Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/595d8c-185a-4f86-a32a-60fa912615cb/1/YZMgQPi5xZpsNwpNIkKZlam1usI.roa
File: YZMgQPi5xZpsNwpNIkKZlam1usI.roa (raw, json)
Hash identifier: Y2a1yK5HrJvh4lvg2qULOgbLPGOJcuoPRnPn6QMDdjg=
Subject key identifier: 61:93:20:40:F8:B9:C5:9A:6C:37:0A:4D:22:42:99:95:A9:B5:BA:C2
Certificate issuer: /CN=10ad1930af9eafdee10e7686849d41af7ef33439
Certificate serial: 012F35
Authority key identifier: 10:AD:19:30:AF:9E:AF:DE:E1:0E:76:86:84:9D:41:AF:7E:F3:34:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EK0ZMK-er97hDnaGhJ1Br37zNDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/595d8c-185a-4f86-a32a-60fa912615cb/1/YZMgQPi5xZpsNwpNIkKZlam1usI.roa
Signing time: Tue 15 Mar 2022 10:01:03 +0000
ROA not before: Tue 15 Mar 2022 10:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198401
IP address blocks: 31.24.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77621 (0x12f35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10ad1930af9eafdee10e7686849d41af7ef33439
Validity
Not Before: Mar 15 10:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61932040f8b9c59a6c370a4d22429995a9b5bac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:05:ac:51:15:84:54:46:2e:4e:47:b3:6b:f0:
fd:53:0d:d7:89:36:e0:6a:05:a9:df:f4:ac:7d:b6:
22:10:d5:b3:33:fd:83:d5:35:01:e9:ae:8b:57:fb:
6a:b4:9d:e5:6d:d4:ba:05:cb:d0:0f:6c:27:74:aa:
53:88:10:bb:92:f3:59:9f:a9:81:9c:ab:78:47:6f:
11:e4:b9:94:bd:a5:13:ce:c0:92:9d:a4:ea:c4:4a:
c8:e2:39:21:d7:c9:10:c1:a5:d3:1d:12:6e:98:20:
9b:73:06:ee:f8:7f:75:4c:3d:af:5b:1f:09:00:33:
fc:83:2d:32:0a:80:31:7b:e6:cc:0a:44:76:ae:5b:
f9:8e:ef:30:cb:57:7e:f2:d8:71:9e:7e:df:61:23:
55:27:f1:a4:2f:74:ba:8b:f8:4d:37:27:a7:18:b4:
68:4e:8d:11:57:a9:31:aa:6c:72:33:50:c1:e8:9c:
26:f5:a2:02:9c:63:40:75:bc:e2:5b:67:0a:78:a2:
39:87:2f:e8:38:aa:f7:44:03:d1:a6:43:5f:2b:51:
84:52:0a:d8:ca:1c:1c:c1:5c:97:d8:54:9f:68:a8:
d9:16:98:d7:b2:09:13:8c:15:7e:88:4a:70:69:a2:
dc:0d:de:1b:ca:a4:00:e4:aa:9f:80:43:ea:4d:a4:
68:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:93:20:40:F8:B9:C5:9A:6C:37:0A:4D:22:42:99:95:A9:B5:BA:C2
X509v3 Authority Key Identifier:
keyid:10:AD:19:30:AF:9E:AF:DE:E1:0E:76:86:84:9D:41:AF:7E:F3:34:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EK0ZMK-er97hDnaGhJ1Br37zNDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/595d8c-185a-4f86-a32a-60fa912615cb/1/YZMgQPi5xZpsNwpNIkKZlam1usI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/595d8c-185a-4f86-a32a-60fa912615cb/1/EK0ZMK-er97hDnaGhJ1Br37zNDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.83.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:82:c6:9a:ed:d5:37:b2:43:55:54:23:38:bf:81:52:60:f1:
db:db:c6:b0:47:a0:b9:d6:1a:f4:e5:de:0c:b0:99:34:3a:34:
73:0a:38:ab:5b:53:e0:b3:43:0b:7e:b8:2d:67:38:71:12:26:
d8:73:dc:e8:82:ba:c4:03:a9:50:53:41:e2:e0:26:bd:9e:3f:
a4:14:67:a5:fe:e7:15:46:c0:2b:98:06:65:ae:b7:f4:28:f0:
58:53:f6:7c:c1:85:45:17:a0:f8:65:37:1d:7e:39:b1:5c:c9:
14:bd:ae:c8:ed:9d:f7:9f:af:22:10:ac:23:2b:15:4b:fd:ae:
23:0a:2e:d4:7d:21:90:c6:0e:ea:be:2c:ac:64:4f:50:da:21:
47:b4:38:d2:4b:32:12:93:c0:be:a5:70:0b:b1:fd:fd:86:f2:
fb:09:d9:e5:c1:b6:76:6f:c4:5a:41:9a:a1:15:12:35:f4:ff:
98:ab:92:20:68:bb:11:77:5b:9e:1f:cf:c8:e2:f1:d4:a4:30:
6f:f3:94:25:cf:2f:8e:78:bc:08:b5:45:fb:36:0a:7d:30:3f:
cf:4b:32:0d:82:f7:17:ad:bc:9e:41:67:f3:9b:ca:66:d0:d0:
01:fa:3e:ce:f4:61:3b:c0:4f:b6:0e:c4:dc:dc:24:15:32:c3:
f1:d1:e6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:28 2023 by rpki-client on console-ams.rpki-client.org