Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YevhcRqaH4C8OzqJqHuguyz_bx4.roa
File: YevhcRqaH4C8OzqJqHuguyz_bx4.roa (raw, json)
Hash identifier: 3bj1G68PfmTAXGvyowIm+YrvdaM1F7jL9VS9ZTnpM2U=
Subject key identifier: 61:EB:E1:71:1A:9A:1F:80:BC:3B:3A:89:A8:7B:A0:BB:2C:FF:6F:1E
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28387388
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YevhcRqaH4C8OzqJqHuguyz_bx4.roa
Signing time: Sat 01 Jan 2022 16:09:52 +0000
ROA not before: Sat 01 Jan 2022 16:09:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204889
IP address blocks: 31.148.20.0/24 maxlen: 24
92.253.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674788232 (0x28387388)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61ebe1711a9a1f80bc3b3a89a87ba0bb2cff6f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8e:0c:f0:ba:bc:bd:e5:b0:ab:ac:2b:50:78:
65:bd:68:67:6e:cf:11:34:13:0b:4e:ca:d9:c5:b3:
cf:14:af:92:fe:07:7f:84:f4:b7:48:53:45:0a:54:
e7:fc:b9:6b:d5:cd:3d:fd:3f:cd:c5:bd:bb:b8:48:
94:b2:6d:81:99:52:dd:c3:cc:43:fd:5a:66:ef:55:
75:68:38:f6:85:f0:ae:31:b7:fb:22:91:49:7c:58:
73:6d:08:df:db:33:8d:85:1f:4d:d1:6b:06:37:f9:
cb:09:63:61:50:01:01:bb:f3:82:10:ca:a3:d8:f6:
05:ca:44:10:32:2a:b4:dc:f7:c3:36:35:c4:a2:33:
d9:65:1b:31:0e:1c:55:54:1e:ea:12:78:26:ed:42:
ee:77:f5:4a:12:bb:00:c1:1c:14:45:9d:1b:f2:6d:
67:26:8c:bc:e2:98:c6:0d:c7:78:c7:39:9a:f8:97:
6d:36:e8:71:49:9e:ff:52:d1:4b:df:fa:b1:56:2d:
22:c1:c3:17:31:b7:3d:2f:6c:97:cb:dd:58:70:f0:
ea:c0:7d:e3:5f:c3:c2:c3:c2:5c:8a:bf:e3:4f:0a:
0c:96:f7:11:a7:da:fc:ac:c3:31:e8:b7:fc:09:c8:
85:6f:48:8b:15:48:cf:58:7f:46:d4:05:20:07:eb:
db:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EB:E1:71:1A:9A:1F:80:BC:3B:3A:89:A8:7B:A0:BB:2C:FF:6F:1E
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YevhcRqaH4C8OzqJqHuguyz_bx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.20.0/24
92.253.204.0/24
Signature Algorithm: sha256WithRSAEncryption
99:e7:b7:e9:00:fb:4a:a2:99:a3:61:2f:c6:d7:51:b2:cd:8a:
5e:be:4f:11:9c:d5:23:f1:30:c6:3e:d0:06:95:f2:38:19:60:
14:70:58:8d:05:c8:78:78:96:19:b2:c7:c2:fb:e4:9e:9e:c5:
03:62:7e:4d:43:be:53:ec:fe:c3:32:43:6d:e4:e0:16:23:eb:
cf:cb:4e:ff:f5:03:e4:80:03:d9:d1:06:52:03:a4:df:a1:e5:
02:f0:27:32:8c:c2:34:9c:84:51:42:08:34:1c:45:e6:f8:9a:
d0:4d:1d:23:88:5a:4e:a2:a4:55:f4:64:99:16:07:e2:8f:a3:
22:fd:2c:89:d7:a3:26:24:d0:13:20:d8:0d:11:00:67:11:52:
cd:8d:f4:8a:de:83:04:f3:4f:f8:ff:73:b4:08:ee:13:37:57:
ab:7e:9a:2c:ff:36:8c:14:ba:e5:9e:ad:92:0f:a3:70:86:38:
ce:52:d2:c4:d6:96:97:83:24:cf:6f:1e:b1:db:a7:e8:0f:83:
4d:27:f4:29:bf:6b:6e:eb:1b:6b:91:d4:23:f4:e6:36:95:7f:
d5:b0:c5:c0:9a:e4:7c:65:e8:2d:95:24:c0:19:76:d5:ef:17:
55:00:c6:3d:e3:3f:88:09:3b:b4:87:92:d3:14:54:84:0a:d4:
9b:bd:ea:38
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEKDhziDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDk1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjFlYmUxNzExYTlh
MWY4MGJjM2IzYTg5YTg3YmEwYmIyY2ZmNmYxZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKqODPC6vL3lsKusK1B4Zb1oZ27PETQTC07K2cWzzxSvkv4H
f4T0t0hTRQpU5/y5a9XNPf0/zcW9u7hIlLJtgZlS3cPMQ/1aZu9VdWg49oXwrjG3
+yKRSXxYc20I39szjYUfTdFrBjf5ywljYVABAbvzghDKo9j2BcpEEDIqtNz3wzY1
xKIz2WUbMQ4cVVQe6hJ4Ju1C7nf1ShK7AMEcFEWdG/JtZyaMvOKYxg3HeMc5mviX
bTbocUme/1LRS9/6sVYtIsHDFzG3PS9sl8vdWHDw6sB941/DwsPCXIq/408KDJb3
Eafa/KzDMei3/AnIhW9IixVIz1h/RtQFIAfr2wUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRh6+FxGpofgLw7Oomoe6C7LP9vHjAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L1lldmhjUnFhSDRDOE96cUpxSHVndXl6X2J4NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAB+UFAMEAFz9zDANBgkqhkiG9w0B
AQsFAAOCAQEAmee36QD7SqKZo2EvxtdRss2KXr5PEZzVI/Ewxj7QBpXyOBlgFHBY
jQXIeHiWGbLHwvvknp7FA2J+TUO+U+z+wzJDbeTgFiPrz8tO//UD5IAD2dEGUgOk
36HlAvAnMozCNJyEUUIINBxF5via0E0dI4haTqKkVfRkmRYH4o+jIv0sidejJiTQ
EyDYDREAZxFSzY30it6DBPNP+P9ztAjuEzdXq36aLP82jBS65Z6tkg+jcIY4zlLS
xNaWl4Mkz28esdun6A+DTSf0Kb9rbusba5HUI/TmNpV/1bDFwJrkfGXoLZUkwBl2
1e8XVQDGPeM/iAk7tIeS0xRUhArUm73qOA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:51 2024 by rpki-client on console-ams.rpki-client.org