Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/XkJgOLt1ycfTL77Wj_wCGs3B_zw.roa
File: XkJgOLt1ycfTL77Wj_wCGs3B_zw.roa (raw, json)
Hash identifier: T2xVJdUkFTUelAYAXoud5aBvUnIqagg2UECPoZFG6nI=
Subject key identifier: 5E:42:60:38:BB:75:C9:C7:D3:2F:BE:D6:8F:FC:02:1A:CD:C1:FF:3C
Certificate issuer: /CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18
Certificate serial: 0D730870
Authority key identifier: 2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/XkJgOLt1ycfTL77Wj_wCGs3B_zw.roa
Signing time: Sat 01 Jan 2022 13:59:05 +0000
ROA not before: Sat 01 Jan 2022 13:59:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8455
IP address blocks: 31.14.45.0/24 maxlen: 24
45.82.104.0/23 maxlen: 23
185.194.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225642608 (0xd730870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18
Validity
Not Before: Jan 1 13:59:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e426038bb75c9c7d32fbed68ffc021acdc1ff3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cb:bb:d2:09:28:80:b0:87:0d:b9:9d:bd:85:
6b:d1:6d:39:2a:38:8e:ee:fd:99:2a:ac:bc:58:9d:
57:7c:9b:35:8e:af:9b:23:70:90:9f:bf:48:a3:4d:
34:6f:c6:cb:0d:00:94:d2:1c:7a:a0:29:00:3e:b4:
fa:ee:fc:a3:9d:e7:ef:cb:d0:bb:2c:d1:14:c4:06:
6a:c9:f3:fb:a0:70:6a:8f:14:61:aa:97:42:73:dc:
49:c3:a9:6c:39:1d:4c:3d:7b:ab:fb:de:39:5e:b0:
6d:a7:d4:7d:bc:f1:cd:51:a7:4b:e2:6a:90:38:a3:
be:06:ad:49:cf:ec:29:b3:d9:cb:06:2c:c6:8a:e8:
da:76:53:f1:37:30:c6:84:5f:0e:36:1d:c3:1a:3d:
43:cb:e7:26:f2:e8:33:48:c7:3d:60:5d:d1:8c:95:
66:d4:cc:58:cd:a9:97:2e:95:2f:72:cb:f8:80:b5:
64:a8:fa:4a:ff:8e:9f:58:78:dc:73:d5:75:04:a2:
a7:56:7f:13:dd:46:ba:20:2f:60:26:54:57:91:93:
46:67:1f:32:7b:81:da:20:95:f6:d9:bc:79:81:7b:
79:1e:66:a0:52:18:fc:76:1f:03:79:f9:6e:b4:1a:
17:79:2a:4d:3a:5b:c9:3b:0d:03:03:82:82:30:fa:
e7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:42:60:38:BB:75:C9:C7:D3:2F:BE:D6:8F:FC:02:1A:CD:C1:FF:3C
X509v3 Authority Key Identifier:
keyid:2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/XkJgOLt1ycfTL77Wj_wCGs3B_zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/LO_eMLilizIqQx8IKe1P8ztarBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.45.0/24
45.82.104.0/23
185.194.0.0/22
Signature Algorithm: sha256WithRSAEncryption
86:66:b1:c7:11:aa:83:8d:96:65:e6:07:a8:99:cf:88:c4:ba:
e3:65:b9:43:94:24:9c:88:59:98:01:6b:4f:6e:3a:18:31:21:
a9:5a:7b:b1:cb:a4:8d:40:1f:d2:ef:23:de:25:a5:c1:73:0e:
e7:19:12:9e:9e:ff:b7:24:55:3f:fd:6a:e6:37:98:92:77:c3:
60:2c:c4:5e:e5:c1:2b:60:be:04:4c:49:f6:45:cc:47:e2:cc:
52:d7:ff:d4:18:08:71:53:75:43:31:05:33:1e:92:ee:4d:32:
8f:33:7b:7a:a9:2c:bd:49:c3:a9:dc:2e:62:a5:64:37:f7:6c:
01:e3:ff:87:26:63:07:c4:b6:a7:74:3f:31:97:21:aa:53:48:
c8:f2:58:7a:9f:b1:ef:77:5f:df:0a:70:91:2e:de:0c:e6:18:
5a:d0:a1:d9:ed:8e:8f:4a:5b:da:30:d9:78:b0:63:96:62:19:
c6:0a:10:97:5f:cd:27:bd:b0:12:73:d4:5b:47:7c:16:0a:64:
05:3f:8d:45:b9:85:47:86:4d:2d:f8:04:ac:6d:2f:08:7d:83:
07:bd:67:5f:6d:2b:aa:22:f6:78:0c:82:43:0d:81:f3:08:b4:
f6:ad:03:f6:f2:fe:fe:31:88:51:63:fe:e5:ec:e7:ae:89:22:
2f:0f:12:d5
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEDXMIcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
Y2VmZGUzMGI4YTU4YjMyMmE0MzFmMDgyOWVkNGZmMzNiNWFhYzE4MB4XDTIyMDEw
MTEzNTkwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWU0MjYwMzhiYjc1
YzljN2QzMmZiZWQ2OGZmYzAyMWFjZGMxZmYzYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTLu9IJKICwhw25nb2Fa9FtOSo4ju79mSqsvFidV3ybNY6v
myNwkJ+/SKNNNG/Gyw0AlNIceqApAD60+u78o53n78vQuyzRFMQGasnz+6Bwao8U
YaqXQnPcScOpbDkdTD17q/veOV6wbafUfbzxzVGnS+JqkDijvgatSc/sKbPZywYs
xoro2nZT8TcwxoRfDjYdwxo9Q8vnJvLoM0jHPWBd0YyVZtTMWM2ply6VL3LL+IC1
ZKj6Sv+On1h43HPVdQSip1Z/E91GuiAvYCZUV5GTRmcfMnuB2iCV9tm8eYF7eR5m
oFIY/HYfA3n5brQaF3kqTTpbyTsNAwOCgjD65xMCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBReQmA4u3XJx9MvvtaP/AIazcH/PDAfBgNVHSMEGDAWgBQs794wuKWLMipD
Hwgp7U/zO1qsGDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xPX2VNTGlsaXpJcVF4OElLZTFQOHp0YXJCZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvMzNhMGY5LTExNzgtNGE2ZC1iOTY0LWZmNzY1Zjg1MzFkNS8x
L1hrSmdPTHQxeWNmVEw3N1dqX3dDR3MzQl96dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
MzNhMGY5LTExNzgtNGE2ZC1iOTY0LWZmNzY1Zjg1MzFkNS8xL0xPX2VNTGlsaXpJ
cVF4OElLZTFQOHp0YXJCZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAB8OLQMEAS1SaAMEArnCADANBgkq
hkiG9w0BAQsFAAOCAQEAhmaxxxGqg42WZeYHqJnPiMS642W5Q5QknIhZmAFrT246
GDEhqVp7scukjUAf0u8j3iWlwXMO5xkSnp7/tyRVP/1q5jeYknfDYCzEXuXBK2C+
BExJ9kXMR+LMUtf/1BgIcVN1QzEFMx6S7k0yjzN7eqksvUnDqdwuYqVkN/dsAeP/
hyZjB8S2p3Q/MZchqlNIyPJYep+x73df3wpwkS7eDOYYWtCh2e2Oj0pb2jDZeLBj
lmIZxgoQl1/NJ72wEnPUW0d8FgpkBT+NRbmFR4ZNLfgErG0vCH2DB71nX20rqiL2
eAyCQw2B8wi09q0D9vL+/jGIUWP+5eznrokiLw8S1Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:44 2024 by rpki-client on console-ams.rpki-client.org