Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/t5JrpzYLaTQfWPt-oYru4IRLMDs.roa
File: t5JrpzYLaTQfWPt-oYru4IRLMDs.roa (raw, json)
Hash identifier: jZ9tVNBjtNm8sJtMz7CvpIHn0I+hVLr3IIqnJSkeXMQ=
Subject key identifier: B7:92:6B:A7:36:0B:69:34:1F:58:FB:7E:A1:8A:EE:E0:84:4B:30:3B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C63E6BE
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/t5JrpzYLaTQfWPt-oYru4IRLMDs.roa
Signing time: Sat 01 Jan 2022 01:02:28 +0000
ROA not before: Sat 01 Jan 2022 01:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42794
IP address blocks: 31.13.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476309182 (0x1c63e6be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7926ba7360b69341f58fb7ea18aeee0844b303b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b5:b9:f6:dd:23:f2:f6:c9:08:21:aa:7f:11:
f2:85:18:22:b2:d5:70:0b:16:a9:9f:07:92:e7:66:
39:cd:44:38:48:05:3b:1b:77:10:e4:3e:74:0c:ad:
95:92:e1:7d:72:35:15:c2:aa:5a:ad:e3:cb:3b:2e:
54:16:06:2a:bf:1d:b6:f7:c5:ac:d7:59:a0:fc:a6:
c5:52:ad:70:4c:1f:e0:15:e8:ea:11:13:f2:ce:0f:
e0:50:c2:6a:2c:e4:66:36:3f:7d:35:52:96:d5:a3:
51:09:7d:87:6e:35:a2:52:b5:2e:0a:d6:8d:87:cf:
88:17:93:1e:b0:3d:a5:48:63:2a:20:e9:83:a4:76:
27:d7:ee:9f:36:f6:1c:8b:1b:67:30:bc:73:8d:00:
29:fc:af:d1:00:36:a4:e0:99:cf:73:54:b3:2e:23:
45:32:32:2c:7c:fd:d9:28:ae:e5:47:6e:2b:b7:d1:
99:ac:73:94:cc:01:59:2f:25:f6:b1:d1:50:09:44:
fa:c9:fa:88:dd:7b:36:02:6b:7d:a1:d0:18:15:1d:
81:4f:80:9f:a9:1b:9f:19:c7:1a:02:2d:6a:23:1d:
56:fe:65:02:ab:48:ce:03:df:39:01:1a:a8:bc:21:
20:9e:35:d0:f5:98:84:e0:3f:4a:a3:45:b2:64:4d:
b1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:92:6B:A7:36:0B:69:34:1F:58:FB:7E:A1:8A:EE:E0:84:4B:30:3B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/t5JrpzYLaTQfWPt-oYru4IRLMDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.198.0/24
Signature Algorithm: sha256WithRSAEncryption
87:dc:af:9d:e9:03:bd:19:55:61:a3:8b:19:1a:4d:cd:d5:d8:
0c:7c:93:1c:e2:01:fc:bc:98:ca:75:f4:e2:69:21:0b:26:36:
d9:c8:59:18:a9:12:89:84:b7:4e:00:4a:00:45:cb:58:c6:7d:
ec:69:73:2b:d1:52:82:e7:77:87:75:6d:7b:2f:4d:32:4c:12:
de:0a:1c:45:b3:fe:2f:bb:af:5a:7c:de:b9:bf:29:19:cb:aa:
6d:60:b4:f9:ff:c7:1f:75:03:3d:7e:1b:08:e9:40:2f:e3:b3:
1c:75:b6:48:75:0b:a4:15:84:ae:6a:ff:bf:0b:6a:1e:4d:f5:
00:20:98:8c:c3:10:7f:a2:ea:16:fd:a1:d4:e4:23:4a:c0:6b:
18:b7:7c:21:87:aa:72:9f:af:3c:48:23:33:20:17:d9:c3:09:
09:66:b0:4c:4e:e1:7d:8c:b8:a9:d9:18:89:26:4d:32:ef:8c:
e0:56:8a:af:a2:cb:56:26:7c:33:2b:eb:a5:d0:21:98:cd:8b:
52:76:bc:b8:b5:a0:ae:1f:06:ec:e8:50:aa:10:6a:79:ab:2a:
e5:7d:c3:50:07:a6:37:45:fb:9a:84:80:de:68:5e:87:04:6c:
fe:9a:24:d9:93:de:15:9b:16:34:e5:ad:61:e4:50:78:62:04:
1d:ee:f9:80
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHGPmvjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDEw
MTAxMDIyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjc5MjZiYTczNjBi
NjkzNDFmNThmYjdlYTE4YWVlZTA4NDRiMzAzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ61ufbdI/L2yQghqn8R8oUYIrLVcAsWqZ8HkudmOc1EOEgF
Oxt3EOQ+dAytlZLhfXI1FcKqWq3jyzsuVBYGKr8dtvfFrNdZoPymxVKtcEwf4BXo
6hET8s4P4FDCaizkZjY/fTVSltWjUQl9h241olK1LgrWjYfPiBeTHrA9pUhjKiDp
g6R2J9funzb2HIsbZzC8c40AKfyv0QA2pOCZz3NUsy4jRTIyLHz92Siu5UduK7fR
maxzlMwBWS8l9rHRUAlE+sn6iN17NgJrfaHQGBUdgU+An6kbnxnHGgItaiMdVv5l
AqtIzgPfOQEaqLwhIJ410PWYhOA/SqNFsmRNsXECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS3kmunNgtpNB9Y+36hiu7ghEswOzAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L3Q1SnJwellMYVRRZldQdC1vWXJ1NElSTE1Ecy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB8NxjANBgkqhkiG9w0BAQsFAAOC
AQEAh9yvnekDvRlVYaOLGRpNzdXYDHyTHOIB/LyYynX04mkhCyY22chZGKkSiYS3
TgBKAEXLWMZ97GlzK9FSgud3h3Vtey9NMkwS3gocRbP+L7uvWnzeub8pGcuqbWC0
+f/HH3UDPX4bCOlAL+OzHHW2SHULpBWErmr/vwtqHk31ACCYjMMQf6LqFv2h1OQj
SsBrGLd8IYeqcp+vPEgjMyAX2cMJCWawTE7hfYy4qdkYiSZNMu+M4FaKr6LLViZ8
MyvrpdAhmM2LUna8uLWgrh8G7OhQqhBqeasq5X3DUAemN0X7moSA3mhehwRs/pok
2ZPeFZsWNOWtYeRQeGIEHe75gA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-ams.rpki-client.org