Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/x0z2jiYLz2e2RY9iTdGc6qB31fI.roa
File: x0z2jiYLz2e2RY9iTdGc6qB31fI.roa (raw, json)
Hash identifier: 1r3GJq8j/cP+auFoeFcyV32Aoz52F4a0Ehy7z0DvR2A=
Subject key identifier: C7:4C:F6:8E:26:0B:CF:67:B6:45:8F:62:4D:D1:9C:EA:A0:77:D5:F2
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0184C650958A5A0DC5FA7FFF1027065B4A86
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/x0z2jiYLz2e2RY9iTdGc6qB31fI.roa
Signing time: Wed 30 Nov 2022 02:14:40 +0000
ROA not before: Wed 30 Nov 2022 02:14:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46664
IP address blocks: 194.31.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c6:50:95:8a:5a:0d:c5:fa:7f:ff:10:27:06:5b:4a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 30 02:14:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c74cf68e260bcf67b6458f624dd19ceaa077d5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a3:83:b8:ee:b6:db:aa:b7:b0:de:44:4a:f1:
b7:a2:ac:3a:56:b8:71:1f:a4:3b:fa:7f:3d:af:14:
ff:9f:49:e1:1b:5a:ce:5d:b1:b6:81:ac:45:e2:c5:
f4:d4:c4:93:2c:c2:82:8b:93:6c:e5:71:06:d5:2b:
56:80:09:56:9f:f8:09:b5:2a:40:bb:1f:1e:c9:ea:
bf:fc:05:7f:60:56:1e:a0:3a:95:e3:45:4f:32:9b:
bf:12:b5:12:f5:93:90:d6:7c:3d:4c:2e:3a:c4:05:
b4:b9:c3:b7:8e:c5:6d:d9:61:34:41:62:8e:82:e4:
a1:8f:5e:7e:d8:ad:2c:73:08:9f:81:fd:96:93:39:
47:4b:e5:e1:8d:ec:f0:c4:0e:d9:5b:62:9d:63:0e:
a9:12:c8:36:86:e3:6f:aa:69:ff:fa:c5:a4:34:66:
6e:24:16:60:1f:d7:4a:d5:53:76:ad:e3:a1:e4:bf:
83:cf:14:ea:95:cd:b4:e4:0a:c7:e1:15:95:b3:40:
b0:e9:af:43:70:4e:ce:57:b8:e1:57:f3:25:f0:33:
d8:ce:6b:3d:04:42:3b:f1:0e:0b:7e:e2:eb:4c:08:
ba:2a:bb:5f:cd:cc:45:52:01:82:77:6f:79:60:ee:
dc:1f:e2:0e:e1:8f:4c:cf:64:16:99:2d:da:6f:3c:
54:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4C:F6:8E:26:0B:CF:67:B6:45:8F:62:4D:D1:9C:EA:A0:77:D5:F2
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/x0z2jiYLz2e2RY9iTdGc6qB31fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.141.0/24
Signature Algorithm: sha256WithRSAEncryption
83:7e:c1:56:0c:a7:14:f1:e6:d2:5c:95:1c:13:d0:60:63:20:
11:e8:a8:78:85:38:30:9b:57:bd:46:df:ba:96:92:83:69:6d:
2d:2c:ec:bb:53:7a:51:18:fd:1b:94:53:10:32:07:dd:bd:3c:
cf:05:e0:67:c5:6b:29:6c:ce:34:50:a0:5c:98:b2:63:b6:ef:
7c:de:7e:96:f6:5a:93:73:e3:37:3d:4c:77:7d:ea:70:67:9d:
45:bc:07:8b:47:dd:d4:52:8c:12:a2:9c:a4:01:fe:c8:fc:e0:
06:b7:05:5c:d5:58:10:37:6b:43:e2:5a:7f:97:32:b4:5b:e2:
8e:66:71:63:f0:3a:58:42:0a:82:0b:c6:ec:f0:75:0c:7a:10:
53:ae:bb:e2:5f:50:4e:8d:6d:bd:68:d4:c9:4b:27:cf:29:0f:
a6:8a:dc:fe:c3:af:6a:f7:c0:38:7e:68:a7:68:b6:c5:08:a6:
5e:86:0c:00:11:0e:eb:f9:aa:6d:05:58:c5:1e:0e:10:a8:c6:
6b:f5:7d:fe:90:9d:c1:d5:a6:b7:8e:90:cd:0d:98:3a:6d:5a:
e9:7f:bd:7d:20:fb:e8:81:c2:10:57:5d:70:8e:da:ac:27:30:
3e:cc:98:6e:0a:5f:22:3e:8c:45:5b:87:31:f8:95:d1:3b:06:
ed:eb:07:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTGUJWKWg3F+n//ECcGW0qGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjIxMTMwMDIxNDQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzRjZjY4ZTI2MGJjZjY3YjY0NThmNjI0ZGQxOWNlYWEwNzdkNWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjaODuO6226q3sN5ESvG3oqw6Vrhx
H6Q7+n89rxT/n0nhG1rOXbG2gaxF4sX01MSTLMKCi5Ns5XEG1StWgAlWn/gJtSpA
ux8eyeq//AV/YFYeoDqV40VPMpu/ErUS9ZOQ1nw9TC46xAW0ucO3jsVt2WE0QWKO
guShj15+2K0scwifgf2WkzlHS+XhjezwxA7ZW2KdYw6pEsg2huNvqmn/+sWkNGZu
JBZgH9dK1VN2reOh5L+DzxTqlc205ArH4RWVs0Cw6a9DcE7OV7jhV/Ml8DPYzms9
BEI78Q4LfuLrTAi6KrtfzcxFUgGCd295YO7cH+IO4Y9Mz2QWmS3abzxUgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMdM9o4mC89ntkWPYk3RnOqgd9XyMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEveDB6MmppWUx6MmUyUlk5aVRkR2M2cUIzMWZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwh+NMA0G
CSqGSIb3DQEBCwUAA4IBAQCDfsFWDKcU8ebSXJUcE9BgYyAR6Kh4hTgwm1e9Rt+6
lpKDaW0tLOy7U3pRGP0blFMQMgfdvTzPBeBnxWspbM40UKBcmLJjtu983n6W9lqT
c+M3PUx3fepwZ51FvAeLR93UUowSopykAf7I/OAGtwVc1VgQN2tD4lp/lzK0W+KO
ZnFj8DpYQgqCC8bs8HUMehBTrrviX1BOjW29aNTJSyfPKQ+mitz+w69q98A4fmin
aLbFCKZehgwAEQ7r+aptBVjFHg4QqMZr9X3+kJ3B1aa3jpDNDZg6bVrpf719IPvo
gcIQV11wjtqsJzA+zJhuCl8iPoxFW4cx+JXROwbt6wd/
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org