Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hjXKOPuAMv9uv0a3HXVUPfFXexk.roa
File: hjXKOPuAMv9uv0a3HXVUPfFXexk.roa (raw, json)
Hash identifier: Bwo6CaI2Cib1IpDbl6IgtmZx2veFZw3Wf3vP0OjlmTE=
Subject key identifier: 86:35:CA:38:FB:80:32:FF:6E:BF:46:B7:1D:75:54:3D:F1:57:7B:19
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: E00558
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hjXKOPuAMv9uv0a3HXVUPfFXexk.roa
Signing time: Wed 02 Feb 2022 12:47:47 +0000
ROA not before: Wed 02 Feb 2022 12:47:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44493
IP address blocks: 31.192.233.0/24 maxlen: 24
31.192.232.0/24 maxlen: 24
31.192.234.0/24 maxlen: 24
31.192.238.0/24 maxlen: 24
31.192.237.0/24 maxlen: 24
31.192.236.0/24 maxlen: 24
31.192.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14681432 (0xe00558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Feb 2 12:47:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8635ca38fb8032ff6ebf46b71d75543df1577b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:79:33:37:b5:c2:fd:d3:4e:cc:d2:3b:67:24:
f4:57:13:b0:71:4c:19:31:5f:b4:e7:8d:66:50:d7:
15:47:80:b3:7e:a2:b8:c1:78:72:de:f5:0c:cb:ad:
a3:11:46:17:c6:ba:33:aa:5c:5d:16:50:1c:c6:90:
41:61:c8:67:ca:b9:fc:16:67:8a:8a:62:9a:c2:cb:
58:e0:88:92:dc:86:dc:ba:91:a4:83:d6:22:bf:2f:
d4:6a:5f:13:d2:79:ba:8a:ae:41:35:38:2f:d3:bc:
ba:ba:b3:9c:2b:38:b0:64:9c:d3:c9:67:e3:84:48:
0e:25:9b:3c:46:1f:bb:f8:b0:b1:e7:94:69:42:0a:
96:ba:35:bc:87:42:9a:79:34:d9:49:73:23:84:e6:
25:5d:36:15:df:e5:22:33:aa:24:df:22:31:d6:fa:
78:b7:00:d5:02:40:47:6a:ec:33:92:93:e0:43:21:
ea:11:9f:81:f3:bf:a8:12:50:77:51:45:7a:bf:a5:
81:30:3d:0f:98:23:c7:1d:c0:17:ed:e3:48:5f:31:
69:70:55:87:32:94:16:a3:42:aa:38:2e:26:a8:a3:
d3:03:4a:1e:8d:8c:f3:5b:13:9e:60:47:2a:7f:f5:
cd:b7:a5:95:56:a4:40:a4:f1:d3:be:ba:87:e6:fe:
f8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:35:CA:38:FB:80:32:FF:6E:BF:46:B7:1D:75:54:3D:F1:57:7B:19
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hjXKOPuAMv9uv0a3HXVUPfFXexk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.192.232.0-31.192.238.255
Signature Algorithm: sha256WithRSAEncryption
10:8f:13:3f:bd:12:78:3b:25:bd:1d:cc:ca:7e:e3:2c:70:5a:
ae:20:86:b6:35:f7:cb:69:b2:5e:8d:f9:07:e9:d0:d7:67:92:
f7:c8:56:ae:d7:d2:9a:3b:d5:3c:b3:e1:3a:a4:0d:6d:85:2a:
0e:e0:89:6a:4e:3a:32:10:96:b3:bb:da:b2:fe:5e:27:f1:9b:
0f:89:1d:c7:9e:30:66:96:66:9c:a7:a7:4e:40:e5:35:54:02:
0c:bc:23:c1:45:05:2d:61:df:b1:2c:29:91:a9:0b:a0:d2:fb:
43:a2:aa:53:d3:02:3c:b7:fb:7d:4f:27:4e:82:c5:92:50:44:
a6:0e:39:dc:b0:cf:e2:93:f3:d8:c9:50:3a:4c:56:94:81:98:
c3:6e:68:7c:b9:0a:cf:f2:97:25:09:0e:d5:d7:5e:1e:1b:04:
4d:ef:c6:1e:0e:80:a4:21:ca:22:00:d7:fd:75:59:45:8f:47:
1e:6e:ee:ba:85:f9:f1:4e:cb:ed:69:e0:e9:a9:44:2d:f4:29:
75:a3:48:3a:6a:de:78:6d:aa:57:3b:04:02:bd:6f:ca:ae:a2:
4b:74:4f:ef:34:ff:0c:30:70:43:85:20:81:45:41:e8:c6:d8:
9e:45:bf:96:60:39:a0:77:3c:79:3e:c2:d8:5e:0b:a7:79:14:
d5:ec:ca:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:20 2024 by rpki-client on console-fra.rpki-client.org