Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/kRbIi-xii8rVf0nlfjH4lQcNHBA.roa
File: kRbIi-xii8rVf0nlfjH4lQcNHBA.roa (raw, json)
Hash identifier: bVYFMurWfBRnGIaYSBiDIXNOwgs56u36epz9G1FMERQ=
Subject key identifier: 91:16:C8:8B:EC:62:8B:CA:D5:7F:49:E5:7E:31:F8:95:07:0D:1C:10
Certificate issuer: /CN=4081f85602b1168925d83eb3ca61609f357956a6
Certificate serial: D64383
Authority key identifier: 40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/kRbIi-xii8rVf0nlfjH4lQcNHBA.roa
Signing time: Wed 23 Feb 2022 14:34:43 +0000
ROA not before: Wed 23 Feb 2022 14:34:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39650
IP address blocks: 31.130.176.0/24 maxlen: 24
31.130.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14041987 (0xd64383)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4081f85602b1168925d83eb3ca61609f357956a6
Validity
Not Before: Feb 23 14:34:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9116c88bec628bcad57f49e57e31f895070d1c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ed:56:f2:48:ed:70:c0:ac:0c:f4:8e:6b:2e:
0d:5d:26:26:19:8a:d6:68:d9:1e:19:69:29:43:d4:
cb:96:aa:26:0c:3c:c2:1d:70:c7:42:f3:8c:aa:5f:
5c:9c:19:5b:28:34:78:43:df:08:5c:16:39:e5:de:
99:d4:4e:86:eb:d4:c3:c7:86:56:1a:48:75:db:b6:
3a:31:41:d7:49:34:25:f1:15:40:52:b7:25:da:12:
89:95:87:bf:d2:8f:14:49:a3:8b:f0:fd:9f:a0:ef:
e0:f1:21:ca:7b:ce:be:66:c6:05:38:a0:09:c7:02:
02:61:89:8b:22:1c:64:18:19:85:5a:1f:07:54:0d:
58:64:85:94:71:19:79:b9:53:46:b3:92:80:f7:e9:
cb:92:30:1c:7b:5c:f0:d2:77:28:05:84:cb:20:8c:
f8:ec:ce:db:01:75:8b:4c:96:31:65:7c:2e:1d:51:
a7:bf:71:64:91:96:f1:a7:d6:09:2c:85:24:98:25:
d9:5f:c7:7e:60:6e:e2:07:c7:3f:d0:ec:b7:c6:ce:
8c:c5:42:16:64:9a:3c:1b:8c:9b:bb:f9:6f:eb:fb:
6b:66:b2:c2:53:5b:5e:69:b4:69:6e:3d:f9:b4:af:
70:c3:3f:62:24:ca:3f:b8:4c:a4:30:ff:05:a6:f6:
35:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:16:C8:8B:EC:62:8B:CA:D5:7F:49:E5:7E:31:F8:95:07:0D:1C:10
X509v3 Authority Key Identifier:
keyid:40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/kRbIi-xii8rVf0nlfjH4lQcNHBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/QIH4VgKxFokl2D6zymFgnzV5VqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.176.0/24
31.130.181.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:9a:26:04:b8:49:78:79:fd:48:78:a8:54:a1:46:02:2f:00:
1b:77:2f:de:cb:52:5c:4e:8c:45:0a:16:11:21:08:4d:fa:8f:
e3:42:29:4c:bb:77:da:95:c9:5f:46:56:4e:0a:56:84:bc:8a:
df:b7:65:64:e8:9d:e1:fa:d7:62:a1:a8:38:4d:4a:df:36:17:
7e:b4:cd:8c:e3:78:bc:fb:32:b1:d4:4c:45:8f:98:d2:31:b9:
2f:6f:17:b1:b1:a0:53:d1:bf:c5:ac:24:e2:97:12:f9:e0:36:
77:5c:14:bd:dd:15:fa:f0:62:bb:7b:fe:c8:01:e8:da:b0:1a:
c6:d9:b8:b6:5e:16:39:b5:71:a0:bc:fd:68:a1:e0:13:6b:b9:
d2:f3:11:9f:ce:fc:c7:51:14:23:36:4c:35:dd:84:20:b1:c8:
2e:81:cf:71:41:7e:f1:ff:f6:3e:32:51:d5:7f:a8:bf:89:0c:
e9:ad:33:02:ba:5c:bc:4f:7d:2a:0d:e4:96:9d:30:60:a5:69:
9e:27:f8:6e:e1:c8:a6:3d:df:45:1e:33:97:db:fa:f5:d3:14:
a9:91:b2:7a:7e:d3:c3:53:73:27:f3:b7:04:6b:b5:dc:22:a4:
77:26:7a:e9:b7:03:cf:8f:5f:a2:5e:7e:78:5c:50:85:a6:d5:
5f:e9:d6:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:53:05 2025 by rpki-client