Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/8233f2-d3c0-4501-a9c7-138c8417ae93/1/e_nFYi-zwLPdErL-r2FR3uKj6Os.roa
File: e_nFYi-zwLPdErL-r2FR3uKj6Os.roa (raw, json)
Hash identifier: EdW8SmJ9MZEC8/RyMmLocPeYQwPHGTZ/FkTq+4+FesA=
Subject key identifier: 7B:F9:C5:62:2F:B3:C0:B3:DD:12:B2:FE:AF:61:51:DE:E2:A3:E8:EB
Certificate issuer: /CN=72633388a7a5cfe9a7ca19fd74c922dcb12569d3
Certificate serial: 02B07498
Authority key identifier: 72:63:33:88:A7:A5:CF:E9:A7:CA:19:FD:74:C9:22:DC:B1:25:69:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cmMziKelz-mnyhn9dMki3LEladM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/8233f2-d3c0-4501-a9c7-138c8417ae93/1/e_nFYi-zwLPdErL-r2FR3uKj6Os.roa
Signing time: Sat 01 Jan 2022 14:04:13 +0000
ROA not before: Sat 01 Jan 2022 14:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197618
IP address blocks: 31.29.96.0/19 maxlen: 19
31.29.99.0/24 maxlen: 24
31.29.110.0/24 maxlen: 24
31.29.111.0/24 maxlen: 24
31.29.115.0/24 maxlen: 24
31.29.116.0/23 maxlen: 23
31.29.120.0/24 maxlen: 24
31.29.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45118616 (0x2b07498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72633388a7a5cfe9a7ca19fd74c922dcb12569d3
Validity
Not Before: Jan 1 14:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bf9c5622fb3c0b3dd12b2feaf6151dee2a3e8eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3d:d2:99:09:6b:dc:eb:43:a8:bb:c7:bf:81:
86:bb:20:ef:6b:fe:a6:2f:a0:dd:6d:eb:9f:92:13:
f6:e0:30:9b:7f:5b:0e:70:71:23:49:d3:5e:38:c0:
18:07:fc:fc:79:00:ad:f8:84:b3:60:74:aa:cf:e2:
a6:8a:0e:04:1e:fb:7b:2e:01:13:d9:db:97:6e:36:
f2:55:29:b1:f3:e8:f4:a0:d3:7e:d6:f4:21:d3:74:
d3:79:82:97:e0:70:44:c9:d3:51:e7:75:1a:74:13:
7c:dd:69:6c:3f:3d:74:42:21:8b:76:3e:a9:17:9d:
c1:2c:39:b9:0b:a9:82:1e:05:06:1d:d0:b0:8d:79:
6e:94:d6:44:19:8c:99:f9:b8:2c:c4:79:07:e1:18:
87:1f:3c:ef:ab:4f:69:8a:03:76:2e:0a:e6:06:67:
90:2d:85:36:df:e4:0e:85:c0:63:c1:7e:89:8d:4c:
29:82:6f:f1:fc:9d:4c:ec:2e:c7:04:aa:c3:77:b1:
1f:d3:fb:fa:80:0d:36:93:7e:7e:4e:ed:cd:61:95:
58:7d:e8:e7:8e:ee:da:c8:4f:5c:87:7f:d3:dd:ba:
06:c4:07:43:b9:3c:d6:54:96:cf:e0:84:af:cc:8d:
e0:c6:4f:36:00:32:28:70:1d:11:15:48:25:17:3f:
5d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F9:C5:62:2F:B3:C0:B3:DD:12:B2:FE:AF:61:51:DE:E2:A3:E8:EB
X509v3 Authority Key Identifier:
keyid:72:63:33:88:A7:A5:CF:E9:A7:CA:19:FD:74:C9:22:DC:B1:25:69:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cmMziKelz-mnyhn9dMki3LEladM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8233f2-d3c0-4501-a9c7-138c8417ae93/1/e_nFYi-zwLPdErL-r2FR3uKj6Os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8233f2-d3c0-4501-a9c7-138c8417ae93/1/cmMziKelz-mnyhn9dMki3LEladM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.29.96.0/19
Signature Algorithm: sha256WithRSAEncryption
03:9c:1f:74:42:9c:1d:46:e6:4c:9f:9d:a8:1b:2c:7e:97:09:
f7:e3:01:37:ca:ab:a5:00:ae:77:e8:57:77:c4:4d:bc:39:14:
be:8d:f8:4a:ed:43:7f:f2:e3:3d:fb:cc:c0:93:01:87:ac:92:
3a:49:63:df:fe:35:ba:21:b8:01:84:68:ab:62:43:d1:fb:f6:
f4:06:26:30:d1:a0:b7:30:d4:49:0e:93:27:43:52:d0:a1:e2:
9b:b8:47:74:6f:25:a3:33:08:0e:e8:31:26:16:b5:a8:71:cd:
86:4e:f3:b9:4b:57:a8:b8:ee:52:98:d6:02:77:2c:e1:de:c6:
26:a6:6a:e5:6b:23:78:02:71:5c:c1:be:2e:ed:b2:d5:a4:88:
e6:36:84:de:e0:40:cc:2c:dc:a8:a6:7b:df:7f:6d:68:a3:10:
d3:98:11:30:47:2c:77:e1:40:1e:cf:97:1e:25:9a:a5:03:63:
79:e1:61:51:41:2a:4b:df:84:48:4a:d8:6d:b2:b2:eb:a0:b9:
ca:2c:98:30:7d:f5:18:c0:5f:fa:ad:e0:5c:c8:d9:a9:26:a8:
ce:c7:8f:f0:c0:86:10:2e:c1:7f:70:39:74:89:74:99:02:48:
84:bb:55:d2:cb:35:fe:09:c9:fa:34:2a:d5:de:ce:b0:3b:39:
21:e0:fb:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:56 2023 by rpki-client on console.sobornost.net