Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/367ChSaQU-pyPCpOuv4aUOnTxuU.roa
File: 367ChSaQU-pyPCpOuv4aUOnTxuU.roa (raw, json)
Hash identifier: XIv2wosxu5sjKogRzsRZVYlqti8yIT+RrCDE62dx0TI=
Subject key identifier: DF:AE:C2:85:26:90:53:EA:72:3C:2A:4E:BA:FE:1A:50:E9:D3:C6:E5
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 127D8063
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/367ChSaQU-pyPCpOuv4aUOnTxuU.roa
Signing time: Wed 04 May 2022 08:31:01 +0000
ROA not before: Wed 04 May 2022 08:31:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41789
IP address blocks: 31.129.17.0/24 maxlen: 24
31.129.16.0/24 maxlen: 24
31.129.18.0/24 maxlen: 24
31.129.22.0/24 maxlen: 24
31.129.21.0/24 maxlen: 24
31.129.20.0/24 maxlen: 24
31.129.19.0/24 maxlen: 24
31.129.24.0/24 maxlen: 24
31.129.23.0/24 maxlen: 24
31.129.29.0/24 maxlen: 24
31.129.28.0/24 maxlen: 24
31.129.27.0/24 maxlen: 24
31.129.26.0/24 maxlen: 24
31.129.31.0/24 maxlen: 24
31.129.25.0/24 maxlen: 24
5.44.42.0/24 maxlen: 24
31.129.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310214755 (0x127d8063)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: May 4 08:31:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfaec285269053ea723c2a4ebafe1a50e9d3c6e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:22:cc:45:13:0a:7c:29:24:07:f7:10:1d:27:
fc:46:d2:92:d9:b6:68:72:5c:7e:d7:0b:e1:45:1b:
12:b7:08:0d:84:54:a2:79:c8:9e:45:a9:d5:5c:95:
d6:9c:5a:d3:10:0b:47:c9:44:82:21:d9:f6:82:11:
25:42:1e:80:02:36:55:28:b2:2c:09:33:6d:a3:ef:
ee:fb:0b:ed:a7:49:a7:ce:a5:e2:79:2f:26:ff:25:
22:f1:96:30:ce:a6:c5:27:34:64:7a:98:e2:3c:52:
87:35:bb:c1:46:12:1e:9e:33:37:81:3f:8f:9d:2a:
19:f1:0e:3d:ab:e1:92:dd:1d:e0:75:d3:10:13:0e:
9b:b7:26:58:ee:8c:d4:2f:89:9a:07:d6:62:c0:66:
81:ff:70:5c:10:d0:c1:70:ea:77:51:3d:59:01:2d:
e3:e7:ab:3b:1a:5e:9e:14:e9:55:8c:f9:50:96:d0:
45:65:b8:6b:8d:85:d1:ca:82:28:7d:0d:6c:7f:db:
66:06:96:17:dc:e4:8d:7d:a2:50:3c:6b:b4:0c:08:
fe:a1:68:f0:91:3c:85:2b:df:8e:59:6b:a4:12:20:
4c:3f:a1:2f:6a:07:bc:75:74:b4:e6:0f:76:68:cb:
5b:b7:f5:ac:d0:3f:80:48:17:ac:50:a1:5a:d7:90:
72:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AE:C2:85:26:90:53:EA:72:3C:2A:4E:BA:FE:1A:50:E9:D3:C6:E5
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/367ChSaQU-pyPCpOuv4aUOnTxuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.42.0/24
31.129.0.0-31.129.29.255
31.129.31.0/24
Signature Algorithm: sha256WithRSAEncryption
35:cf:47:4f:00:e2:e3:b4:96:d6:a8:7c:e6:84:7c:d8:55:22:
77:02:92:17:bc:aa:c7:d6:b7:97:f5:54:79:41:c2:f7:28:3c:
d4:a8:81:47:a4:b0:f4:56:63:e3:92:a3:a5:7f:56:a1:27:61:
5f:d3:6c:23:3f:b1:c4:36:68:35:0c:d4:20:6e:4b:e0:72:bf:
19:91:6f:5b:ba:d8:06:33:45:1c:6f:4f:b1:81:57:19:a6:01:
f5:12:30:c1:f5:a0:99:b7:f9:d2:7b:f6:8e:ff:14:00:df:6d:
39:cd:f8:8c:47:f7:0a:8e:4e:32:6f:9c:73:34:36:2c:8b:d5:
0e:92:a9:c0:9c:85:6a:b4:d6:cf:67:ab:ff:49:a1:17:a9:df:
90:ec:b5:e9:2f:de:40:a1:fd:27:11:bf:cc:89:1a:5e:ad:be:
2f:e1:a9:92:95:6f:14:51:f8:66:20:39:b4:45:bc:b1:25:91:
92:3d:b0:0e:66:71:14:20:f6:a4:08:78:81:b2:72:ef:14:b3:
f4:57:61:47:b7:d4:3f:c0:9b:aa:2e:36:de:25:8c:7c:ec:bf:
95:75:82:38:8a:56:7f:0c:80:60:97:f2:8c:f9:2e:8b:70:78:
e0:51:3d:80:a5:d8:ca:05:a1:30:b8:c7:44:1d:2b:bf:43:fe:
dc:a1:b2:dc
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgIEEn2AYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NWIxZDEzYzJlMjZlMTI3ODYyNDZhNWVjNGM1YmVhNjk4NjRiMjBmMB4XDTIyMDUw
NDA4MzEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGZhZWMyODUyNjkw
NTNlYTcyM2MyYTRlYmFmZTFhNTBlOWQzYzZlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPEizEUTCnwpJAf3EB0n/EbSktm2aHJcftcL4UUbErcIDYRU
onnInkWp1VyV1pxa0xALR8lEgiHZ9oIRJUIegAI2VSiyLAkzbaPv7vsL7adJp86l
4nkvJv8lIvGWMM6mxSc0ZHqY4jxShzW7wUYSHp4zN4E/j50qGfEOPavhkt0d4HXT
EBMOm7cmWO6M1C+JmgfWYsBmgf9wXBDQwXDqd1E9WQEt4+erOxpenhTpVYz5UJbQ
RWW4a42F0cqCKH0NbH/bZgaWF9zkjX2iUDxrtAwI/qFo8JE8hSvfjllrpBIgTD+h
L2oHvHV0tOYPdmjLW7f1rNA/gEgXrFChWteQctsCAwEAAaOCAhwwggIYMB0GA1Ud
DgQWBBTfrsKFJpBT6nI8Kk66/hpQ6dPG5TAfBgNVHSMEGDAWgBQFsdE8LibhJ4Yk
al7Exb6mmGSyDzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JiSFJQQzRtNFNlR0pHcGV4TVctcHBoa3NnOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTgvYzYxMDkyLTczNGEtNGVlZi05ZDY3LTQ5MDUyNDNiYzgyOC8x
LzM2N0NoU2FRVS1weVBDcE91djRhVU9uVHh1VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTgv
YzYxMDkyLTczNGEtNGVlZi05ZDY3LTQ5MDUyNDNiYzgyOC8xL0JiSFJQQzRtNFNl
R0pHcGV4TVctcHBoa3NnOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAy
BggrBgEFBQcBBwEB/wQjMCEwHwQCAAEwGQMEAAUsKjALAwMAH4EDBAEfgRwDBAAf
gR8wDQYJKoZIhvcNAQELBQADggEBADXPR08A4uO0ltaofOaEfNhVIncCkhe8qsfW
t5f1VHlBwvcoPNSogUeksPRWY+OSo6V/VqEnYV/TbCM/scQ2aDUM1CBuS+ByvxmR
b1u62AYzRRxvT7GBVxmmAfUSMMH1oJm3+dJ79o7/FADfbTnN+IxH9wqOTjJvnHM0
NiyL1Q6SqcCchWq01s9nq/9JoRep35Dstekv3kCh/ScRv8yJGl6tvi/hqZKVbxRR
+GYgObRFvLElkZI9sA5mcRQg9qQIeIGycu8Us/RXYUe31D/Am6ouNt4ljHzsv5V1
gjiKVn8MgGCX8oz5LotweOBRPYCl2MoFoTC4x0QdK79D/tyhstw=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-fra.rpki-client.org