Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/HGix7CXjZdOA25kO5jr0VSzizik.roa
File: HGix7CXjZdOA25kO5jr0VSzizik.roa (raw, json)
Hash identifier: rW2vuK4wUazxRfsecIsxarjnpbzNM+wpIqDRSP/owgA=
Subject key identifier: 1C:68:B1:EC:25:E3:65:D3:80:DB:99:0E:E6:3A:F4:55:2C:E2:CE:29
Certificate issuer: /CN=dc3884021d1b02e8c16b555743dfeb9da8e48e31
Certificate serial: 3017F18D
Authority key identifier: DC:38:84:02:1D:1B:02:E8:C1:6B:55:57:43:DF:EB:9D:A8:E4:8E:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DiEAh0bAujBa1VXQ9_rnajkjjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/HGix7CXjZdOA25kO5jr0VSzizik.roa
Signing time: Sat 01 Jan 2022 00:53:47 +0000
ROA not before: Sat 01 Jan 2022 00:53:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213340
IP address blocks: 31.31.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 806875533 (0x3017f18d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3884021d1b02e8c16b555743dfeb9da8e48e31
Validity
Not Before: Jan 1 00:53:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c68b1ec25e365d380db990ee63af4552ce2ce29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:62:1d:33:0d:1d:b9:46:37:77:2d:56:76:b2:
5d:69:58:b6:36:f2:bb:7e:a8:86:75:7b:d7:7b:89:
a3:db:95:c9:b6:25:4d:3a:25:d3:d7:a9:2e:3c:a1:
5a:e7:bb:26:e8:34:ac:36:bf:e6:6e:d6:4b:fe:dc:
81:6c:98:29:be:14:a5:dd:12:4e:e1:0a:9a:d7:26:
4b:6c:44:dd:c4:a3:52:ed:7f:52:8b:d1:6b:4f:42:
cb:70:50:94:f8:e2:b4:ea:d7:f0:84:15:ee:4b:de:
9e:09:29:ab:56:84:eb:b5:63:91:c6:ec:e2:2e:82:
db:c1:c7:61:6c:3f:c5:85:13:ad:9d:4b:33:89:4a:
21:f4:65:46:15:45:98:9d:6e:55:f4:2e:ab:c7:e3:
e1:05:48:01:90:e0:3b:99:97:81:7d:f9:ed:44:e2:
a6:ed:03:f7:07:80:7a:44:b7:d0:cd:a9:c4:c4:62:
b6:0a:b7:21:62:5e:97:79:72:2a:51:ab:70:a8:7b:
53:8c:81:89:d2:45:83:0f:3e:34:94:5a:3a:4b:68:
97:fb:d8:b2:cb:62:ec:75:4c:05:a9:f6:ee:89:8c:
28:8b:30:e0:a2:6f:7e:fc:5c:ad:2a:5d:76:39:77:
b6:90:dc:1a:a2:e1:4a:d3:fd:be:2f:9b:a1:38:08:
a6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:68:B1:EC:25:E3:65:D3:80:DB:99:0E:E6:3A:F4:55:2C:E2:CE:29
X509v3 Authority Key Identifier:
keyid:DC:38:84:02:1D:1B:02:E8:C1:6B:55:57:43:DF:EB:9D:A8:E4:8E:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DiEAh0bAujBa1VXQ9_rnajkjjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/HGix7CXjZdOA25kO5jr0VSzizik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/3DiEAh0bAujBa1VXQ9_rnajkjjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.171.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c7:da:f4:59:9f:b9:ca:dd:d8:8e:ae:25:9b:7d:7f:c4:8c:
42:7b:42:67:28:11:e0:90:29:a9:8f:9c:39:71:20:db:d6:65:
47:18:b2:01:aa:6e:f3:98:c6:62:64:90:9a:12:54:23:a3:14:
32:16:ca:97:4c:4c:88:77:92:6c:d7:2e:01:a6:91:1e:08:e0:
95:14:a8:96:cd:d8:26:ef:ba:e5:c3:37:64:b6:8c:a6:af:91:
98:6b:e2:7d:ca:8c:39:db:14:c7:6c:fe:77:08:f0:68:24:07:
65:61:5c:cd:23:ef:d2:5b:02:20:54:39:72:27:1c:84:3b:ba:
4f:87:f3:b9:08:56:b8:bf:e8:af:3e:db:cf:51:1e:9e:fb:32:
8f:83:94:df:0c:5c:20:19:c1:30:6a:3e:a6:e8:60:63:44:d8:
45:91:fc:cc:f0:d0:c9:9a:3a:2d:1b:35:d6:5b:54:65:02:79:
17:c0:2f:c2:2e:a8:51:e7:3a:1b:5e:49:2c:06:46:94:88:2c:
c3:31:ae:b0:8e:e6:6c:ad:5f:e6:0b:ff:d6:b4:9b:02:33:43:
ac:4a:0d:da:b6:90:4c:fd:18:f9:e2:6d:3e:39:94:3d:9f:20:
61:8f:5f:c2:71:fc:9b:64:ae:12:49:e2:d0:80:7b:40:a1:13:
f6:73:02:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-fra.rpki-client.org