Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/D9sd9vNLTTiHM-pD3g8ftTMe_1I.roa
File: D9sd9vNLTTiHM-pD3g8ftTMe_1I.roa (raw, json)
Hash identifier: TS8kIxCMV+UGNzPPGR+8oGh7fC2RJe/Z6xQ2J36tAjQ=
Subject key identifier: 0F:DB:1D:F6:F3:4B:4D:38:87:33:EA:43:DE:0F:1F:B5:33:1E:FF:52
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 282E4A2B
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/D9sd9vNLTTiHM-pD3g8ftTMe_1I.roa
Signing time: Sat 01 Jan 2022 16:09:46 +0000
ROA not before: Sat 01 Jan 2022 16:09:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204408
IP address blocks: 31.148.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674122283 (0x282e4a2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fdb1df6f34b4d388733ea43de0f1fb5331eff52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:72:4d:ff:7f:aa:2b:f5:1c:69:b5:09:5f:38:
76:1d:1c:80:a7:2a:41:e9:b4:1e:67:61:05:d3:04:
72:59:fd:7c:35:e8:eb:a6:87:cd:cc:0a:c9:f0:a4:
e5:12:23:3b:b8:73:e0:17:ef:cb:43:91:2d:69:a2:
e2:e5:3e:ae:04:3e:d1:55:ce:a8:7c:3f:3b:62:3e:
b7:12:c4:8d:60:e6:9a:67:2c:28:b3:db:20:b5:cf:
7e:9d:56:c5:45:c5:d1:aa:5e:20:f7:10:26:96:d2:
f8:d7:76:fd:c3:05:c2:35:37:e8:86:1a:16:29:30:
13:f1:47:87:13:66:a2:47:c1:5d:2b:58:9c:72:59:
71:bc:b0:48:18:38:67:3d:d7:ba:22:5a:16:a6:1c:
5f:db:94:0f:a8:eb:88:9f:dc:ec:3f:78:83:bc:24:
11:b6:51:93:a1:3c:66:bd:6f:6f:85:12:47:59:a6:
93:9c:47:23:c4:7b:4d:9d:d6:fd:98:41:21:c3:e8:
ce:9c:ed:40:7a:cd:72:2d:8c:9d:ed:f9:92:dd:d8:
f3:74:10:d2:44:b9:3f:e4:08:67:1f:38:7e:d1:99:
17:2c:ae:71:4a:9f:d5:14:46:97:09:64:a1:da:e6:
fa:32:29:02:ba:d0:90:29:39:86:95:c6:9d:61:ec:
4f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DB:1D:F6:F3:4B:4D:38:87:33:EA:43:DE:0F:1F:B5:33:1E:FF:52
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/D9sd9vNLTTiHM-pD3g8ftTMe_1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ba:1c:8b:d6:63:c7:3d:df:2c:a1:90:9c:67:8e:0d:30:ee:
04:9b:d7:b8:0e:4b:a5:37:30:75:d8:6b:ac:ff:3d:e7:24:be:
5e:e9:b2:79:a0:dc:5b:35:89:c7:9e:10:92:26:c5:54:66:c2:
2d:04:23:45:a0:84:3c:17:a5:c9:dd:67:39:40:a7:d2:3a:27:
3a:78:2c:3a:87:17:0e:1b:90:f1:54:df:0a:54:ad:80:11:f1:
93:43:a2:21:e8:71:3d:32:96:92:9b:09:64:0d:04:99:55:3a:
15:c2:f2:9b:80:bf:c6:ef:7c:cc:7d:cb:69:83:df:39:6a:fc:
37:68:f7:27:53:dc:d1:b0:99:02:fb:f5:e2:74:25:79:17:3d:
43:f6:2a:e6:ef:16:ba:21:71:8c:d2:02:f0:ae:8c:13:62:09:
df:e9:93:5f:b2:10:3f:35:27:1e:9d:31:b4:8a:cf:67:30:e0:
83:9f:ef:d3:92:ce:fd:85:6d:e8:9f:39:55:9d:20:46:93:f0:
37:41:90:36:9f:72:ab:49:ad:8a:f2:bb:21:d3:d7:d8:7c:47:
04:0c:cd:9c:2d:98:e3:71:a9:5f:7e:15:e8:6b:2f:56:59:1c:
ba:44:87:32:4d:1d:d3:81:4e:24:c0:3c:f8:1f:71:04:66:27:
1f:c0:ba:e3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKC5KKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDk0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGZkYjFkZjZmMzRi
NGQzODg3MzNlYTQzZGUwZjFmYjUzMzFlZmY1MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMxyTf9/qiv1HGm1CV84dh0cgKcqQem0HmdhBdMEcln9fDXo
66aHzcwKyfCk5RIjO7hz4Bfvy0ORLWmi4uU+rgQ+0VXOqHw/O2I+txLEjWDmmmcs
KLPbILXPfp1WxUXF0apeIPcQJpbS+Nd2/cMFwjU36IYaFikwE/FHhxNmokfBXStY
nHJZcbywSBg4Zz3XuiJaFqYcX9uUD6jriJ/c7D94g7wkEbZRk6E8Zr1vb4USR1mm
k5xHI8R7TZ3W/ZhBIcPozpztQHrNci2Mne35kt3Y83QQ0kS5P+QIZx84ftGZFyyu
cUqf1RRGlwlkodrm+jIpArrQkCk5hpXGnWHsTyMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQP2x3280tNOIcz6kPeDx+1Mx7/UjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L0Q5c2Q5dk5MVFRpSE0tcEQzZzhmdFRNZV8xSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+U9TANBgkqhkiG9w0BAQsFAAOC
AQEAo7oci9Zjxz3fLKGQnGeODTDuBJvXuA5LpTcwddhrrP895yS+XumyeaDcWzWJ
x54QkibFVGbCLQQjRaCEPBelyd1nOUCn0jonOngsOocXDhuQ8VTfClStgBHxk0Oi
IehxPTKWkpsJZA0EmVU6FcLym4C/xu98zH3LaYPfOWr8N2j3J1Pc0bCZAvv14nQl
eRc9Q/Yq5u8WuiFxjNIC8K6ME2IJ3+mTX7IQPzUnHp0xtIrPZzDgg5/v05LO/YVt
6J85VZ0gRpPwN0GQNp9yq0mtivK7IdPX2HxHBAzNnC2Y43GpX34V6GsvVlkcukSH
Mk0d04FOJMA8+B9xBGYnH8C64w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:49 2024 by rpki-client on console-ams.rpki-client.org