Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/SRUvm5Hv7C3gL3Re0howE5tI4kA.roa
File: SRUvm5Hv7C3gL3Re0howE5tI4kA.roa (raw, json)
Hash identifier: djpQC6wW+JtkcQoBnVV3IIaRknAzAojckEF9OH6ILCY=
Subject key identifier: 49:15:2F:9B:91:EF:EC:2D:E0:2F:74:5E:D2:1A:30:13:9B:48:E2:40
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42C5FD42
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/SRUvm5Hv7C3gL3Re0howE5tI4kA.roa
Signing time: Sun 01 May 2022 07:19:24 +0000
ROA not before: Sun 01 May 2022 07:19:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57098
IP address blocks: 31.14.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120271682 (0x42c5fd42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 1 07:19:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49152f9b91efec2de02f745ed21a30139b48e240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c8:21:77:7f:9c:3b:09:16:a1:bf:f8:5b:ab:
72:84:ce:ef:ce:91:2c:2f:30:e5:e7:d5:fc:46:3a:
63:bb:20:b2:29:59:d6:65:85:df:54:80:a0:79:83:
bb:b1:34:1d:70:41:4e:08:9b:13:20:ee:73:3e:16:
e1:94:e4:82:87:7a:74:4c:3d:5d:1e:0b:93:5e:f3:
09:71:06:6c:fa:6d:b3:44:60:aa:20:4f:d2:84:3d:
84:7d:3a:b3:de:91:1b:92:14:88:25:a9:b1:b7:47:
40:83:0a:8a:23:13:31:35:e3:77:30:2a:ad:5b:26:
22:c3:b3:2e:a9:fc:6b:3a:22:d0:90:ac:ba:9c:53:
92:f7:8f:2c:72:c6:f1:45:dc:d2:dd:e5:90:e1:57:
c9:9b:49:c5:e8:aa:18:31:d7:9b:15:5d:78:31:d0:
17:b4:3d:d2:2a:8f:d3:ff:a5:28:10:84:a0:c9:a9:
27:c2:69:b5:d4:a3:4c:1b:83:cd:98:2e:6f:18:b0:
eb:21:f0:ad:d7:1c:91:ec:4e:00:a4:4e:e2:40:02:
ac:aa:7a:ab:be:de:31:f4:2a:d1:14:b6:35:c8:b7:
05:64:79:ec:eb:82:5c:ec:17:dc:a7:05:fc:20:aa:
68:6d:4d:d1:fd:64:11:c0:e0:e9:2c:09:96:ae:a0:
5b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:15:2F:9B:91:EF:EC:2D:E0:2F:74:5E:D2:1A:30:13:9B:48:E2:40
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/SRUvm5Hv7C3gL3Re0howE5tI4kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.18.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:5c:a3:f1:89:ef:aa:4a:0d:2c:3d:15:7a:e1:0d:28:a0:09:
b8:2e:dd:4a:86:1a:84:04:10:98:60:d7:ff:68:e0:ca:94:31:
3c:63:d5:18:07:c3:e7:c0:ad:51:a9:9a:f4:7e:ce:f9:4b:ac:
27:dc:8a:dd:68:56:a8:ee:52:3f:5c:86:ea:ef:b1:b7:1e:65:
10:d4:a3:9f:32:ff:ac:3c:4b:f5:40:1d:cd:9a:ac:0c:3f:f8:
69:ba:cd:99:bf:3b:23:45:32:38:53:dc:dd:79:c3:7e:0e:88:
53:b2:72:95:37:66:e3:88:ac:6b:88:ab:ae:1c:26:7f:ea:51:
c5:a5:af:cd:64:5b:d3:96:59:d2:4f:5d:8e:e5:e1:84:e3:b2:
ee:86:b3:f3:a2:5c:8a:26:9c:cc:d6:52:bf:d0:56:a9:14:52:
8d:34:b7:89:82:ff:8d:01:3a:1b:16:de:5e:49:23:34:31:75:
7e:60:1a:5f:5f:c2:ad:c2:f4:ed:e1:f4:95:fb:f4:5d:48:6b:
c6:82:48:2a:c1:dd:5b:87:27:98:cd:b2:e4:9f:b8:fd:d1:56:
41:5e:4b:a9:6c:8c:0e:ec:5d:be:09:33:50:a6:b9:5b:13:2b:
ec:12:c4:4c:fb:89:dd:3d:2c:0c:1a:cb:3e:54:9e:d9:b0:56:
10:60:60:4e
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEQsX9QjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDUw
MTA3MTkyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDkxNTJmOWI5MWVm
ZWMyZGUwMmY3NDVlZDIxYTMwMTM5YjQ4ZTI0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMzIIXd/nDsJFqG/+FurcoTO786RLC8w5efV/EY6Y7sgsilZ
1mWF31SAoHmDu7E0HXBBTgibEyDucz4W4ZTkgod6dEw9XR4Lk17zCXEGbPpts0Rg
qiBP0oQ9hH06s96RG5IUiCWpsbdHQIMKiiMTMTXjdzAqrVsmIsOzLqn8azoi0JCs
upxTkvePLHLG8UXc0t3lkOFXyZtJxeiqGDHXmxVdeDHQF7Q90iqP0/+lKBCEoMmp
J8JptdSjTBuDzZgubxiw6yHwrdcckexOAKRO4kACrKp6q77eMfQq0RS2Nci3BWR5
7OuCXOwX3KcF/CCqaG1N0f1kEcDg6SwJlq6gWxECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRJFS+bke/sLeAvdF7SGjATm0jiQDAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS9TUlV2bTVIdjdDM2dMM1JlMGhvd0U1dEk0a0Eucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHw4SMA0GCSqGSIb3DQEBCwUA
A4IBAQDIXKPxie+qSg0sPRV64Q0ooAm4Lt1KhhqEBBCYYNf/aODKlDE8Y9UYB8Pn
wK1RqZr0fs75S6wn3IrdaFao7lI/XIbq77G3HmUQ1KOfMv+sPEv1QB3NmqwMP/hp
us2ZvzsjRTI4U9zdecN+DohTsnKVN2bjiKxriKuuHCZ/6lHFpa/NZFvTllnST12O
5eGE47LuhrPzolyKJpzM1lK/0FapFFKNNLeJgv+NATobFt5eSSM0MXV+YBpfX8Kt
wvTt4fSV+/RdSGvGgkgqwd1bhyeYzbLkn7j90VZBXkupbIwO7F2+CTNQprlbEyvs
EsRM+4ndPSwMGss+VJ7ZsFYQYGBO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org