Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/m31YKIl-wvjSjBhTwJO-2KrYMLs.roa
File: m31YKIl-wvjSjBhTwJO-2KrYMLs.roa (raw, json)
Hash identifier: XE2FdVXoGDsWnx/Mr0xCDPr+g+hrcJlRVWf4GTuzIeE=
Subject key identifier: 9B:7D:58:28:89:7E:C2:F8:D2:8C:18:53:C0:93:BE:D8:AA:D8:30:BB
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 486BB012
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/m31YKIl-wvjSjBhTwJO-2KrYMLs.roa
Signing time: Sat 01 Jan 2022 03:00:30 +0000
ROA not before: Sat 01 Jan 2022 03:00:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 146.185.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1215016978 (0x486bb012)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b7d5828897ec2f8d28c1853c093bed8aad830bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:13:d1:5d:4e:10:6c:a7:71:5e:5b:cb:bc:
7e:ed:91:7a:43:87:28:e7:30:1d:eb:b2:38:9d:91:
ad:9b:fc:37:dd:64:bd:bd:8d:67:d1:5c:55:63:0d:
f5:2e:42:48:6d:bb:90:73:81:e7:6a:38:a0:49:75:
0b:a9:e1:5e:54:df:b8:12:3e:03:e8:51:ac:fb:cf:
65:78:ff:7d:20:a8:60:b3:8c:42:7b:93:d2:60:99:
67:6e:e9:5f:a0:c5:ec:31:3c:41:e3:72:4d:63:5a:
90:9c:38:3d:c2:25:a1:e6:36:ce:8b:b0:f3:50:fa:
d5:ac:19:10:7b:fb:d5:77:38:e6:45:71:8b:af:3f:
88:fd:00:2e:34:c4:09:50:91:fa:f7:77:1e:a2:4e:
20:4c:b5:91:34:d8:b1:34:1c:95:f1:07:15:3d:19:
bd:41:1b:cb:4d:c1:ad:76:29:5d:00:66:cd:41:1f:
d4:7a:b3:a2:20:a5:3d:c9:9c:d8:1f:8b:ed:b2:c1:
fa:93:b5:ef:d9:4d:44:6d:2a:3a:a5:b9:5d:a5:7a:
c0:9c:ec:c9:0a:a1:f3:52:41:02:93:91:e7:95:2b:
65:a3:73:4e:6b:69:92:65:a4:53:eb:61:e5:8b:07:
18:23:f8:6f:27:d2:e0:5e:c8:60:58:c9:db:11:80:
73:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7D:58:28:89:7E:C2:F8:D2:8C:18:53:C0:93:BE:D8:AA:D8:30:BB
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/m31YKIl-wvjSjBhTwJO-2KrYMLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.253.0/24
Signature Algorithm: sha256WithRSAEncryption
21:46:b2:e1:4b:5c:f0:15:4e:e5:fe:df:e7:3d:07:5e:d2:ed:
f1:e7:5f:33:9d:e8:6f:b4:13:52:f2:43:d7:59:d9:b6:7e:c5:
46:64:72:aa:ba:eb:3b:ca:49:6a:97:b7:c1:c6:50:6d:5b:2c:
61:50:0d:11:d3:63:dd:09:59:96:26:25:ff:f8:ff:87:53:7f:
1e:f7:1d:e9:af:ff:ca:1a:f0:ee:9c:55:e4:6d:1f:94:36:cd:
5d:b8:12:ab:3f:b6:18:01:08:ed:0e:23:d3:d6:8d:af:1a:b8:
cc:3b:0b:7b:fa:9c:fc:c5:da:bf:a3:ae:6b:56:c8:04:80:83:
47:85:f4:27:ff:f8:c3:87:56:67:66:cc:23:5e:17:a5:53:8e:
21:96:d6:f0:8a:66:76:1d:6e:9f:01:ed:1b:02:08:1c:a0:41:
b9:51:53:7c:8a:2f:3f:b5:c9:a8:18:4f:9e:63:b8:d9:2e:bc:
b8:0b:cf:a6:9c:be:b1:8a:15:8e:b1:35:7b:62:25:2c:99:60:
b1:7c:dc:8f:b3:40:10:a7:3b:77:8c:bd:84:5b:1f:85:b6:07:
d1:e7:d1:a7:32:78:29:56:ed:38:06:2c:21:a3:58:95:51:b7:
b0:28:d7:ca:c0:80:5a:e6:17:7a:bf:29:a8:fb:ca:81:aa:c2:
6e:77:08:eb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIESGuwEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWFhOGEwYTVmZGZkNjk4ZTEwNGJlMzZhMmFlZWM4MTNhZWNhMDcxMB4XDTIyMDEw
MTAzMDAzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWI3ZDU4Mjg4OTdl
YzJmOGQyOGMxODUzYzA5M2JlZDhhYWQ4MzBiYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALkOE9FdThBsp3FeW8u8fu2RekOHKOcwHeuyOJ2RrZv8N91k
vb2NZ9FcVWMN9S5CSG27kHOB52o4oEl1C6nhXlTfuBI+A+hRrPvPZXj/fSCoYLOM
QnuT0mCZZ27pX6DF7DE8QeNyTWNakJw4PcIloeY2zouw81D61awZEHv71Xc45kVx
i68/iP0ALjTECVCR+vd3HqJOIEy1kTTYsTQclfEHFT0ZvUEby03BrXYpXQBmzUEf
1HqzoiClPcmc2B+L7bLB+pO179lNRG0qOqW5XaV6wJzsyQqh81JBApOR55UrZaNz
TmtpkmWkU+th5YsHGCP4byfS4F7IYFjJ2xGAc3cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSbfVgoiX7C+NKMGFPAk77YqtgwuzAfBgNVHSMEGDAWgBTqqooKX9/WmOEE
vjairuyBOuygcTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZxcUtDbF9mMXBqaEJMNDJvcTdzZ1Ryc29IRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvMjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8x
L20zMVlLSWwtd3ZqU2pCaFR3Sk8tMktyWU1Mcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
MjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8xLzZxcUtDbF9mMXBq
aEJMNDJvcTdzZ1Ryc29IRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJK5/TANBgkqhkiG9w0BAQsFAAOC
AQEAIUay4Utc8BVO5f7f5z0HXtLt8edfM53ob7QTUvJD11nZtn7FRmRyqrrrO8pJ
ape3wcZQbVssYVANEdNj3QlZliYl//j/h1N/Hvcd6a//yhrw7pxV5G0flDbNXbgS
qz+2GAEI7Q4j09aNrxq4zDsLe/qc/MXav6Oua1bIBICDR4X0J//4w4dWZ2bMI14X
pVOOIZbW8Ipmdh1unwHtGwIIHKBBuVFTfIovP7XJqBhPnmO42S68uAvPppy+sYoV
jrE1e2IlLJlgsXzcj7NAEKc7d4y9hFsfhbYH0efRpzJ4KVbtOAYsIaNYlVG3sCjX
ysCAWuYXer8pqPvKgarCbncI6w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-ams.rpki-client.org