Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/531d2b-e170-49a5-8404-92f73f56fc62/1/17fXs5sEaqDmwdMNOuJTfBEfQow.roa
File: 17fXs5sEaqDmwdMNOuJTfBEfQow.roa (raw, json)
Hash identifier: cSan6FUADT7aLNdf9vU4dmIEBi7vXidk5OzO1oeV1xw=
Subject key identifier: D7:B7:D7:B3:9B:04:6A:A0:E6:C1:D3:0D:3A:E2:53:7C:11:1F:42:8C
Certificate issuer: /CN=7ffc82585df69b7c94b16a61932ffc8b6e335156
Certificate serial: 02CD4A23
Authority key identifier: 7F:FC:82:58:5D:F6:9B:7C:94:B1:6A:61:93:2F:FC:8B:6E:33:51:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f_yCWF32m3yUsWphky_8i24zUVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/531d2b-e170-49a5-8404-92f73f56fc62/1/17fXs5sEaqDmwdMNOuJTfBEfQow.roa
Signing time: Sat 01 Jan 2022 05:52:31 +0000
ROA not before: Sat 01 Jan 2022 05:52:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212587
IP address blocks: 194.31.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47008291 (0x2cd4a23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ffc82585df69b7c94b16a61932ffc8b6e335156
Validity
Not Before: Jan 1 05:52:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7b7d7b39b046aa0e6c1d30d3ae2537c111f428c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f6:75:c3:3c:76:0f:95:f1:27:1e:7d:73:97:
bc:90:64:95:60:34:02:f5:4b:84:ad:4c:35:0a:13:
b6:55:a0:bc:ff:a4:98:5f:a2:07:52:d8:54:63:04:
da:6a:54:e6:5d:0e:11:5b:6c:ae:cd:83:2a:a7:d9:
8b:9b:ff:93:68:37:03:c2:29:c5:07:5a:32:60:68:
3c:10:75:8d:6b:9c:70:c6:ab:e5:db:c9:02:bf:55:
45:e1:d8:c1:d9:f3:4b:60:de:5d:47:56:97:2b:ae:
22:e4:fd:8b:ae:8e:03:43:aa:a9:a0:5f:6c:2b:49:
ed:f6:4e:3d:b8:a9:8f:84:0c:52:a9:38:8b:2b:da:
e0:a7:09:80:13:aa:f0:16:8a:b8:d7:15:e3:0e:db:
86:d2:d5:af:b3:15:bf:bd:0d:18:51:9e:e6:16:2e:
15:5e:d7:1d:5a:30:76:bf:7b:ef:40:ab:f0:c2:08:
8d:c7:2b:b2:f3:71:a5:76:c3:22:b2:58:1e:b7:89:
60:f2:87:a3:1f:5b:6f:fc:9e:73:67:78:b3:eb:b8:
22:ab:1c:0c:41:1f:ee:91:16:50:75:ab:26:fd:6f:
c9:3b:0f:46:28:5e:6b:1c:ef:57:eb:33:75:d2:5c:
64:d0:5a:42:d0:1e:2b:c9:3a:9d:2f:6b:d8:3a:c7:
9a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B7:D7:B3:9B:04:6A:A0:E6:C1:D3:0D:3A:E2:53:7C:11:1F:42:8C
X509v3 Authority Key Identifier:
keyid:7F:FC:82:58:5D:F6:9B:7C:94:B1:6A:61:93:2F:FC:8B:6E:33:51:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f_yCWF32m3yUsWphky_8i24zUVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/531d2b-e170-49a5-8404-92f73f56fc62/1/17fXs5sEaqDmwdMNOuJTfBEfQow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/531d2b-e170-49a5-8404-92f73f56fc62/1/f_yCWF32m3yUsWphky_8i24zUVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.16.0/20
Signature Algorithm: sha256WithRSAEncryption
85:4e:33:49:88:bb:8c:b2:dc:0a:b9:76:f8:bb:e5:49:d5:ce:
48:35:1c:b5:71:2e:de:e0:f7:a7:94:6c:b9:b7:01:84:4e:e9:
20:5b:b5:4e:99:37:21:38:8e:cd:ec:1c:b6:07:d5:bc:f6:86:
14:5d:76:9b:ab:68:68:28:15:2b:7a:4b:19:43:82:37:6f:db:
f7:11:ae:f8:7b:c9:df:cf:03:0e:1d:a5:b5:e5:05:d8:28:04:
13:08:22:2a:4c:32:c0:55:9d:f1:98:cf:b3:6e:b9:79:8b:41:
da:01:3d:92:de:ad:e6:b3:3b:88:d6:dd:79:63:b2:9b:58:aa:
bc:75:b0:1c:f0:c8:e8:70:36:f3:fb:97:11:e1:9a:d5:b6:a6:
43:a4:1d:5b:dc:cc:12:2c:d2:46:7e:51:5b:c6:c2:ea:a4:24:
02:f2:e8:d0:3c:e3:aa:04:13:57:6f:c1:3e:c7:64:4d:36:5c:
4e:c0:34:21:36:15:5b:02:21:86:c0:ac:ba:8c:73:a6:a5:4f:
17:d7:9a:e6:4a:68:53:48:3d:0e:de:36:90:f0:66:6f:0d:77:
75:d8:fd:a7:27:f0:87:3b:4a:c8:ca:be:e6:7e:c4:f9:3d:10:
2b:04:50:38:5c:08:d2:3d:c9:0a:36:b4:a0:c7:3e:40:ff:5a:
0b:02:4f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:25 2024 by rpki-client on console-ams.rpki-client.org