Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/aDp90ieUL1n0s_g5Y3bjpL5xZXc.roa
File: aDp90ieUL1n0s_g5Y3bjpL5xZXc.roa (raw, json)
Hash identifier: 5TVwjjC/WjRFpPqW97HfhR/6DexOUSd+6aWeBhFQWK0=
Subject key identifier: 68:3A:7D:D2:27:94:2F:59:F4:B3:F8:39:63:76:E3:A4:BE:71:65:77
Certificate issuer: /CN=424feffb576e411de511871dc1e0bd7a20e2c4d7
Certificate serial: 02CB73FE
Authority key identifier: 42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/aDp90ieUL1n0s_g5Y3bjpL5xZXc.roa
Signing time: Sat 01 Jan 2022 16:05:46 +0000
ROA not before: Sat 01 Jan 2022 16:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399471
IP address blocks: 194.99.45.0/24 maxlen: 24
31.210.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46887934 (0x2cb73fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424feffb576e411de511871dc1e0bd7a20e2c4d7
Validity
Not Before: Jan 1 16:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=683a7dd227942f59f4b3f8396376e3a4be716577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ca:82:2c:51:e0:fc:29:58:85:c6:1f:76:12:
78:98:2c:fd:44:f2:f4:36:6b:14:45:37:fa:c3:85:
51:2a:45:2d:bd:e7:e0:cc:dc:9b:56:76:86:4f:e4:
32:07:09:e6:e9:19:f5:ed:51:21:72:bf:41:1d:f3:
65:da:b7:d7:27:61:86:cd:7b:62:40:93:bb:b7:c6:
9d:ad:48:80:64:e3:8d:0f:ef:c7:8f:ec:0b:e2:13:
bd:71:d4:a9:c3:4d:a1:39:c2:90:74:99:23:7a:cd:
c7:8b:c9:33:29:de:f1:45:47:86:5d:4b:43:a0:bf:
f0:56:8c:13:58:ca:c7:c6:c9:f0:c5:7b:27:92:6e:
df:ba:92:38:7e:f0:1f:d6:2b:4b:cf:46:6a:36:a6:
67:07:9b:dc:3b:c3:62:5a:ee:6d:fe:2e:de:81:a7:
a3:a3:e2:3a:19:d9:c8:c3:ae:ab:ae:3e:f5:7f:51:
df:65:87:5f:aa:13:d3:72:16:2e:58:ef:5c:02:a2:
ac:d0:7b:76:c2:9a:cd:d5:a3:bc:55:c5:da:f8:f8:
66:6b:64:27:f2:a7:0f:38:a6:78:8e:a6:62:63:98:
b4:31:e4:b0:af:ac:48:78:bc:15:96:76:78:d2:8e:
32:0a:8d:48:ba:a3:8f:66:65:61:9d:a4:f7:4a:02:
b9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3A:7D:D2:27:94:2F:59:F4:B3:F8:39:63:76:E3:A4:BE:71:65:77
X509v3 Authority Key Identifier:
keyid:42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/aDp90ieUL1n0s_g5Y3bjpL5xZXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/Qk_v-1duQR3lEYcdweC9eiDixNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.22.0/24
194.99.45.0/24
Signature Algorithm: sha256WithRSAEncryption
be:00:3b:be:4b:6a:e2:d6:fc:fe:3b:ca:b4:89:d4:1e:5a:b8:
91:09:5e:2d:37:49:f8:c0:25:eb:01:5a:d4:f7:98:64:9f:42:
cc:5d:5b:09:99:69:27:9e:bb:ea:a1:54:eb:bc:a9:98:ec:79:
86:4c:3d:87:bb:ef:70:02:9d:f3:5b:44:42:08:25:44:46:a7:
38:ee:27:09:f4:75:70:35:fc:8e:3c:14:a5:dc:09:40:97:f5:
20:57:bb:23:a1:5d:68:24:e7:5e:56:1f:fa:4b:d7:39:a1:f2:
ce:76:06:b0:c9:94:5f:27:4f:ff:f5:0e:f8:dd:41:42:11:19:
5c:0c:02:59:66:ad:ab:02:53:e6:31:1a:c6:95:d6:cb:b9:ef:
38:7a:23:c6:99:b4:0f:c8:20:98:af:11:d4:e5:1d:51:72:42:
a2:a3:df:14:57:06:60:ca:03:a4:cd:9f:c7:db:f4:86:fa:2d:
eb:55:8b:d0:86:03:28:40:0f:e1:73:a9:7a:0d:a2:5f:bc:8c:
0d:d6:9f:ec:d7:75:40:6b:0f:43:f0:bd:80:46:ab:ef:01:40:
a0:4c:7f:65:5c:c9:a6:d4:7c:0b:0c:f7:07:11:1a:89:9f:04:
8e:92:63:b9:29:dc:98:c9:aa:cb:66:28:fa:4d:4b:5e:01:c0:
5b:a2:53:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:57 2023 by rpki-client on console-fra.rpki-client.org