:
d2:8a:7b:e2:7f:b3:11:00:e8:1a:c7:41:a0:fa:0c:
b1:67:61:06:21:54:0a:16:8c:1e:fa:b3:76:5f:32:
60:6b:f0:e4:26:15:87:01:3d:3d:b5:c5:24:5b:52:
fa:a2:98:d3:d5:68:98:03:67:09:8f:55:ab:19:3f:
1c:73:a3:b7:a3:9b:c9:4c:13:8a:f1:b6:27:b2:a3:
9e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0F:58:98:6D:1B:01:29:25:47:E1:4B:42:89:6A:25:FE:EA:62:3E
X509v3 Authority Key Identifier:
keyid:FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Pw9YmG0bASklR-FLQolqJf7qYj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/1-j0LwRsp2kStVzBMP4VohwoBnCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.92.0/22
178.236.32.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:cc:b1:90:8d:39:d9:c8:55:ba:6e:67:5d:93:0d:2d:ce:a0:
de:05:e6:77:c3:b8:92:67:2a:a3:b2:76:a5:97:a0:de:be:d3:
94:69:ad:b2:30:15:81:f1:4d:23:21:eb:03:93:94:01:31:5d:
27:74:74:ad:7a:1d:c7:d9:76:77:b3:fc:17:36:38:1c:82:81:
59:56:5b:26:d7:41:d1:bc:12:28:99:87:30:1b:07:26:43:ce:
78:32:ce:95:9b:97:f8:c1:4e:f2:db:6e:c5:5f:c4:28:f4:1b:
6e:28:a5:20:6f:5e:90:ad:8d:fc:eb:90:07:87:f0:89:e6:1d:
e1:23:ce:5b:02:11:90:64:9f:ae:b5:3c:8a:c4:34:fd:f1:0f:
f8:5e:88:1a:cf:ae:e5:4b:f5:76:48:b5:21:c7:10:b8:41:81:
39:0b:b3:1e:73:8d:e9:3b:ab:d2:d7:6d:1e:0f:c9:15:7f:d7:
24:4a:22:25:88:0e:dc:fd:c2:d8:b0:5f:76:d1:45:dd:9f:d9:
63:50:4a:dc:36:8d:a3:a5:89:f2:16:98:64:73:4d:a7:23:fd:
7a:3b:c7:b3:ce:38:2b:a9:51:b8:2c:ea:2b:1f:c9:80:a2:4e:
1f:df:c7:02:29:66:ad:83:e5:7b:e3:4a:7b:79:d7:3a:b5:6e:
5b:c2:0c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:31 2023 by rpki-client on console-fra.rpki-client.org