Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/vkwhM5gSeUnSRbwltcZBqiNJw78.roa
File: vkwhM5gSeUnSRbwltcZBqiNJw78.roa (raw, json)
Hash identifier: x0IB+WQFe5ohA9sHTfDNuVAU6xEYEQo0Or/T2zTh7kU=
Subject key identifier: BE:4C:21:33:98:12:79:49:D2:45:BC:25:B5:C6:41:AA:23:49:C3:BF
Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Certificate serial: 01856DB8939D0B2036BDB86A40FF73DB2316
Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/vkwhM5gSeUnSRbwltcZBqiNJw78.roa
Signing time: Sun 01 Jan 2023 14:24:51 +0000
ROA not before: Sun 01 Jan 2023 14:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57986
IP address blocks: 31.184.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:93:9d:0b:20:36:bd:b8:6a:40:ff:73:db:23:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Validity
Not Before: Jan 1 14:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be4c213398127949d245bc25b5c641aa2349c3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fe:b5:97:28:1c:5e:3e:1a:d4:f2:e4:2b:38:
42:e0:b2:8f:bd:38:7b:76:ae:71:75:8f:e5:83:37:
15:32:75:df:a9:7a:1d:95:1e:05:77:89:79:01:41:
18:1f:c4:d8:66:ea:e2:63:57:02:b2:cc:1d:16:45:
0a:39:20:29:8d:b2:80:8d:5e:2e:99:80:1a:af:f6:
10:d7:ad:33:f4:39:52:2b:36:6f:1d:f7:a3:6b:28:
21:6f:63:73:52:62:90:da:4d:89:53:09:d4:2f:96:
5d:40:ab:fd:b5:71:7f:ea:e3:44:bf:85:8f:c8:f1:
9a:e5:b0:98:42:03:75:e2:0a:ed:43:0e:3b:5e:36:
e0:46:6a:c0:0e:c2:57:b2:93:fc:75:b3:cc:d4:0b:
15:59:0e:0a:2e:8e:e0:db:a2:a0:ab:b1:7d:7e:c1:
62:44:02:0c:d4:00:94:90:6a:75:7b:47:b4:a8:26:
66:b2:ce:ea:1b:f8:1b:b4:71:8c:82:2f:d7:96:89:
05:b8:60:ed:db:eb:d4:cc:2f:d7:83:d8:05:49:6b:
3b:62:19:6d:96:90:13:f3:d2:a3:57:3f:33:8c:1b:
a2:fc:97:62:d3:ef:41:9c:73:31:68:8b:99:a8:c9:
ce:9e:6f:66:8e:3b:27:9a:7b:7a:2d:f6:f4:d2:57:
3d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:4C:21:33:98:12:79:49:D2:45:BC:25:B5:C6:41:AA:23:49:C3:BF
X509v3 Authority Key Identifier:
keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/vkwhM5gSeUnSRbwltcZBqiNJw78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.172.0/24
Signature Algorithm: sha256WithRSAEncryption
48:a0:4b:19:5f:7d:45:30:3b:0a:21:8c:d9:e1:59:67:ce:eb:
66:c0:f1:ac:25:8d:c3:b1:28:ee:65:98:11:f7:96:74:58:8e:
78:62:c7:f5:51:a3:8e:b3:13:b9:90:9f:37:75:29:3d:b8:69:
91:1d:36:f7:5f:a8:b1:9f:60:76:10:91:55:de:06:4b:a1:58:
1f:21:91:12:a7:cc:0e:31:3e:a6:7d:23:6b:be:77:cd:36:83:
1d:fa:83:58:f8:4e:68:13:97:4e:10:7c:49:35:05:8c:f3:d6:
d0:ae:42:aa:a1:72:0f:ba:3e:45:9a:ec:56:43:e8:00:62:44:
b2:c5:1b:e0:01:19:1a:53:6e:1d:10:c5:b2:41:c2:77:27:64:
13:04:61:c2:c1:cd:05:14:e3:47:22:f1:bf:cb:bd:96:1d:09:
8d:83:58:fb:21:c1:7f:ff:82:b2:17:1a:91:78:98:99:8d:eb:
8a:1b:92:29:3d:06:c5:42:28:8a:bf:e7:42:45:d5:30:cf:c5:
71:57:51:43:cd:c6:ac:1c:69:00:23:6c:ef:4c:c5:3b:e9:5e:
87:c1:a3:80:d3:8d:d8:a0:0d:e2:7d:19:fb:ce:ac:8a:9c:30:
1e:31:73:31:37:6b:4e:28:92:b1:f8:9a:3a:17:bf:e2:2f:c9:
8d:85:cf:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtuJOdCyA2vbhqQP9z2yMWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZmI2NDVmMTM0ZjRmZGFkYTQ1ZTcwYmNmY2Q5M2I4OTdk
YmQ3MjUwHhcNMjMwMTAxMTQyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTRjMjEzMzk4MTI3OTQ5ZDI0NWJjMjViNWM2NDFhYTIzNDljM2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyf61lygcXj4a1PLkKzhC4LKPvTh7
dq5xdY/lgzcVMnXfqXodlR4Fd4l5AUEYH8TYZuriY1cCsswdFkUKOSApjbKAjV4u
mYAar/YQ160z9DlSKzZvHfejayghb2NzUmKQ2k2JUwnUL5ZdQKv9tXF/6uNEv4WP
yPGa5bCYQgN14grtQw47XjbgRmrADsJXspP8dbPM1AsVWQ4KLo7g26Kgq7F9fsFi
RAIM1ACUkGp1e0e0qCZmss7qG/gbtHGMgi/XlokFuGDt2+vUzC/Xg9gFSWs7Yhlt
lpAT89KjVz8zjBui/Jdi0+9BnHMxaIuZqMnOnm9mjjsnmnt6Lfb00lc93QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL5MITOYEnlJ0kW8JbXGQaojScO/MB8GA1UdIwQY
MBaAFNr7ZF8TT0/a2kXnC8/Nk7iX29clMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnZ0a1h4TlBUOXJhUmVjTHo4MlR1SmZiMXlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi83YTQ4ZjUtYmQyNC00ZGM0LThjY2Et
NmJhMGEwY2UwMWVkLzEvdmt3aE01Z1NlVW5TUmJ3bHRjWkJxaU5Kdzc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi83YTQ4ZjUtYmQyNC00ZGM0LThjY2EtNmJhMGEwY2UwMWVk
LzEvMnZ0a1h4TlBUOXJhUmVjTHo4MlR1SmZiMXlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH7isMA0G
CSqGSIb3DQEBCwUAA4IBAQBIoEsZX31FMDsKIYzZ4VlnzutmwPGsJY3DsSjuZZgR
95Z0WI54Ysf1UaOOsxO5kJ83dSk9uGmRHTb3X6ixn2B2EJFV3gZLoVgfIZESp8wO
MT6mfSNrvnfNNoMd+oNY+E5oE5dOEHxJNQWM89bQrkKqoXIPuj5FmuxWQ+gAYkSy
xRvgARkaU24dEMWyQcJ3J2QTBGHCwc0FFONHIvG/y72WHQmNg1j7IcF//4KyFxqR
eJiZjeuKG5IpPQbFQiiKv+dCRdUwz8VxV1FDzcasHGkAI2zvTMU76V6HwaOA043Y
oA3ifRn7zqyKnDAeMXMxN2tOKJKx+Jo6F7/iL8mNhc/+
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:43:30 2025 by rpki-client