Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/CMKxH5dBpjahQzaaLrPGspj6_B0.roa
File: CMKxH5dBpjahQzaaLrPGspj6_B0.roa (raw, json)
Hash identifier: tvjSLeyZb4v5qFdDKC92TmItUYG4L1RqiP7pmzHG2A4=
Subject key identifier: 08:C2:B1:1F:97:41:A6:36:A1:43:36:9A:2E:B3:C6:B2:98:FA:FC:1D
Certificate issuer: /CN=c722ad43471b606bcc853bba11b8ed663c151882
Certificate serial: 12407B
Authority key identifier: C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/CMKxH5dBpjahQzaaLrPGspj6_B0.roa
Signing time: Sun 01 May 2022 18:59:22 +0000
ROA not before: Sun 01 May 2022 18:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197617
IP address blocks: 31.24.64.0/22 maxlen: 22
31.24.71.0/24 maxlen: 24
31.24.70.0/24 maxlen: 24
185.61.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1196155 (0x12407b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c722ad43471b606bcc853bba11b8ed663c151882
Validity
Not Before: May 1 18:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08c2b11f9741a636a143369a2eb3c6b298fafc1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:f5:a6:2b:64:a5:36:dc:6c:f4:0e:73:4e:
3d:76:41:2a:c3:16:c3:87:04:da:c1:86:0d:26:94:
ff:bd:48:1d:19:5f:ed:1d:50:a1:f2:a2:41:0f:db:
21:22:01:6d:b6:96:2b:1b:3a:53:aa:5e:16:c5:7f:
49:57:80:a3:f3:54:3a:80:01:81:4c:0c:a7:0e:49:
69:75:3c:14:0a:f5:11:68:b9:4a:6b:67:ce:06:d8:
d2:3c:c7:c1:8c:e5:07:76:af:fa:6a:46:0a:ff:50:
7b:51:35:b0:69:1b:18:f4:39:5c:aa:f1:b2:92:ae:
92:f3:d6:7e:79:74:f5:d1:37:4e:7c:72:47:c3:0f:
2a:24:71:3a:38:c5:dc:6b:04:a0:5c:ae:b4:ea:37:
fb:78:98:79:ff:12:5f:1a:dd:3c:1f:75:c2:93:1a:
61:de:2c:d9:cd:2c:76:97:07:ba:6e:64:4a:f4:36:
3f:dd:2b:4c:b6:c3:a5:b0:08:79:6e:25:85:6d:1b:
5a:ae:ca:7c:2f:db:68:40:52:22:9f:e5:31:c2:5a:
55:27:4f:9c:e8:59:f7:a0:1d:3e:0e:60:f9:32:1f:
de:60:7e:1d:b7:ac:ef:64:a9:88:15:9b:2c:35:77:
db:bc:78:7e:70:c5:c0:90:b4:2e:90:76:ba:2a:46:
b9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C2:B1:1F:97:41:A6:36:A1:43:36:9A:2E:B3:C6:B2:98:FA:FC:1D
X509v3 Authority Key Identifier:
keyid:C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/CMKxH5dBpjahQzaaLrPGspj6_B0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.64.0/22
31.24.70.0/23
185.61.108.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:fc:d8:76:dc:bd:7d:3e:5c:19:34:78:14:09:06:48:0a:e9:
20:0a:c5:36:35:43:d2:1c:e5:58:b7:00:df:a9:fc:60:01:32:
32:18:cd:f3:9f:88:cc:65:c6:62:48:c6:20:c0:95:56:a1:0a:
f1:0d:81:fd:bd:eb:62:43:0a:f4:d1:8f:3b:d6:c7:7c:f2:0a:
28:bc:25:cc:47:04:73:7e:ba:6f:5a:98:79:f2:36:06:87:20:
ee:18:c3:f9:9d:2e:bf:be:a7:13:bb:03:f3:aa:be:29:ee:ba:
82:76:5b:b2:4a:32:c7:4e:d5:78:4d:1f:ca:81:e0:d1:f0:ba:
98:c9:a8:e8:3c:45:84:20:3f:fa:e2:83:a8:95:99:31:e9:04:
21:4f:3d:35:b5:18:de:84:75:dc:26:f3:da:76:bd:c6:34:78:
5a:8b:be:9c:61:09:a9:51:11:07:0c:58:66:55:fc:37:b1:ff:
c4:ff:a9:61:ae:73:80:9d:78:6a:32:ee:13:e1:55:6b:de:2c:
ca:f2:65:b6:ad:94:76:c0:3a:1d:73:12:12:40:97:59:2a:2f:
46:21:52:43:70:11:35:52:c4:e4:cd:f5:de:71:a5:2d:57:23:
e3:a9:a8:cf:3d:b8:2f:f1:24:67:13:04:a4:ff:a0:5e:0d:f5:
c5:33:1e:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:08 2023 by rpki-client on console-fra.rpki-client.org