Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WXemz8W-s_pEU7WzT3wEB_RGdeE.roa
File: WXemz8W-s_pEU7WzT3wEB_RGdeE.roa (raw, json)
Hash identifier: 3o9T4WF+WNL+z4rN7WMUcwzvQRSbJSG0RzydZ3kW9L0=
Subject key identifier: 59:77:A6:CF:C5:BE:B3:FA:44:53:B5:B3:4F:7C:04:07:F4:46:75:E1
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2816A3C3
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WXemz8W-s_pEU7WzT3wEB_RGdeE.roa
Signing time: Sat 01 Jan 2022 16:09:35 +0000
ROA not before: Sat 01 Jan 2022 16:09:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62444
IP address blocks: 31.148.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672572355 (0x2816a3c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5977a6cfc5beb3fa4453b5b34f7c0407f44675e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:56:d9:61:0d:13:1d:65:44:e0:ab:b9:c3:9e:
20:21:70:d3:63:41:15:d2:95:12:10:dc:ba:01:0a:
e7:e1:15:8e:8d:91:0a:7e:b2:ac:0d:c8:a0:52:fc:
4e:ce:67:7f:ed:ce:84:5d:d9:b1:f2:58:66:68:dc:
d9:34:fd:28:44:30:04:ea:69:c0:21:24:1d:94:71:
88:8e:65:dc:bf:bc:f3:85:ad:86:01:8a:f9:de:05:
4d:14:56:5c:bd:fc:c4:a2:d1:d7:b6:83:1f:0a:05:
6a:c6:f8:5a:15:9d:76:83:d9:50:80:7b:48:3c:67:
1b:c1:5a:ef:ce:0f:2c:47:93:ee:ba:e1:c2:82:69:
8c:5a:2a:8c:bd:56:d5:e1:80:8b:a2:0c:59:50:e7:
a8:24:55:70:aa:d2:f9:0d:b4:f6:cd:24:e8:e9:9a:
7c:42:b1:08:46:6e:48:ab:05:82:c4:b9:5c:fa:f8:
9c:4d:b0:12:45:3b:04:9e:83:ab:cc:ad:96:78:50:
01:8b:15:16:72:e5:58:71:0a:d4:ad:52:2f:ca:09:
5e:a2:f8:e1:d7:81:29:52:e7:c4:b5:f7:2b:d2:bd:
17:3e:ba:a3:0d:33:db:7b:3b:3a:37:73:60:b7:f1:
66:ae:e9:70:14:82:63:db:7a:48:fe:72:0b:2b:f4:
77:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:77:A6:CF:C5:BE:B3:FA:44:53:B5:B3:4F:7C:04:07:F4:46:75:E1
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WXemz8W-s_pEU7WzT3wEB_RGdeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.216.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d0:de:b1:1d:68:a8:e8:9a:6c:93:1b:66:10:19:42:36:53:
68:a2:16:3e:44:e8:0d:eb:91:2a:6c:4e:be:27:a5:ac:ab:2b:
67:8b:66:84:5f:27:b8:42:e1:7e:58:19:06:15:c0:e1:96:76:
0f:4b:40:c8:e3:02:e1:5d:2f:88:17:1e:7c:be:a2:7d:17:d2:
70:92:99:ab:d4:fb:15:65:73:d8:83:c0:a3:23:3c:1b:9b:6f:
46:9d:cc:24:27:e6:a5:4e:f6:61:49:22:8d:02:a4:c0:6b:b6:
6c:44:ed:8d:23:81:e5:17:71:25:11:84:8e:33:e2:e7:c9:d5:
a0:e3:1a:69:a4:90:d3:7c:c9:ec:02:86:2c:12:59:6b:9d:15:
3a:78:18:2a:9a:48:31:47:f8:cf:a4:6e:2e:9c:2a:a6:58:b1:
aa:04:5e:42:c9:02:72:ed:8e:80:d1:18:80:78:8c:61:e1:ee:
ae:b4:7c:b2:68:96:98:14:f2:fe:54:44:11:e0:21:64:65:c2:
a3:c0:bc:ed:69:58:b9:1c:56:49:2b:65:57:cc:7c:3f:34:f5:
07:5e:39:fa:9f:16:a8:90:22:61:41:c8:7f:18:0f:b9:a2:59:
9f:00:9c:ba:36:d4:0c:09:51:85:4e:fd:ac:8a:09:7f:00:dd:
08:9b:a4:67
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKBajwzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDkzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTk3N2E2Y2ZjNWJl
YjNmYTQ0NTNiNWIzNGY3YzA0MDdmNDQ2NzVlMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJpW2WENEx1lROCrucOeICFw02NBFdKVEhDcugEK5+EVjo2R
Cn6yrA3IoFL8Ts5nf+3OhF3ZsfJYZmjc2TT9KEQwBOppwCEkHZRxiI5l3L+884Wt
hgGK+d4FTRRWXL38xKLR17aDHwoFasb4WhWddoPZUIB7SDxnG8Fa784PLEeT7rrh
woJpjFoqjL1W1eGAi6IMWVDnqCRVcKrS+Q209s0k6OmafEKxCEZuSKsFgsS5XPr4
nE2wEkU7BJ6Dq8ytlnhQAYsVFnLlWHEK1K1SL8oJXqL44deBKVLnxLX3K9K9Fz66
ow0z23s7OjdzYLfxZq7pcBSCY9t6SP5yCyv0d6UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRZd6bPxb6z+kRTtbNPfAQH9EZ14TAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L1dYZW16OFctc19wRVU3V3pUM3dFQl9SR2RlRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+U2DANBgkqhkiG9w0BAQsFAAOC
AQEAZNDesR1oqOiabJMbZhAZQjZTaKIWPkToDeuRKmxOvielrKsrZ4tmhF8nuELh
flgZBhXA4ZZ2D0tAyOMC4V0viBcefL6ifRfScJKZq9T7FWVz2IPAoyM8G5tvRp3M
JCfmpU72YUkijQKkwGu2bETtjSOB5RdxJRGEjjPi58nVoOMaaaSQ03zJ7AKGLBJZ
a50VOngYKppIMUf4z6RuLpwqplixqgReQskCcu2OgNEYgHiMYeHurrR8smiWmBTy
/lREEeAhZGXCo8C87WlYuRxWSStlV8x8PzT1B145+p8WqJAiYUHIfxgPuaJZnwCc
ujbUDAlRhU79rIoJfwDdCJukZw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:38 2025 by rpki-client