Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/AZxDIJjPkimim8y6VyJS_nDJJR4.roa
File: AZxDIJjPkimim8y6VyJS_nDJJR4.roa (raw, json)
Hash identifier: dsbVVcF2gPjP+1LXXZvCywiR8gsxZIYeDPnTVIkQXqQ=
Subject key identifier: 01:9C:43:20:98:CF:92:29:A2:9B:CC:BA:57:22:52:FE:70:C9:25:1E
Certificate issuer: /CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Certificate serial: 09276D65
Authority key identifier: 8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/AZxDIJjPkimim8y6VyJS_nDJJR4.roa
Signing time: Tue 26 Apr 2022 09:33:38 +0000
ROA not before: Tue 26 Apr 2022 09:33:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16039
IP address blocks: 31.177.50.0/24 maxlen: 24
31.177.49.0/24 maxlen: 24
31.177.51.0/24 maxlen: 24
31.177.48.0/24 maxlen: 24
31.177.48.0/21 maxlen: 21
31.177.53.0/24 maxlen: 24
31.177.52.0/24 maxlen: 24
31.177.55.0/24 maxlen: 24
31.177.54.0/24 maxlen: 24
82.199.37.0/24 maxlen: 24
82.199.38.0/24 maxlen: 24
82.199.32.0/24 maxlen: 24
82.199.32.0/20 maxlen: 24
82.199.44.0/24 maxlen: 24
82.199.39.0/24 maxlen: 24
82.199.41.0/24 maxlen: 24
82.199.45.0/24 maxlen: 24
82.199.51.0/24 maxlen: 24
82.199.50.0/24 maxlen: 24
82.199.47.0/24 maxlen: 24
82.199.49.0/24 maxlen: 24
82.199.48.0/20 maxlen: 24
82.199.48.0/24 maxlen: 24
82.199.58.0/24 maxlen: 24
82.199.57.0/24 maxlen: 24
82.199.54.0/24 maxlen: 24
82.199.53.0/24 maxlen: 24
82.199.56.0/24 maxlen: 24
82.199.55.0/24 maxlen: 24
82.199.52.0/24 maxlen: 24
82.199.59.0/24 maxlen: 24
82.199.61.0/24 maxlen: 24
82.199.60.0/24 maxlen: 24
82.199.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153578853 (0x9276d65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Validity
Not Before: Apr 26 09:33:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=019c432098cf9229a29bccba572252fe70c9251e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:94:89:ed:5e:f2:74:20:3c:ae:81:ff:c6:26:
0e:09:66:ed:05:02:62:f3:18:2f:5e:b5:38:f0:f4:
71:0a:fe:6e:03:5c:0d:f3:4f:79:43:04:b5:94:10:
d4:d5:96:97:22:56:77:78:b1:e7:20:9d:31:9d:e5:
6a:a0:38:55:b6:97:6d:32:9a:6c:72:21:92:0e:d9:
87:11:a6:c5:70:f9:1f:22:53:1e:62:d7:62:17:0b:
d3:77:58:15:33:58:41:57:b1:76:ac:16:70:06:38:
62:5a:a9:89:01:b0:12:9e:72:b1:00:83:a7:9d:34:
7d:f5:53:c0:bd:d6:60:a6:15:18:fb:b9:8e:79:bd:
d4:cd:36:93:3e:7b:50:d5:10:8c:36:dc:d4:88:b3:
01:48:16:0a:a9:4d:76:fe:da:3c:b4:83:b8:89:da:
a7:05:bf:03:bb:43:73:dd:2a:b6:1f:cd:f6:f6:62:
d3:0c:e8:03:a1:ad:b8:6d:95:8c:1b:45:14:99:dd:
39:08:8a:9f:9d:23:6e:05:a9:77:93:8f:17:5e:ad:
87:6b:74:db:55:df:b2:70:03:80:d7:eb:22:ba:95:
09:97:0d:a9:47:97:e2:e7:82:e5:36:76:e1:aa:e2:
e5:fe:f1:5a:16:41:56:2b:fd:7f:03:5c:4a:17:ca:
84:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:9C:43:20:98:CF:92:29:A2:9B:CC:BA:57:22:52:FE:70:C9:25:1E
X509v3 Authority Key Identifier:
keyid:8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/AZxDIJjPkimim8y6VyJS_nDJJR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/jH8yX5quuTqDw554FFxBk31Ya3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.48.0/21
82.199.32.0/19
Signature Algorithm: sha256WithRSAEncryption
94:d4:7b:26:29:f9:31:4b:b2:bf:0f:36:6b:6d:6c:cb:c8:61:
79:81:2e:71:08:35:8a:52:e1:48:c2:81:70:43:ab:ad:bc:16:
66:35:39:7f:3e:34:d1:90:1e:a4:fb:83:3b:b7:a8:f1:0a:d9:
a1:33:6e:33:8d:ca:66:38:95:de:e5:0d:16:3c:48:e3:90:e4:
34:b6:be:55:7b:65:6b:8a:0e:d1:6d:70:e6:c7:f4:4f:52:82:
67:b1:95:d1:36:79:10:e9:be:28:b5:50:8b:ba:27:93:e2:0c:
39:fe:81:3a:91:ba:61:21:4a:ea:e0:53:4d:9e:85:03:cc:8b:
8b:24:fd:a5:39:1b:7f:b0:7c:8b:74:48:e8:b4:ca:b3:86:3e:
f1:32:60:05:49:4e:5f:ef:08:05:68:21:2c:f2:34:07:6b:50:
9a:6c:cb:f9:31:86:9c:35:7c:cb:33:33:be:40:ab:ca:3c:55:
7d:14:45:7a:75:99:ea:d5:be:2b:ea:6a:dd:fb:36:ef:87:a9:
78:e1:ac:2e:a6:a0:e3:ce:bc:6b:f8:a1:a6:59:6d:5e:b5:fe:
2d:6c:0f:d2:c7:ea:41:8a:87:a3:84:0c:cf:71:24:e4:1f:f5:
4d:af:f0:c8:90:6b:11:7f:15:ff:91:c1:ae:44:03:1b:83:35:
9d:5a:47:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:49 2023 by rpki-client on console-ams.rpki-client.org