Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/AqOuYdukMEhUhLQyKkVQnOyp0lg.roa
File: AqOuYdukMEhUhLQyKkVQnOyp0lg.roa (raw, json)
Hash identifier: VhBzP5QSKvFQCI83Yw1LTvtdqdZ4PrqIK0yqdTllfgw=
Subject key identifier: 02:A3:AE:61:DB:A4:30:48:54:84:B4:32:2A:45:50:9C:EC:A9:D2:58
Certificate issuer: /CN=34077b41e98873e7f06fb1df3f5d39c721b1343f
Certificate serial: 13BCFEC2
Authority key identifier: 34:07:7B:41:E9:88:73:E7:F0:6F:B1:DF:3F:5D:39:C7:21:B1:34:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAd7QemIc-fwb7HfP105xyGxND8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/AqOuYdukMEhUhLQyKkVQnOyp0lg.roa
Signing time: Tue 24 May 2022 05:07:29 +0000
ROA not before: Tue 24 May 2022 05:07:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8449
IP address blocks: 212.42.96.0/19 maxlen: 24
31.192.249.0/24 maxlen: 24
31.192.248.0/21 maxlen: 24
5.57.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331153090 (0x13bcfec2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34077b41e98873e7f06fb1df3f5d39c721b1343f
Validity
Not Before: May 24 05:07:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02a3ae61dba430485484b4322a45509ceca9d258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f3:07:b4:2c:1d:6e:34:12:97:4c:80:fc:5d:
c2:7a:e6:9a:4f:9a:69:74:d9:19:f0:3e:c6:6e:cf:
48:62:fe:fd:db:aa:20:03:34:0a:20:6f:96:ea:70:
de:04:8e:56:08:94:24:c5:86:59:1a:cd:ef:3d:ec:
a7:bc:44:7f:68:a0:d9:ff:cd:7e:5e:b1:16:b1:d1:
14:42:b0:a0:95:ef:cc:bd:b0:04:66:16:59:07:37:
af:93:5e:82:9c:96:d2:58:28:de:c1:1c:66:4d:1a:
7c:68:c9:b8:fe:ce:af:da:1c:65:c8:6e:36:3c:52:
8a:82:a9:2b:1a:48:3d:c9:38:c1:f5:e5:ed:12:b8:
cb:4c:76:70:65:e9:88:16:b2:b3:51:2e:e8:6e:b0:
06:ab:9a:8c:88:81:62:fe:37:e0:fc:d9:50:8e:e8:
05:1f:1d:3a:91:07:28:1a:a9:73:fd:10:7c:7e:d9:
0f:0c:5f:5f:a4:70:03:80:e6:22:bb:f7:c5:5d:a2:
c9:e7:79:29:51:36:1b:05:f7:99:a4:9c:28:7e:93:
94:3e:5c:2e:1a:9b:3d:3d:d5:62:da:e5:54:2d:3a:
e3:91:37:19:15:8c:a4:3e:46:43:f9:b1:32:b0:80:
79:3e:67:f1:ca:05:0d:f5:ae:de:e4:fb:42:36:65:
6e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A3:AE:61:DB:A4:30:48:54:84:B4:32:2A:45:50:9C:EC:A9:D2:58
X509v3 Authority Key Identifier:
keyid:34:07:7B:41:E9:88:73:E7:F0:6F:B1:DF:3F:5D:39:C7:21:B1:34:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAd7QemIc-fwb7HfP105xyGxND8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/AqOuYdukMEhUhLQyKkVQnOyp0lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/NAd7QemIc-fwb7HfP105xyGxND8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.8.0/21
31.192.248.0/21
212.42.96.0/19
Signature Algorithm: sha256WithRSAEncryption
72:86:37:3d:a1:5f:f0:ab:e6:98:20:ae:9d:5b:16:06:7f:4b:
65:1b:d3:19:a1:75:8e:ea:31:7a:3c:e6:b6:df:0d:cb:57:d2:
64:8b:87:84:6c:bf:13:3a:38:2c:0e:19:4f:01:44:d6:f9:01:
cc:e0:b8:fe:f5:e9:7a:5f:54:9b:83:05:1e:d0:86:0b:da:66:
cd:8b:62:97:9c:a2:f5:92:a2:d1:be:c7:8a:f3:44:68:83:9c:
51:02:e1:28:84:07:d0:98:68:6e:11:69:c1:ab:c5:b4:bc:ed:
bc:fc:1b:27:5d:d4:f6:12:8a:25:89:23:44:ea:8e:89:45:b6:
6d:a9:98:b6:be:e0:50:af:cd:66:69:5e:5a:ef:ad:06:4b:a2:
80:2e:41:2d:e4:1a:e0:84:85:d6:de:00:1e:e0:dd:5a:2b:65:
00:dc:63:22:a2:cf:f5:a7:16:15:94:3f:56:ef:82:a1:f5:cf:
12:4e:bd:b3:0c:91:3e:45:c2:32:93:34:d6:bf:7f:87:08:fe:
66:d8:76:06:97:41:d1:d1:9a:dc:d7:3a:76:81:46:72:f0:0e:
b8:f6:3e:aa:99:9f:77:29:70:47:e0:04:c1:18:7a:d3:a4:2d:
78:85:cd:e1:99:78:bd:f8:ba:cb:6b:5c:14:78:91:db:e8:35:
54:9e:cb:80
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEE7z+wjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDA3N2I0MWU5ODg3M2U3ZjA2ZmIxZGYzZjVkMzljNzIxYjEzNDNmMB4XDTIyMDUy
NDA1MDcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDJhM2FlNjFkYmE0
MzA0ODU0ODRiNDMyMmE0NTUwOWNlY2E5ZDI1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANjzB7QsHW40EpdMgPxdwnrmmk+aaXTZGfA+xm7PSGL+/duq
IAM0CiBvlupw3gSOVgiUJMWGWRrN7z3sp7xEf2ig2f/Nfl6xFrHRFEKwoJXvzL2w
BGYWWQc3r5NegpyW0lgo3sEcZk0afGjJuP7Or9ocZchuNjxSioKpKxpIPck4wfXl
7RK4y0x2cGXpiBays1Eu6G6wBquajIiBYv434PzZUI7oBR8dOpEHKBqpc/0QfH7Z
DwxfX6RwA4DmIrv3xV2iyed5KVE2GwX3maScKH6TlD5cLhqbPT3VYtrlVC0645E3
GRWMpD5GQ/mxMrCAeT5n8coFDfWu3uT7QjZlbiMCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQCo65h26QwSFSEtDIqRVCc7KnSWDAfBgNVHSMEGDAWgBQ0B3tB6Yhz5/Bv
sd8/XTnHIbE0PzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05BZDdRZW1JYy1md2I3SGZQMTA1eHlHeE5EOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2QvNDQ4ODAwLTgyOWUtNGI3YS05MmM0LWNiN2NiY2E3YzFlMC8x
L0FxT3VZZHVrTUVoVWhMUXlLa1ZRbk95cDBsZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Qv
NDQ4ODAwLTgyOWUtNGI3YS05MmM0LWNiN2NiY2E3YzFlMC8xL05BZDdRZW1JYy1m
d2I3SGZQMTA1eHlHeE5EOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAwU5CAMEAx/A+AMEBdQqYDANBgkq
hkiG9w0BAQsFAAOCAQEAcoY3PaFf8KvmmCCunVsWBn9LZRvTGaF1juoxejzmtt8N
y1fSZIuHhGy/Ezo4LA4ZTwFE1vkBzOC4/vXpel9Um4MFHtCGC9pmzYtil5yi9ZKi
0b7HivNEaIOcUQLhKIQH0JhobhFpwavFtLztvPwbJ13U9hKKJYkjROqOiUW2bamY
tr7gUK/NZmleWu+tBkuigC5BLeQa4ISF1t4AHuDdWitlANxjIqLP9acWFZQ/Vu+C
ofXPEk69swyRPkXCMpM01r9/hwj+Zth2BpdB0dGa3Nc6doFGcvAOuPY+qpmfdylw
R+AEwRh606QteIXN4Zl4vfi6y2tcFHiR2+g1VJ7LgA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:24 2024 by rpki-client on console-fra.rpki-client.org