Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/94QCPU5TqH2Wmuw6Ax133Y35he8.roa
File: 94QCPU5TqH2Wmuw6Ax133Y35he8.roa (raw, json)
Hash identifier: jXWdgxaXWsoAtnxN09KGQCxZr9kxYkeTpgmltfBsbNs=
Subject key identifier: F7:84:02:3D:4E:53:A8:7D:96:9A:EC:3A:03:1D:77:DD:8D:F9:85:EF
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 018360365A4B92D5C44987B68896DC1F607B
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/94QCPU5TqH2Wmuw6Ax133Y35he8.roa
Signing time: Wed 21 Sep 2022 13:21:58 +0000
ROA not before: Wed 21 Sep 2022 13:21:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202848
IP address blocks: 81.199.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:36:5a:4b:92:d5:c4:49:87:b6:88:96:dc:1f:60:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Sep 21 13:21:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f784023d4e53a87d969aec3a031d77dd8df985ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:15:19:89:c4:a6:17:ac:06:ec:2b:08:4e:bf:
74:df:aa:3a:17:b6:28:f1:a9:5f:46:e4:21:2e:49:
f2:22:18:f4:cd:1c:96:bf:69:1b:55:4a:c4:84:c3:
49:d0:48:c9:08:19:23:33:17:6d:1c:d7:88:7c:6b:
7b:4c:f6:fa:b2:a3:4b:4b:b2:b0:92:22:4c:f1:8a:
da:a2:ff:70:20:69:31:a5:e1:78:c2:30:bd:0f:06:
dc:14:5e:20:64:7a:0c:35:16:61:9f:54:ea:c3:20:
de:fc:b9:d7:17:ab:34:ab:3c:6f:18:eb:a1:13:a9:
88:d4:52:2e:bf:ad:da:8f:69:e9:61:aa:02:85:98:
81:ff:c4:72:fe:66:11:22:7a:43:b9:47:68:4b:91:
f9:de:6d:0b:b1:10:91:b0:f3:95:9e:03:f0:9b:1c:
6f:12:08:3a:65:9d:74:6c:ff:73:a5:bc:1d:32:85:
ec:07:a1:d8:10:83:65:f9:7a:1b:4f:6e:57:37:e1:
17:2b:f1:d4:11:75:a4:47:57:23:77:80:06:43:e2:
d2:b6:ec:24:33:6d:5f:6a:02:9d:bc:44:e5:66:28:
b0:ef:98:da:20:2a:1d:ac:a5:99:3d:94:d8:84:29:
56:33:39:19:9f:8d:d4:c9:78:b2:90:49:c5:a9:7f:
51:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:84:02:3D:4E:53:A8:7D:96:9A:EC:3A:03:1D:77:DD:8D:F9:85:EF
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/94QCPU5TqH2Wmuw6Ax133Y35he8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.31.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:63:6b:ea:a5:12:c8:30:ca:37:79:e7:d3:34:87:09:eb:c7:
0c:1f:06:6b:4c:51:f2:63:e8:8c:7c:eb:44:04:9c:3c:45:9b:
86:b2:96:04:50:83:ff:13:a2:5b:d7:55:61:f1:ac:07:9c:f5:
73:05:ac:19:1f:91:90:2e:ee:c7:8b:ae:da:13:7d:05:80:d6:
99:44:65:7e:19:da:88:53:a4:0f:4f:fb:17:97:71:18:bb:bf:
a6:d3:79:df:a0:27:c2:bd:b1:03:32:a1:5c:dc:9b:3b:0e:96:
95:27:40:a8:0f:7b:99:a4:17:9c:eb:b1:12:79:64:1c:ac:93:
08:1a:7d:cf:5e:48:62:be:a1:1d:f6:54:1f:16:4d:c5:85:b6:
0b:bd:24:62:68:22:6b:5d:74:08:67:c1:65:6f:a3:db:21:ce:
59:19:b9:29:0f:d8:11:d2:96:e5:fe:0c:7a:1f:6d:9a:e7:8e:
c9:c8:f8:ec:de:2a:f9:34:29:22:7d:19:95:72:02:1e:a3:ce:
60:81:da:e6:e1:fd:d4:b5:1c:a4:a9:79:1a:d9:fc:2e:d0:88:
1a:cc:b6:55:35:2e:7a:41:ce:ae:a6:da:a7:f5:dd:0e:b1:91:
0e:1b:37:dc:0d:2b:58:e2:b9:6c:8d:85:de:3b:78:39:56:1b:
f6:2b:99:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNgNlpLktXESYe2iJbcH2B7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZGUxMjRlMGY4YWRiNGU3ZDk1NzZjZWFlMzI1ZjY2OGRk
MjI0YjEwHhcNMjIwOTIxMTMyMTU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzg0MDIzZDRlNTNhODdkOTY5YWVjM2EwMzFkNzdkZDhkZjk4NWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxUZicSmF6wG7CsITr9036o6F7Yo
8alfRuQhLknyIhj0zRyWv2kbVUrEhMNJ0EjJCBkjMxdtHNeIfGt7TPb6sqNLS7Kw
kiJM8Yraov9wIGkxpeF4wjC9DwbcFF4gZHoMNRZhn1TqwyDe/LnXF6s0qzxvGOuh
E6mI1FIuv63aj2npYaoChZiB/8Ry/mYRInpDuUdoS5H53m0LsRCRsPOVngPwmxxv
Egg6ZZ10bP9zpbwdMoXsB6HYEINl+XobT25XN+EXK/HUEXWkR1cjd4AGQ+LStuwk
M21fagKdvETlZiiw75jaICodrKWZPZTYhClWMzkZn43UyXiykEnFqX9RYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPeEAj1OU6h9lprsOgMdd92N+YXvMB8GA1UdIwQY
MBaAFNHeEk4PittOfZV2zq4yX2aN0iSxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGQ0U1RnLUsyMDU5bFhiT3JqSmZabzNTSkxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9hYmUxMzQtMDA5My00NjUyLTkwNTct
NGY0YzliMzQzZTkwLzEvOTRRQ1BVNVRxSDJXbXV3NkF4MTMzWTM1aGU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9hYmUxMzQtMDA5My00NjUyLTkwNTctNGY0YzliMzQzZTkw
LzEvMGQ0U1RnLUsyMDU5bFhiT3JqSmZabzNTSkxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUccfMA0G
CSqGSIb3DQEBCwUAA4IBAQDEY2vqpRLIMMo3eefTNIcJ68cMHwZrTFHyY+iMfOtE
BJw8RZuGspYEUIP/E6Jb11Vh8awHnPVzBawZH5GQLu7Hi67aE30FgNaZRGV+GdqI
U6QPT/sXl3EYu7+m03nfoCfCvbEDMqFc3Js7DpaVJ0CoD3uZpBec67ESeWQcrJMI
Gn3PXkhivqEd9lQfFk3FhbYLvSRiaCJrXXQIZ8Flb6PbIc5ZGbkpD9gR0pbl/gx6
H22a547JyPjs3ir5NCkifRmVcgIeo85ggdrm4f3UtRykqXka2fwu0IgazLZVNS56
Qc6uptqn9d0OsZEOGzfcDStY4rlsjYXeO3g5Vhv2K5lP
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org