Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/O1MwDWsMBTRCiXHhRhsr-28_a1g.roa
File: O1MwDWsMBTRCiXHhRhsr-28_a1g.roa (raw, json)
Hash identifier: LRm+hwIuIQJGCVJ5d623FhSJFQR07dyLLbNRIyIWTO8=
Subject key identifier: 3B:53:30:0D:6B:0C:05:34:42:89:71:E1:46:1B:2B:FB:6F:3F:6B:58
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 08BCD249
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/O1MwDWsMBTRCiXHhRhsr-28_a1g.roa
Signing time: Sat 01 Jan 2022 11:57:01 +0000
ROA not before: Sat 01 Jan 2022 11:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50941
IP address blocks: 31.14.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146592329 (0x8bcd249)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 1 11:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b53300d6b0c0534428971e1461b2bfb6f3f6b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:68:c0:5c:71:b1:b2:ec:cf:a8:26:5d:1b:1d:
43:2e:02:b8:38:11:f2:29:d6:26:58:3b:e1:32:d4:
e3:da:86:cb:89:c1:9d:b1:ec:09:e5:17:29:1e:e6:
db:a6:2d:82:3a:b1:0e:9a:2d:14:9b:00:68:ed:89:
3e:4c:54:1f:e1:99:ec:c7:5a:6e:41:0e:57:9d:72:
58:06:46:9d:1d:cc:50:90:62:dd:3b:0c:38:17:ee:
8d:c0:1f:24:e0:48:0e:3d:81:c3:b4:1b:76:9e:c4:
ad:81:9f:c5:06:86:f2:99:3b:84:c1:b0:07:33:9f:
f9:5a:18:13:ad:8e:e4:0b:ca:cb:cd:f7:2d:ad:c6:
72:c4:be:82:e7:b0:c2:9e:ec:ea:32:2c:fa:d8:f3:
bb:29:b0:41:03:97:11:8c:c5:bc:5a:bc:11:51:e0:
d0:95:d4:1d:7b:5d:7c:e7:41:cf:55:e1:a7:33:1e:
ce:fc:41:7c:27:3f:68:ea:01:fb:f1:69:c3:17:ad:
3e:dd:ea:9b:23:93:2d:61:d6:4f:54:f6:82:bc:72:
c6:1d:02:3c:49:29:0a:89:21:ec:65:c9:ae:5e:56:
b6:e7:cb:56:11:40:d7:3a:cb:d9:9b:a6:6b:bf:e8:
5f:f1:ac:18:91:23:f1:a7:bc:bd:a0:50:ca:bc:a8:
41:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:53:30:0D:6B:0C:05:34:42:89:71:E1:46:1B:2B:FB:6F:3F:6B:58
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/O1MwDWsMBTRCiXHhRhsr-28_a1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.75.0/24
Signature Algorithm: sha256WithRSAEncryption
59:33:27:5f:f0:2f:1f:5c:b4:02:fb:98:a3:7f:34:91:26:53:
77:68:06:ff:ce:0a:8c:3b:38:31:a8:5a:9f:37:e8:54:a3:65:
a9:6f:54:6d:ad:da:46:54:cf:3f:82:3f:a7:d3:8b:db:4e:ce:
3e:5e:2b:c1:f0:e8:ca:10:56:53:4c:51:98:56:4f:c3:b0:52:
b1:79:08:c6:5b:17:f7:83:0f:3c:2d:8e:94:23:28:d1:7f:70:
4c:65:90:b3:45:97:9d:99:df:ea:b4:dd:b7:b6:ac:6f:63:76:
4b:97:e0:b4:85:08:07:d5:a2:c9:03:5b:7b:c2:9e:1e:0b:e7:
3a:c4:7b:09:81:89:4f:05:9d:c1:e1:04:5f:8a:e0:e4:bc:4f:
5e:58:e9:16:52:90:fa:a0:31:5d:62:8f:60:a8:92:0c:2a:d8:
af:3e:8f:b4:7b:39:4f:9b:d8:a6:54:19:70:38:82:f1:75:da:
6d:14:ce:cd:77:13:eb:6d:c9:5c:48:36:91:0f:0c:81:32:11:
5e:97:1a:a3:d5:4f:4c:ff:43:a1:ea:1d:a0:82:23:d2:a0:62:
f7:8d:73:a8:72:dd:aa:15:b4:f5:46:91:b0:0b:b7:e8:07:49:
9d:ec:c4:1c:5b:8d:3b:12:d5:13:a5:e3:70:b0:55:47:55:81:
23:36:aa:13
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECLzSSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGY3M2M1YzBmM2ExMDZhOGJhN2RmZjNlMzVjODE2ZDEwNzhkYzcxMB4XDTIyMDEw
MTExNTcwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2I1MzMwMGQ2YjBj
MDUzNDQyODk3MWUxNDYxYjJiZmI2ZjNmNmI1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANpowFxxsbLsz6gmXRsdQy4CuDgR8inWJlg74TLU49qGy4nB
nbHsCeUXKR7m26YtgjqxDpotFJsAaO2JPkxUH+GZ7MdabkEOV51yWAZGnR3MUJBi
3TsMOBfujcAfJOBIDj2Bw7Qbdp7ErYGfxQaG8pk7hMGwBzOf+VoYE62O5AvKy833
La3GcsS+guewwp7s6jIs+tjzuymwQQOXEYzFvFq8EVHg0JXUHXtdfOdBz1XhpzMe
zvxBfCc/aOoB+/FpwxetPt3qmyOTLWHWT1T2grxyxh0CPEkpCokh7GXJrl5WtufL
VhFA1zrL2Zuma7/oX/GsGJEj8ae8vaBQyryoQRMCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBQ7UzANawwFNEKJceFGGyv7bz9rWDAfBgNVHSMEGDAWgBT49zxcDzoQaoun
3/PjXIFtEHjccTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtUGM4WEE4NkVHcUxwOV96NDF5QmJSQjQzSEUuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzI2LzAzY2NlMy1lNjIwLTQ0ODMtYjA4Yi02ZDhmZDMzMGU5YWEv
MS9PMU13RFdzTUJUUkNpWEhoUmhzci0yOF9hMWcucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI2
LzAzY2NlMy1lNjIwLTQ0ODMtYjA4Yi02ZDhmZDMzMGU5YWEvMS8xLVBjOFhBODZF
R3FMcDlfejQxeUJiUkI0M0hFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHw5LMA0GCSqGSIb3DQEBCwUA
A4IBAQBZMydf8C8fXLQC+5ijfzSRJlN3aAb/zgqMOzgxqFqfN+hUo2Wpb1RtrdpG
VM8/gj+n04vbTs4+XivB8OjKEFZTTFGYVk/DsFKxeQjGWxf3gw88LY6UIyjRf3BM
ZZCzRZedmd/qtN23tqxvY3ZLl+C0hQgH1aLJA1t7wp4eC+c6xHsJgYlPBZ3B4QRf
iuDkvE9eWOkWUpD6oDFdYo9gqJIMKtivPo+0ezlPm9imVBlwOILxddptFM7NdxPr
bclcSDaRDwyBMhFelxqj1U9M/0Oh6h2ggiPSoGL3jXOoct2qFbT1RpGwC7foB0md
7MQcW407EtUTpeNwsFVHVYEjNqoT
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:14 2023 by rpki-client on console-ams.rpki-client.org