Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/iAD_uyNzHe0CvG2t7MJmo_yO7MA.roa
File: iAD_uyNzHe0CvG2t7MJmo_yO7MA.roa (raw, json)
Hash identifier: 9RWclVGnM7DftwWMazI2nqp/IQdzIvkXfu6raZwl0eo=
Subject key identifier: 88:00:FF:BB:23:73:1D:ED:02:BC:6D:AD:EC:C2:66:A3:FC:8E:EC:C0
Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Certificate serial: 37F517A9
Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/iAD_uyNzHe0CvG2t7MJmo_yO7MA.roa
Signing time: Sat 01 Jan 2022 05:53:46 +0000
ROA not before: Sat 01 Jan 2022 05:53:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57986
IP address blocks: 31.184.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938809257 (0x37f517a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Validity
Not Before: Jan 1 05:53:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8800ffbb23731ded02bc6dadecc266a3fc8eecc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:46:e7:8f:c2:ee:69:5e:45:94:17:d1:2e:cd:
a3:0f:7b:10:59:de:7b:28:f1:02:98:eb:26:76:2d:
57:9c:09:de:0f:f7:71:c0:13:8c:73:16:b2:5a:61:
62:84:8e:86:e4:3e:1f:44:d1:5b:37:13:2c:06:eb:
1a:0a:70:ed:64:5c:0b:3c:fd:b8:73:53:7c:c5:1b:
a3:20:ac:25:73:2a:35:0b:ad:c9:63:a5:69:84:ec:
6c:66:37:4d:f3:2d:ed:9f:cd:49:f3:0f:c3:7e:3e:
0b:cd:e9:7a:f4:41:71:e6:99:96:40:fa:d5:e0:96:
d8:ae:02:13:54:4a:c8:81:16:f9:1b:04:cb:6b:66:
c8:87:99:8d:bd:13:03:d1:6a:9d:17:20:25:07:53:
e9:bc:af:70:c8:b7:a5:68:55:09:dd:3d:58:05:6d:
00:8a:49:6d:cd:12:de:8a:ee:a7:b3:8a:b5:68:14:
ba:49:bc:10:e0:ea:b3:ea:76:a0:fc:45:5f:d4:35:
db:74:3e:43:63:fc:dc:4b:00:72:2d:15:76:1d:88:
09:fe:40:d8:ee:e5:6a:49:a4:36:f5:85:16:39:6c:
51:9f:cd:ce:b3:47:b8:72:c4:34:8d:cc:55:0a:63:
fa:99:df:f6:2a:2b:27:9c:fd:66:a2:da:47:f0:5f:
c7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:00:FF:BB:23:73:1D:ED:02:BC:6D:AD:EC:C2:66:A3:FC:8E:EC:C0
X509v3 Authority Key Identifier:
keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/iAD_uyNzHe0CvG2t7MJmo_yO7MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.172.0/24
Signature Algorithm: sha256WithRSAEncryption
12:9a:e5:08:87:5c:89:7b:61:b7:67:3d:28:59:d1:7e:0b:77:
2f:0d:8d:78:70:38:f2:ae:11:2a:50:ed:09:8a:ab:0c:51:fe:
d9:bf:34:ab:ff:1d:0b:2e:ae:25:19:11:e0:96:2d:86:a7:5a:
e7:f6:51:a7:fa:62:21:bf:47:e1:04:b3:ea:11:d4:4a:d4:04:
72:1a:a8:fa:99:08:f4:b4:5f:a2:c3:d0:eb:ae:77:92:f4:fb:
ec:1e:00:f4:e6:2a:c3:f5:00:05:be:66:ec:cc:25:8b:87:14:
0a:d5:af:a9:17:12:c4:fa:9f:70:b6:bf:74:f3:a8:1c:4c:f0:
35:46:38:dc:a3:d2:a5:12:76:ee:ee:28:ce:7f:d0:55:cc:c3:
f7:10:64:68:c8:f8:6f:84:84:d7:1e:6e:49:a9:a2:37:e4:bc:
ab:0c:88:ab:8d:a0:28:ac:61:2b:8e:61:eb:1a:61:29:8c:48:
4f:b9:f0:42:26:bb:24:bc:0b:f4:88:17:29:54:47:85:7f:0e:
e0:27:fc:7c:33:a4:94:1a:20:1a:c3:5e:ab:25:37:99:ce:b8:
7e:b4:37:6e:a2:39:12:37:26:4f:5e:fc:a5:56:42:12:f6:d1:
a7:ee:30:73:be:39:92:7c:a8:be:df:96:c1:82:c7:0a:2a:60:
64:c5:d6:64
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN/UXqTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YWZiNjQ1ZjEzNGY0ZmRhZGE0NWU3MGJjZmNkOTNiODk3ZGJkNzI1MB4XDTIyMDEw
MTA1NTM0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODgwMGZmYmIyMzcz
MWRlZDAyYmM2ZGFkZWNjMjY2YTNmYzhlZWNjMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVG54/C7mleRZQX0S7Now97EFneeyjxApjrJnYtV5wJ3g/3
ccATjHMWslphYoSOhuQ+H0TRWzcTLAbrGgpw7WRcCzz9uHNTfMUboyCsJXMqNQut
yWOlaYTsbGY3TfMt7Z/NSfMPw34+C83pevRBceaZlkD61eCW2K4CE1RKyIEW+RsE
y2tmyIeZjb0TA9FqnRcgJQdT6byvcMi3pWhVCd09WAVtAIpJbc0S3orup7OKtWgU
ukm8EODqs+p2oPxFX9Q123Q+Q2P83EsAci0Vdh2ICf5A2O7lakmkNvWFFjlsUZ/N
zrNHuHLENI3MVQpj+pnf9iorJ5z9ZqLaR/Bfx5ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSIAP+7I3Md7QK8ba3swmaj/I7swDAfBgNVHSMEGDAWgBTa+2RfE09P2tpF
5wvPzZO4l9vXJTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJ2dGtYeE5QVDlyYVJlY0x6ODJUdUpmYjF5VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvN2E0OGY1LWJkMjQtNGRjNC04Y2NhLTZiYTBhMGNlMDFlZC8x
L2lBRF91eU56SGUwQ3ZHMnQ3TUptb195TzdNQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
N2E0OGY1LWJkMjQtNGRjNC04Y2NhLTZiYTBhMGNlMDFlZC8xLzJ2dGtYeE5QVDly
YVJlY0x6ODJUdUpmYjF5VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+4rDANBgkqhkiG9w0BAQsFAAOC
AQEAEprlCIdciXtht2c9KFnRfgt3Lw2NeHA48q4RKlDtCYqrDFH+2b80q/8dCy6u
JRkR4JYthqda5/ZRp/piIb9H4QSz6hHUStQEchqo+pkI9LRfosPQ6653kvT77B4A
9OYqw/UABb5m7Mwli4cUCtWvqRcSxPqfcLa/dPOoHEzwNUY43KPSpRJ27u4ozn/Q
VczD9xBkaMj4b4SE1x5uSamiN+S8qwyIq42gKKxhK45h6xphKYxIT7nwQia7JLwL
9IgXKVRHhX8O4Cf8fDOklBogGsNeqyU3mc64frQ3bqI5EjcmT178pVZCEvbRp+4w
c745knyovt+WwYLHCipgZMXWZA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:41 2025 by rpki-client