Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/kBSPqYYStUN0XOau-2yVTy1CJZ8.roa
File: kBSPqYYStUN0XOau-2yVTy1CJZ8.roa (raw, json)
Hash identifier: JHTJ9rkaey2gVPtecl31N0YVZ7khCsIpOjIdj5Ouplo=
Subject key identifier: 90:14:8F:A9:86:12:B5:43:74:5C:E6:AE:FB:6C:95:4F:2D:42:25:9F
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B5D615D
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/kBSPqYYStUN0XOau-2yVTy1CJZ8.roa
Signing time: Sat 01 Jan 2022 08:58:37 +0000
ROA not before: Sat 01 Jan 2022 08:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47185
IP address blocks: 31.145.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190669149 (0xb5d615d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90148fa98612b543745ce6aefb6c954f2d42259f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d3:02:2e:b4:a1:0d:32:7d:d1:0b:cd:58:37:
5a:c6:30:bf:82:cd:34:6f:8c:e7:33:f1:ed:16:9b:
57:94:75:45:71:13:53:43:5d:2e:04:71:64:b4:44:
27:c4:f8:22:cd:4e:2c:ea:4e:f2:af:89:1d:cc:d5:
d5:1b:46:1e:eb:24:e1:6a:9a:fc:49:4e:4d:48:87:
20:c8:e9:e1:8f:e3:4b:d8:44:ce:69:84:21:bb:8b:
50:8f:af:d3:34:c4:98:a3:f7:2d:5e:97:3d:26:55:
0e:36:26:ce:48:33:05:b3:2c:43:7e:d1:59:95:b3:
35:16:c4:49:5c:44:43:df:0e:60:73:8c:8f:c0:75:
2f:4f:8a:7f:ec:d5:0b:12:9a:b5:de:d1:5a:72:14:
c3:81:49:7e:48:6e:c9:ed:02:5b:19:4c:e5:a0:23:
cf:d8:79:89:3e:e7:49:fb:e4:6f:f9:f8:4d:a2:e7:
f4:f6:64:70:40:3b:73:3e:e3:fc:1b:de:6a:53:b4:
69:0e:7b:36:14:b5:16:bd:2e:7c:b2:7a:ae:35:7c:
97:ff:39:3a:be:ff:59:f8:f9:9e:5f:b6:c9:eb:53:
ad:ae:91:07:4c:59:51:16:7d:6b:7a:c0:e6:4d:a2:
88:b7:15:91:ab:3f:25:75:33:ae:af:90:08:42:82:
1d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:14:8F:A9:86:12:B5:43:74:5C:E6:AE:FB:6C:95:4F:2D:42:25:9F
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/kBSPqYYStUN0XOau-2yVTy1CJZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.145.88.0/24
Signature Algorithm: sha256WithRSAEncryption
53:2e:52:7c:47:54:e9:a4:f6:93:87:02:b0:fd:90:73:00:0b:
73:4b:86:44:be:4a:b9:95:97:5c:ab:15:70:13:80:b8:b4:b3:
66:0e:fc:3f:f8:0d:8c:cf:ec:b0:fc:b8:89:4e:56:66:fd:ca:
fe:75:21:0f:a8:b8:32:35:7d:9e:5d:4e:40:f6:4f:72:5f:bd:
5b:ed:16:d4:e7:94:80:23:9e:46:39:b5:c0:08:ec:85:93:ff:
dd:ea:f1:cd:6b:b8:7f:6d:43:f6:8f:eb:0f:e7:36:19:58:18:
b5:4c:26:db:09:2a:22:58:ee:06:f6:93:27:91:51:9f:d8:56:
e8:a0:ab:c1:7c:83:81:88:e9:1d:2f:cd:58:2d:08:df:c7:97:
d0:c0:69:19:6e:93:28:74:ba:9e:b1:ac:52:6b:1f:ab:04:07:
a0:0d:f1:27:ad:e7:b0:98:49:96:0d:83:8c:e8:28:e4:a5:c3:
f9:eb:5e:c6:07:63:86:4b:0b:2e:82:57:6c:65:4a:a8:9a:cd:
c8:55:fb:96:29:fb:1d:76:4a:d9:fc:b8:9b:c4:54:08:93:4a:
15:26:8a:26:99:14:a8:97:b8:c9:db:23:58:85:99:61:a8:8f:
12:6d:58:6f:34:45:6e:9e:91:a3:2c:d8:99:b7:a4:2b:64:53:
8a:6a:c4:82
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC11hXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NjhmZTM1Y2M5NjI2MzNhMjc1N2FmMTBhMGU2ZThhYjZkMDFmNGM5MB4XDTIyMDEw
MTA4NTgzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTAxNDhmYTk4NjEy
YjU0Mzc0NWNlNmFlZmI2Yzk1NGYyZDQyMjU5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTTAi60oQ0yfdELzVg3WsYwv4LNNG+M5zPx7RabV5R1RXET
U0NdLgRxZLREJ8T4Is1OLOpO8q+JHczV1RtGHusk4Wqa/ElOTUiHIMjp4Y/jS9hE
zmmEIbuLUI+v0zTEmKP3LV6XPSZVDjYmzkgzBbMsQ37RWZWzNRbESVxEQ98OYHOM
j8B1L0+Kf+zVCxKatd7RWnIUw4FJfkhuye0CWxlM5aAjz9h5iT7nSfvkb/n4TaLn
9PZkcEA7cz7j/BvealO0aQ57NhS1Fr0ufLJ6rjV8l/85Or7/Wfj5nl+2yetTra6R
B0xZURZ9a3rA5k2iiLcVkas/JXUzrq+QCEKCHe0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQFI+phhK1Q3Rc5q77bJVPLUIlnzAfBgNVHSMEGDAWgBRWj+NcyWJjOidX
rxCg5uirbQH0yTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZvX2pYTWxpWXpvblY2OFFvT2JvcTIwQjlNay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvMzdlYmU2LThiZmUtNGMxZi1hMTgzLTgzZDY0OGY3OTc0Ni8x
L2tCU1BxWVlTdFVOMFhPYXUtMnlWVHkxQ0paOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
MzdlYmU2LThiZmUtNGMxZi1hMTgzLTgzZDY0OGY3OTc0Ni8xL1ZvX2pYTWxpWXpv
blY2OFFvT2JvcTIwQjlNay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+RWDANBgkqhkiG9w0BAQsFAAOC
AQEAUy5SfEdU6aT2k4cCsP2QcwALc0uGRL5KuZWXXKsVcBOAuLSzZg78P/gNjM/s
sPy4iU5WZv3K/nUhD6i4MjV9nl1OQPZPcl+9W+0W1OeUgCOeRjm1wAjshZP/3erx
zWu4f21D9o/rD+c2GVgYtUwm2wkqIljuBvaTJ5FRn9hW6KCrwXyDgYjpHS/NWC0I
38eX0MBpGW6TKHS6nrGsUmsfqwQHoA3xJ63nsJhJlg2DjOgo5KXD+etexgdjhksL
LoJXbGVKqJrNyFX7lin7HXZK2fy4m8RUCJNKFSaKJpkUqJe4ydsjWIWZYaiPEm1Y
bzRFbp6RoyzYmbekK2RTimrEgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org