Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rnA-YoU0fF5zmPBSMcXSRbUacTU.roa
File: rnA-YoU0fF5zmPBSMcXSRbUacTU.roa (raw, json)
Hash identifier: hnrJfVrBVjYzevx+4nBKktOFdaHBlXTm9JuXCWvCcsM=
Subject key identifier: AE:70:3E:62:85:34:7C:5E:73:98:F0:52:31:C5:D2:45:B5:1A:71:35
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0962B3DB
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rnA-YoU0fF5zmPBSMcXSRbUacTU.roa
Signing time: Fri 14 Jan 2022 12:36:30 +0000
ROA not before: Fri 14 Jan 2022 12:36:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210718
IP address blocks: 193.31.28.0/24 maxlen: 24
193.31.31.0/24 maxlen: 24
2a0b:b87:ff12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157463515 (0x962b3db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 14 12:36:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae703e6285347c5e7398f05231c5d245b51a7135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e8:15:a8:8a:0b:01:99:b2:70:24:9d:b6:1b:
13:54:ee:77:ff:53:81:8c:86:39:56:3f:2b:86:1e:
b1:ea:75:4f:69:27:b2:97:88:95:8a:92:ae:5c:d0:
af:ca:09:21:58:ab:5e:26:f2:8a:ec:12:66:55:03:
07:5e:20:e6:16:50:9d:1c:e9:46:a0:bf:01:77:4d:
70:d3:77:92:1c:bf:ee:10:16:17:5c:01:b6:3e:cc:
8f:b5:9d:85:32:bc:b7:71:36:12:de:74:7d:84:c7:
48:e5:2d:6d:a9:9a:6c:c2:0d:e1:04:3b:cb:29:5e:
24:2d:ef:24:49:c4:ff:8b:4b:d3:03:f1:19:5e:90:
59:64:a3:25:b7:17:af:82:72:95:50:39:1f:89:9d:
81:db:33:81:ae:17:46:03:5d:3e:59:c3:8a:f7:60:
d2:ce:87:ab:33:42:5b:1c:04:2a:10:90:80:47:91:
8a:db:84:80:12:52:e0:e1:d2:51:85:a3:2c:1c:37:
02:4f:1c:26:2d:e6:b3:50:9f:44:ed:4b:5e:3a:48:
c7:24:92:d8:9e:5a:10:35:77:af:7f:f0:20:d1:7f:
70:15:21:1e:ab:d2:f9:87:2b:ef:23:2d:36:11:88:
e7:d5:e0:9e:b9:89:bf:d8:67:cc:68:11:5f:31:28:
74:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:70:3E:62:85:34:7C:5E:73:98:F0:52:31:C5:D2:45:B5:1A:71:35
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rnA-YoU0fF5zmPBSMcXSRbUacTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.28.0/24
193.31.31.0/24
IPv6:
2a0b:b87:ff12::/48
Signature Algorithm: sha256WithRSAEncryption
c9:2a:4c:bd:9b:3b:78:a3:d3:62:03:82:93:f5:7c:68:86:4f:
e1:15:72:a1:f8:00:38:b2:0b:8e:b9:9b:b7:a8:ee:23:46:67:
85:c0:34:9d:aa:e2:79:ac:5c:70:38:c2:5c:22:eb:55:d0:b4:
d1:e8:57:e8:13:d5:bc:85:1c:25:8a:1e:6a:ff:0a:aa:a0:78:
a6:ea:15:6a:a3:a0:5a:ab:7f:f2:85:62:98:10:47:a1:c7:c5:
f9:5d:34:36:1c:0e:54:27:ec:f5:af:be:5d:f8:a3:a0:19:69:
28:6f:71:59:bd:b7:48:53:83:a5:7a:12:7f:ae:a6:be:32:ae:
37:cf:d3:6e:6c:0d:c0:b2:ca:da:74:f3:39:7c:e6:08:a8:3c:
24:b5:24:5a:93:97:6d:ac:34:69:18:df:f6:9d:65:f1:41:b7:
c7:32:e7:a3:48:4a:c9:d2:d9:f3:dd:df:f6:c6:f8:c2:42:10:
c5:ca:02:11:53:9e:16:25:a8:67:60:a4:b9:9b:47:01:08:2d:
ee:fe:a9:80:84:07:66:f0:46:9b:6f:2e:76:26:a7:b5:3c:7f:
4b:8e:64:88:18:d1:9f:3c:ed:cd:96:a9:be:c7:02:d7:91:61:
98:7b:7f:08:f0:ee:2e:01:ab:4e:29:2d:e8:45:e3:5a:af:42:
7a:ff:18:64
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIECWKz2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDEx
NDEyMzYzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWU3MDNlNjI4NTM0
N2M1ZTczOThmMDUyMzFjNWQyNDViNTFhNzEzNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJXoFaiKCwGZsnAknbYbE1Tud/9TgYyGOVY/K4Yesep1T2kn
speIlYqSrlzQr8oJIVirXibyiuwSZlUDB14g5hZQnRzpRqC/AXdNcNN3khy/7hAW
F1wBtj7Mj7WdhTK8t3E2Et50fYTHSOUtbamabMIN4QQ7yyleJC3vJEnE/4tL0wPx
GV6QWWSjJbcXr4JylVA5H4mdgdszga4XRgNdPlnDivdg0s6HqzNCWxwEKhCQgEeR
ituEgBJS4OHSUYWjLBw3Ak8cJi3ms1CfRO1LXjpIxySS2J5aEDV3r3/wINF/cBUh
HqvS+Ycr7yMtNhGI59XgnrmJv9hnzGgRXzEodMcCAwEAAaOCAiAwggIcMB0GA1Ud
DgQWBBSucD5ihTR8XnOY8FIxxdJFtRpxNTAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
L3JuQS1Zb1UwZkY1em1QQlNNY1hTUmJVYWNUVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2
BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAMEfHAMEAMEfHzAPBAIAAjAJAwcA
KgsLh/8SMA0GCSqGSIb3DQEBCwUAA4IBAQDJKky9mzt4o9NiA4KT9Xxohk/hFXKh
+AA4sguOuZu3qO4jRmeFwDSdquJ5rFxwOMJcIutV0LTR6FfoE9W8hRwlih5q/wqq
oHim6hVqo6Baq3/yhWKYEEehx8X5XTQ2HA5UJ+z1r75d+KOgGWkob3FZvbdIU4Ol
ehJ/rqa+Mq43z9NubA3AssradPM5fOYIqDwktSRak5dtrDRpGN/2nWXxQbfHMuej
SErJ0tnz3d/2xvjCQhDFygIRU54WJahnYKS5m0cBCC3u/qmAhAdm8Eabby52Jqe1
PH9LjmSIGNGfPO3Nlqm+xwLXkWGYe38I8O4uAatOKS3oReNar0J6/xhk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-ams.rpki-client.org