Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/tchcijOGfb26BjYBCmckr4LUs2Q.roa
File: tchcijOGfb26BjYBCmckr4LUs2Q.roa (raw, json)
Hash identifier: ANps5rvh1Si48RA7GJIzjqVYFsGF1S9SdlGLoHetmUI=
Subject key identifier: B5:C8:5C:8A:33:86:7D:BD:BA:06:36:01:0A:67:24:AF:82:D4:B3:64
Certificate issuer: /CN=6998500402c8215cf571073a495cdc80c742f2cc
Certificate serial: 368DCFF9
Authority key identifier: 69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/tchcijOGfb26BjYBCmckr4LUs2Q.roa
Signing time: Sat 01 Jan 2022 01:01:26 +0000
ROA not before: Sat 01 Jan 2022 01:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197784
IP address blocks: 31.13.8.0/21 maxlen: 21
185.152.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915263481 (0x368dcff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6998500402c8215cf571073a495cdc80c742f2cc
Validity
Not Before: Jan 1 01:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5c85c8a33867dbdba0636010a6724af82d4b364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:a0:52:ad:b0:3a:18:f0:14:be:04:65:59:
09:95:29:bf:43:d6:8f:31:fc:26:55:da:c9:ec:2e:
7d:08:66:db:35:2c:bc:a0:8b:b6:63:d4:12:89:2a:
a7:19:3e:d0:39:18:af:40:4b:73:c8:2e:7e:04:3c:
8d:1c:68:c3:1e:f4:6c:50:95:f3:0c:04:3c:b3:ba:
04:f7:0b:ff:ac:91:3c:df:58:69:85:1a:c6:1a:47:
d7:28:55:2a:ea:72:cb:13:2e:d0:d7:0b:f6:51:9b:
a8:10:6b:13:1d:be:5b:bb:47:9d:fe:95:64:b6:9d:
8d:bc:95:14:25:1f:12:8d:ba:27:c3:d7:71:99:53:
72:ef:aa:aa:5f:ac:d6:c2:d6:d1:f0:2e:45:26:f8:
32:d4:39:13:04:73:18:f8:d0:0f:52:25:b1:4d:58:
75:35:79:3a:6f:37:82:4c:64:19:78:b2:9b:bc:b9:
1f:57:7e:4a:91:87:d1:0c:f1:cb:43:7d:ae:de:c4:
99:9e:cf:4c:5c:75:73:82:14:12:f1:c4:76:c0:c0:
eb:b6:17:1f:f4:7c:4a:c2:fc:24:00:af:3b:25:ed:
d5:e1:f5:90:e9:f4:44:c1:c7:5d:08:51:1c:72:50:
ec:a4:69:5f:4b:44:99:9b:6d:bf:e0:b1:db:ff:ed:
09:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C8:5C:8A:33:86:7D:BD:BA:06:36:01:0A:67:24:AF:82:D4:B3:64
X509v3 Authority Key Identifier:
keyid:69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/tchcijOGfb26BjYBCmckr4LUs2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.8.0/21
185.152.228.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:53:ed:02:19:8f:55:5c:81:64:c8:b5:67:fb:03:e5:8b:22:
8d:89:f3:b3:cf:86:b4:cb:48:12:f5:e7:fd:38:07:81:09:cc:
88:ef:11:5a:9d:e5:00:35:aa:f7:2c:17:cb:3a:25:de:b8:c1:
e2:49:86:65:20:ec:09:57:be:4f:b4:85:81:7c:d0:e5:7f:3e:
61:10:3a:bb:8d:03:29:c5:56:a6:ea:ca:72:5e:d9:5a:29:86:
b0:b3:29:e5:c4:f3:a3:f0:86:ce:d9:b9:13:e0:56:04:98:0b:
fa:0d:8f:17:e9:72:59:5f:26:3a:ab:dd:c4:73:c2:14:d3:81:
0f:6a:4c:a4:75:2c:91:a6:5f:5d:d5:70:8f:14:6b:d0:bc:7d:
b7:a3:61:ea:4d:37:39:0b:fc:19:d6:17:6d:b4:a9:cc:46:96:
48:a2:00:49:25:d9:3d:aa:2f:4d:55:39:6f:8e:f2:c5:bc:0f:
eb:17:cb:74:b8:5e:c0:3c:43:86:f1:57:ce:49:3c:45:07:89:
0a:c3:a7:44:14:64:c7:01:80:cd:4e:7b:70:5b:e3:52:bc:98:
43:2f:4d:1a:d8:2f:61:d9:e1:d2:b8:ad:dd:6f:79:54:5d:e0:
48:00:f0:5a:32:64:ef:62:49:75:2e:43:77:60:84:df:53:9c:
4a:49:74:d0
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENo3P+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
OTk4NTAwNDAyYzgyMTVjZjU3MTA3M2E0OTVjZGM4MGM3NDJmMmNjMB4XDTIyMDEw
MTAxMDEyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjVjODVjOGEzMzg2
N2RiZGJhMDYzNjAxMGE2NzI0YWY4MmQ0YjM2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANiuoFKtsDoY8BS+BGVZCZUpv0PWjzH8JlXayewufQhm2zUs
vKCLtmPUEokqpxk+0DkYr0BLc8gufgQ8jRxowx70bFCV8wwEPLO6BPcL/6yRPN9Y
aYUaxhpH1yhVKupyyxMu0NcL9lGbqBBrEx2+W7tHnf6VZLadjbyVFCUfEo26J8PX
cZlTcu+qql+s1sLW0fAuRSb4MtQ5EwRzGPjQD1IlsU1YdTV5Om83gkxkGXiym7y5
H1d+SpGH0Qzxy0N9rt7EmZ7PTFx1c4IUEvHEdsDA67YXH/R8SsL8JACvOyXt1eH1
kOn0RMHHXQhRHHJQ7KRpX0tEmZttv+Cx2//tCYMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBS1yFyKM4Z9vboGNgEKZySvgtSzZDAfBgNVHSMEGDAWgBRpmFAEAsghXPVx
BzpJXNyAx0LyzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FaaFFCQUxJSVZ6MWNRYzZTVnpjZ01kQzhzdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTMvMDU3YWU4LTBjYjctNGUxNC04YTViLTE4OTAyOGYzMzk2Yy8x
L3RjaGNpak9HZmIyNkJqWUJDbWNrcjRMVXMyUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMv
MDU3YWU4LTBjYjctNGUxNC04YTViLTE4OTAyOGYzMzk2Yy8xL2FaaFFCQUxJSVZ6
MWNRYzZTVnpjZ01kQzhzdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAx8NCAMEArmY5DANBgkqhkiG9w0B
AQsFAAOCAQEAW1PtAhmPVVyBZMi1Z/sD5YsijYnzs8+GtMtIEvXn/TgHgQnMiO8R
Wp3lADWq9ywXyzol3rjB4kmGZSDsCVe+T7SFgXzQ5X8+YRA6u40DKcVWpurKcl7Z
WimGsLMp5cTzo/CGztm5E+BWBJgL+g2PF+lyWV8mOqvdxHPCFNOBD2pMpHUskaZf
XdVwjxRr0Lx9t6Nh6k03OQv8GdYXbbSpzEaWSKIASSXZPaovTVU5b47yxbwP6xfL
dLhewDxDhvFXzkk8RQeJCsOnRBRkxwGAzU57cFvjUryYQy9NGtgvYdnh0rit3W95
VF3gSADwWjJk72JJdS5Dd2CE31OcSkl00A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:10 2023 by rpki-client on console-ams.rpki-client.org