Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/jVs7E-PdpCwT4GNgjqsUeDQend8.roa
File: jVs7E-PdpCwT4GNgjqsUeDQend8.roa (raw, json)
Hash identifier: E8CFWngwYFyqc8uDiSjSYwLXVFePaCP+pFOffrdwlKw=
Subject key identifier: 8D:5B:3B:13:E3:DD:A4:2C:13:E0:63:60:8E:AB:14:78:34:1E:9D:DF
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 01846C2EE4980B5A428B56A37E6429AF3E5D
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/jVs7E-PdpCwT4GNgjqsUeDQend8.roa
Signing time: Sat 12 Nov 2022 14:12:03 +0000
ROA not before: Sat 12 Nov 2022 14:12:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61965
IP address blocks: 31.133.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:6c:2e:e4:98:0b:5a:42:8b:56:a3:7e:64:29:af:3e:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Nov 12 14:12:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d5b3b13e3dda42c13e063608eab1478341e9ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:81:22:86:e0:6c:63:50:9f:22:17:5d:bc:b4:
29:70:64:5a:92:94:a3:e7:c3:98:5e:94:58:0a:cc:
48:bd:38:41:5d:b6:9f:92:88:ec:40:ae:fb:b9:bc:
d5:05:c4:62:f9:fd:2d:6b:ce:d9:a6:3d:8d:db:9a:
e6:72:61:dd:11:32:23:c6:0d:ff:a8:40:33:18:1a:
e6:be:55:7d:5f:c3:2c:72:0b:7f:1c:75:70:9e:d7:
68:0c:14:3e:8c:93:18:68:1a:87:3c:53:44:bb:4c:
ef:55:7c:07:40:04:23:33:80:1a:f6:d9:c2:3f:3e:
82:40:43:f8:0d:66:96:98:b6:47:1b:f9:84:5e:67:
0d:61:55:9b:0c:09:73:af:e3:ce:ff:57:e9:ca:54:
9b:36:a8:f1:b8:f3:43:77:2e:4d:c9:4e:f3:5a:f2:
20:73:0d:d0:b1:f1:93:3e:80:d0:42:6b:6d:27:7c:
11:ed:d4:2e:7d:92:f4:c5:e0:9e:bd:d9:c8:8a:5b:
93:94:dc:96:3e:28:40:3f:e1:89:98:76:1c:8f:ca:
9a:da:f3:ae:12:91:c0:47:17:58:50:55:a3:86:30:
43:a7:0f:26:d5:e1:e6:62:4c:81:55:12:da:26:3b:
de:b7:31:9b:8e:77:51:aa:03:35:87:b3:b2:85:4a:
63:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:5B:3B:13:E3:DD:A4:2C:13:E0:63:60:8E:AB:14:78:34:1E:9D:DF
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/jVs7E-PdpCwT4GNgjqsUeDQend8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.38.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:5c:e2:cf:4d:01:30:74:55:42:4d:06:85:6c:28:10:7a:d2:
b8:01:76:fd:bf:12:35:c2:8a:31:7c:91:f1:4d:3b:ac:72:1a:
46:ec:05:ab:47:86:18:80:d2:37:a3:a0:b0:24:f5:f7:89:05:
e0:26:bb:7b:d1:03:2c:96:eb:6f:38:dc:4f:4f:19:6b:99:75:
a5:7f:ed:03:3d:70:52:21:d7:01:91:ae:25:15:81:98:eb:35:
51:c5:03:e6:6e:2b:d0:8a:d4:82:ef:33:1c:26:53:cb:11:ed:
06:b0:a5:20:9e:63:9e:3e:78:fb:d2:f0:32:40:b7:4f:32:02:
89:e8:d8:d1:67:7b:2f:cc:9a:b3:e9:97:dd:56:7d:70:82:cc:
3f:b7:7b:d9:f8:fc:af:7b:88:50:0f:c3:eb:a6:9f:29:ea:e9:
b0:e1:63:2b:5b:16:51:98:bb:8d:1b:6a:e0:6b:d9:08:92:ce:
a8:66:79:af:5f:6a:f1:e1:3d:de:95:49:8c:91:d2:6a:c8:8a:
ea:30:c7:dd:ec:9b:88:9e:87:be:c6:06:02:68:5c:15:69:86:
48:16:d8:e2:0b:17:38:e3:35:8b:94:0b:6d:aa:01:ee:ad:2a:
12:44:41:c8:9c:28:c0:85:69:de:14:7f:32:66:62:69:50:85:
96:97:ea:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRsLuSYC1pCi1ajfmQprz5dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNjRmOWQwNGVmZDVhOWZjMmUyM2I0MmQ1YjUxYWVmZDlh
NTAyNTAwHhcNMjIxMTEyMTQxMjAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDViM2IxM2UzZGRhNDJjMTNlMDYzNjA4ZWFiMTQ3ODM0MWU5ZGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1YEihuBsY1CfIhddvLQpcGRakpSj
58OYXpRYCsxIvThBXbafkojsQK77ubzVBcRi+f0ta87Zpj2N25rmcmHdETIjxg3/
qEAzGBrmvlV9X8Mscgt/HHVwntdoDBQ+jJMYaBqHPFNEu0zvVXwHQAQjM4Aa9tnC
Pz6CQEP4DWaWmLZHG/mEXmcNYVWbDAlzr+PO/1fpylSbNqjxuPNDdy5NyU7zWvIg
cw3QsfGTPoDQQmttJ3wR7dQufZL0xeCevdnIiluTlNyWPihAP+GJmHYcj8qa2vOu
EpHARxdYUFWjhjBDpw8m1eHmYkyBVRLaJjvetzGbjndRqgM1h7OyhUpjaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI1bOxPj3aQsE+BjYI6rFHg0Hp3fMB8GA1UdIwQY
MBaAFFxk+dBO/VqfwuI7QtW1Gu/ZpQJQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEdUNTBFNzlXcF9DNGp0QzFiVWE3OW1sQWxBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8xODQ5YTYtZjkyMS00YjUwLTkxNWUt
YjY2ZmE0ZjQ3NjNhLzEvalZzN0UtUGRwQ3dUNEdOZ2pxc1VlRFFlbmQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS8xODQ5YTYtZjkyMS00YjUwLTkxNWUtYjY2ZmE0ZjQ3NjNh
LzEvWEdUNTBFNzlXcF9DNGp0QzFiVWE3OW1sQWxBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH4UmMA0G
CSqGSIb3DQEBCwUAA4IBAQCeXOLPTQEwdFVCTQaFbCgQetK4AXb9vxI1wooxfJHx
TTuschpG7AWrR4YYgNI3o6CwJPX3iQXgJrt70QMslutvONxPTxlrmXWlf+0DPXBS
IdcBka4lFYGY6zVRxQPmbivQitSC7zMcJlPLEe0GsKUgnmOePnj70vAyQLdPMgKJ
6NjRZ3svzJqz6ZfdVn1wgsw/t3vZ+Pyve4hQD8Prpp8p6umw4WMrWxZRmLuNG2rg
a9kIks6oZnmvX2rx4T3elUmMkdJqyIrqMMfd7JuInoe+xgYCaFwVaYZIFtjiCxc4
4zWLlAttqgHurSoSREHInCjAhWneFH8yZmJpUIWWl+q5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:48 2024 by rpki-client on console-ams.rpki-client.org