Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7k9vlP7J_bWfQysPVzBysUJgZGg.roa
File: 7k9vlP7J_bWfQysPVzBysUJgZGg.roa (raw, json)
Hash identifier: Tw40caRkUJx8nsgva8yaXD1Y5EhfN3Re2rhH5m4DyY0=
Subject key identifier: EE:4F:6F:94:FE:C9:FD:B5:9F:43:2B:0F:57:30:72:B1:42:60:64:68
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 29852888
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7k9vlP7J_bWfQysPVzBysUJgZGg.roa
Signing time: Wed 20 Apr 2022 09:00:37 +0000
ROA not before: Wed 20 Apr 2022 09:00:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64490
IP address blocks: 31.148.50.0/24 maxlen: 24
31.148.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 696592520 (0x29852888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Apr 20 09:00:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee4f6f94fec9fdb59f432b0f573072b142606468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0f:9b:db:3e:d3:ce:17:1c:b5:ae:75:89:74:
a6:28:10:a1:a2:f6:2c:7b:07:76:50:f6:64:83:2f:
a2:86:f0:93:84:35:f8:5f:b0:7a:cb:b3:6d:89:d8:
f5:cc:cc:b1:11:2d:b3:b4:55:eb:61:2d:69:42:d8:
8c:88:94:f4:fb:56:45:33:a5:5a:61:05:0b:c0:08:
a2:18:76:78:c2:42:71:08:28:37:6d:3e:4a:77:bb:
3d:7f:fe:19:90:39:1d:58:a7:c1:f3:cb:66:f7:0a:
29:a2:1d:a9:12:6a:fc:ff:49:6b:41:be:30:bf:4b:
41:9c:0e:2c:29:0b:3c:11:47:ba:29:55:39:8a:f8:
ca:b0:d8:31:1e:46:0c:32:a8:9b:84:72:92:10:c6:
70:a1:44:0d:91:f7:56:e8:74:b3:d4:35:ff:b6:7f:
47:26:64:8e:67:3c:f7:0c:9b:b9:cc:ea:e7:c6:ea:
32:f8:38:4d:21:e5:66:2d:ab:b7:53:31:db:4a:dc:
98:6d:94:a6:87:9d:35:20:ce:b3:31:be:84:16:2f:
61:50:04:8a:1f:68:d7:88:dc:70:31:ac:2f:2c:80:
4c:81:9c:f6:80:63:39:19:a6:ac:f8:5e:6d:00:b7:
5a:65:74:d5:66:a2:eb:43:ed:07:66:f3:d5:70:8b:
8c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4F:6F:94:FE:C9:FD:B5:9F:43:2B:0F:57:30:72:B1:42:60:64:68
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7k9vlP7J_bWfQysPVzBysUJgZGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.50.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:6b:57:0c:81:9e:73:9c:00:97:f6:9b:6b:cf:d4:08:f7:85:
d9:34:57:93:a3:e9:a6:f9:0a:19:49:aa:d5:97:d6:c7:31:50:
b5:76:d3:f6:f3:7f:bc:66:35:36:df:14:d1:b8:14:71:05:b3:
d5:38:35:7f:fc:9e:ac:5c:32:ae:dc:ba:42:1f:2a:c4:23:fd:
60:b9:76:b6:fc:1e:86:c9:24:5b:d0:f0:cc:24:97:b4:21:cd:
11:16:d7:f5:88:2a:f3:77:6b:52:54:04:fb:08:fb:f7:2c:ca:
98:8e:a8:64:a0:2b:cc:dd:fb:ec:13:d0:2b:d7:28:47:0f:2b:
d0:98:00:f6:54:8b:12:7d:4d:73:4f:ea:32:f4:1e:a2:94:39:
25:5a:43:fe:bf:b1:94:e7:0a:2e:fb:b4:e5:5b:35:c3:22:fa:
c6:a2:af:c2:4c:73:28:37:23:3e:40:c1:28:14:2e:eb:34:d6:
f6:f1:22:5e:6f:65:7e:aa:cd:93:df:1f:a2:ff:3b:15:07:6d:
43:25:e5:e7:a0:a4:3d:e8:9e:4f:be:c3:96:9b:16:b5:33:e1:
13:3c:b0:a5:38:e9:e3:28:dd:9c:11:2a:89:f3:cb:46:0a:ce:
cc:96:b3:67:f2:42:71:c6:b3:f2:c5:46:f6:fe:02:d4:d8:a1:
76:26:c9:f1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKYUoiDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDQy
MDA5MDAzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWU0ZjZmOTRmZWM5
ZmRiNTlmNDMyYjBmNTczMDcyYjE0MjYwNjQ2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJUPm9s+084XHLWudYl0pigQoaL2LHsHdlD2ZIMvoobwk4Q1
+F+wesuzbYnY9czMsREts7RV62EtaULYjIiU9PtWRTOlWmEFC8AIohh2eMJCcQgo
N20+Sne7PX/+GZA5HVinwfPLZvcKKaIdqRJq/P9Ja0G+ML9LQZwOLCkLPBFHuilV
OYr4yrDYMR5GDDKom4RykhDGcKFEDZH3Vuh0s9Q1/7Z/RyZkjmc89wybuczq58bq
Mvg4TSHlZi2rt1Mx20rcmG2UpoedNSDOszG+hBYvYVAEih9o14jccDGsLyyATIGc
9oBjORmmrPhebQC3WmV01Wai60PtB2bz1XCLjHECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTuT2+U/sn9tZ9DKw9XMHKxQmBkaDAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
LzdrOXZsUDdKX2JXZlF5c1BWekJ5c1VKZ1pHZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAR+UMjANBgkqhkiG9w0BAQsFAAOC
AQEALWtXDIGec5wAl/aba8/UCPeF2TRXk6PppvkKGUmq1ZfWxzFQtXbT9vN/vGY1
Nt8U0bgUcQWz1Tg1f/yerFwyrty6Qh8qxCP9YLl2tvwehskkW9DwzCSXtCHNERbX
9Ygq83drUlQE+wj79yzKmI6oZKArzN377BPQK9coRw8r0JgA9lSLEn1Nc0/qMvQe
opQ5JVpD/r+xlOcKLvu05Vs1wyL6xqKvwkxzKDcjPkDBKBQu6zTW9vEiXm9lfqrN
k98fov87FQdtQyXl56CkPeieT77DlpsWtTPhEzywpTjp4yjdnBEqifPLRgrOzJaz
Z/JCccaz8sVG9v4C1NihdibJ8Q==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:27 2025 by rpki-client