Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/j31fzqycfUIK36IOTxvUVeeMvtI.roa
File: j31fzqycfUIK36IOTxvUVeeMvtI.roa (raw, json)
Hash identifier: 6y+wfvD5kk8OsRu2nSCMIt1Re5IDLqIpVU7Goplf7Mc=
Subject key identifier: 8F:7D:5F:CE:AC:9C:7D:42:0A:DF:A2:0E:4F:1B:D4:55:E7:8C:BE:D2
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 08596315
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/j31fzqycfUIK36IOTxvUVeeMvtI.roa
Signing time: Sat 01 Jan 2022 08:02:35 +0000
ROA not before: Sat 01 Jan 2022 08:02:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8508
IP address blocks: 91.220.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140075797 (0x8596315)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Jan 1 08:02:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f7d5fceac9c7d420adfa20e4f1bd455e78cbed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a9:95:7f:45:8a:e3:bb:a4:1d:50:bc:85:5c:
f5:08:0e:70:a5:36:b4:5c:3d:5a:c7:c0:c3:94:ba:
8a:8c:da:4d:6e:9a:3e:3f:82:16:f5:95:95:ed:08:
98:94:83:3d:64:f4:ed:04:fb:bf:26:c4:49:27:4a:
85:41:13:70:ac:cc:27:80:b8:54:ac:46:36:2e:e3:
a2:44:d5:51:d6:07:d9:61:e8:54:54:3a:1c:c0:1b:
64:c4:66:be:6b:8b:16:54:5e:50:60:75:ef:ef:5b:
0b:9e:a8:ca:77:49:03:a0:7f:90:32:25:98:67:13:
6e:c0:64:01:da:da:b2:41:8c:11:43:8a:52:8d:d4:
f8:d3:b5:54:a6:f9:0c:22:f3:a4:b5:ab:29:50:bc:
d7:9a:37:1b:bb:3e:8a:b1:cc:d1:e1:86:24:f7:9b:
8a:6c:ad:53:6a:11:13:1b:9d:61:28:62:27:73:21:
2d:35:b9:45:a1:a9:70:c6:3f:13:a8:4b:2a:82:cf:
26:81:99:2f:24:d6:34:f3:1d:55:4c:e6:e4:8c:89:
45:16:77:83:b2:f3:bd:4f:55:32:84:0f:8b:ab:87:
76:03:88:55:cc:29:47:94:6c:1e:ab:8e:e9:9f:c4:
34:8d:cb:2b:5e:ad:13:a8:6a:c2:b1:0e:0f:c0:4e:
63:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7D:5F:CE:AC:9C:7D:42:0A:DF:A2:0E:4F:1B:D4:55:E7:8C:BE:D2
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/j31fzqycfUIK36IOTxvUVeeMvtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.103.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b3:0d:42:81:2f:5d:17:55:34:30:21:9c:1c:6a:ac:38:e4:
0c:b9:b2:d9:57:eb:73:73:bb:dc:de:07:83:cc:37:8c:72:45:
d5:46:95:e0:f5:c3:48:16:d0:87:04:bc:f7:87:14:0b:59:22:
b2:85:6f:06:61:7b:c5:58:a0:7b:06:09:b1:5c:e0:fc:82:01:
5c:29:62:db:95:91:86:ed:2f:b8:e4:6f:bd:7e:51:92:cb:2f:
d0:ad:22:a7:04:ca:87:32:60:2f:ed:79:1b:8f:7d:ea:0d:a3:
d6:96:2c:7e:9f:54:b8:87:f1:99:6e:b0:a3:3c:b0:67:64:50:
1e:5c:7c:e7:66:79:f5:99:bd:e6:59:23:82:d3:b1:b2:05:c9:
99:41:0d:1f:24:57:fd:62:f8:72:fb:3b:34:d0:77:44:e5:7a:
bb:a0:46:92:bb:98:31:77:d2:f2:3b:f1:5e:52:f9:87:15:8d:
b7:5c:44:b4:08:1b:b8:d2:19:73:e0:d2:95:b1:fe:e3:99:a1:
03:05:dd:85:78:54:59:c4:ad:e0:a1:8a:f3:f4:22:06:00:c8:
c1:03:0a:fd:08:d1:86:85:f5:f0:b3:9f:3c:14:0c:4e:3c:2a:
97:77:30:16:13:47:81:3a:9f:65:00:d6:0c:81:26:8b:a9:ff:
e8:dd:de:36
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECFljFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NTIzOGNlN2VhZjY5YTViYTJmMDk0N2IyYmEwNTMzOTRiNDViNmNkMB4XDTIyMDEw
MTA4MDIzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGY3ZDVmY2VhYzlj
N2Q0MjBhZGZhMjBlNGYxYmQ0NTVlNzhjYmVkMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKSplX9FiuO7pB1QvIVc9QgOcKU2tFw9WsfAw5S6iozaTW6a
Pj+CFvWVle0ImJSDPWT07QT7vybESSdKhUETcKzMJ4C4VKxGNi7jokTVUdYH2WHo
VFQ6HMAbZMRmvmuLFlReUGB17+9bC56oyndJA6B/kDIlmGcTbsBkAdraskGMEUOK
Uo3U+NO1VKb5DCLzpLWrKVC815o3G7s+irHM0eGGJPebimytU2oRExudYShiJ3Mh
LTW5RaGpcMY/E6hLKoLPJoGZLyTWNPMdVUzm5IyJRRZ3g7LzvU9VMoQPi6uHdgOI
VcwpR5RsHquO6Z/ENI3LK16tE6hqwrEOD8BOY1ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSPfV/OrJx9Qgrfog5PG9RV54y+0jAfBgNVHSMEGDAWgBSFI4zn6vaaW6Lw
lHsroFM5S0W2zTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hTT001LXIybWx1aThKUjdLNkJUT1V0RnRzMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvY2E0MTE0LTJmYjktNDNkMS1iNTI4LTAzMmFmODM2YzE3Mi8x
L2ozMWZ6cXljZlVJSzM2SU9UeHZVVmVlTXZ0SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
Y2E0MTE0LTJmYjktNDNkMS1iNTI4LTAzMmFmODM2YzE3Mi8xL2hTT001LXIybWx1
aThKUjdLNkJUT1V0RnRzMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvcZzANBgkqhkiG9w0BAQsFAAOC
AQEAR7MNQoEvXRdVNDAhnBxqrDjkDLmy2Vfrc3O73N4Hg8w3jHJF1UaV4PXDSBbQ
hwS894cUC1kisoVvBmF7xVigewYJsVzg/IIBXCli25WRhu0vuORvvX5Rkssv0K0i
pwTKhzJgL+15G4996g2j1pYsfp9UuIfxmW6wozywZ2RQHlx852Z59Zm95lkjgtOx
sgXJmUENHyRX/WL4cvs7NNB3ROV6u6BGkruYMXfS8jvxXlL5hxWNt1xEtAgbuNIZ
c+DSlbH+45mhAwXdhXhUWcSt4KGK8/QiBgDIwQMK/QjRhoX18LOfPBQMTjwql3cw
FhNHgTqfZQDWDIEmi6n/6N3eNg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:05 2025 by rpki-client