Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k5bFEuDtcOBRG4xDzTobJGmd4zE.roa
File: k5bFEuDtcOBRG4xDzTobJGmd4zE.roa (raw, json)
Hash identifier: ROZ7kNrW5YDM6aeEZTH//J6LHc6UT8KktZBEHRuX8J0=
Subject key identifier: 93:96:C5:12:E0:ED:70:E0:51:1B:8C:43:CD:3A:1B:24:69:9D:E3:31
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27F6A83A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k5bFEuDtcOBRG4xDzTobJGmd4zE.roa
Signing time: Sat 01 Jan 2022 16:09:15 +0000
ROA not before: Sat 01 Jan 2022 16:09:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61031
IP address blocks: 31.148.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670476346 (0x27f6a83a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9396c512e0ed70e0511b8c43cd3a1b24699de331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:0d:20:37:83:23:74:39:96:18:c3:d8:9b:
a8:c8:b0:46:b4:c6:81:85:51:87:ad:e4:26:11:2a:
87:c9:eb:e4:b9:f1:ca:b4:1a:0e:6b:cf:6b:fd:7e:
0a:47:d4:76:3a:eb:fd:23:eb:6a:82:a3:ef:38:bc:
89:f7:9b:43:61:7d:29:a6:14:8d:62:f6:75:59:dc:
a5:82:b8:58:7c:19:21:bb:2a:ea:1f:56:f7:9b:4f:
c2:eb:75:c0:20:99:92:8d:56:1d:52:3f:86:ce:4b:
3e:e1:c8:b7:41:34:f4:86:de:66:e7:28:26:b4:5f:
11:4f:25:cc:f5:f7:ad:9e:90:b4:a9:9e:7c:62:81:
32:4c:cf:4d:e0:b8:fc:b8:3a:fb:e3:42:02:94:27:
d0:db:28:ae:a9:62:81:2d:dd:e3:bc:f9:9a:9a:31:
8b:33:e3:33:05:eb:ca:13:af:b7:aa:3a:1a:f0:6d:
6f:a6:fc:69:e8:5c:f9:63:96:20:b3:c1:ee:94:a4:
72:6c:ab:03:f4:bc:80:a9:9b:53:3a:2f:1a:f5:85:
6b:1a:ed:c8:11:a6:87:d7:5d:f5:2d:ae:0b:e7:8d:
cb:9e:56:76:82:f9:c1:f2:79:13:40:27:5d:80:3a:
27:f1:36:82:b7:a4:89:cd:3f:84:d2:69:1e:a2:c2:
cb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:96:C5:12:E0:ED:70:E0:51:1B:8C:43:CD:3A:1B:24:69:9D:E3:31
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/k5bFEuDtcOBRG4xDzTobJGmd4zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.148.0/24
Signature Algorithm: sha256WithRSAEncryption
92:21:c3:c5:f1:81:35:79:09:cf:8e:b8:0e:fe:b6:eb:c8:24:
55:34:a3:b4:95:58:aa:bb:59:6d:13:12:f7:7b:d8:24:51:f2:
bf:2f:27:37:88:14:17:e8:e0:07:3a:e9:26:8e:ec:51:ac:70:
65:b6:41:2e:38:fe:1e:58:37:da:d6:f8:37:43:c3:6a:c0:39:
ea:f1:a9:57:8f:86:d5:c1:c5:ca:7e:72:1f:f4:21:ed:04:48:
16:c6:81:ee:d2:d6:05:f1:f2:64:48:f4:6f:1a:e9:99:ce:d4:
05:50:64:7a:3b:f9:47:56:da:7f:a0:db:a7:97:fa:2f:0d:0e:
6e:86:34:4f:69:7a:3d:2e:80:de:a8:ff:30:32:00:b5:be:13:
a7:56:bd:6a:57:98:ce:7d:75:25:8e:57:20:0f:62:89:fb:0b:
9e:cc:0d:67:43:77:c0:8c:1d:03:b6:d4:25:be:a0:60:ce:76:
78:c6:a9:14:15:14:6a:13:ae:41:72:4b:e4:69:ea:d1:24:8a:
e9:dc:3b:67:4f:a6:f4:c9:ce:e6:64:a4:d8:80:ce:43:94:fb:
92:65:6f:15:3f:a6:d7:b9:6b:2f:1b:6e:6c:cf:42:a1:8a:95:
de:ec:86:ea:68:11:61:b6:c8:de:c8:b8:c6:bb:2f:13:10:3f:
2a:57:a7:05
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ/aoOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDkxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTM5NmM1MTJlMGVk
NzBlMDUxMWI4YzQzY2QzYTFiMjQ2OTlkZTMzMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzQDSA3gyN0OZYYw9ibqMiwRrTGgYVRh63kJhEqh8nr5Lnx
yrQaDmvPa/1+CkfUdjrr/SPraoKj7zi8ifebQ2F9KaYUjWL2dVncpYK4WHwZIbsq
6h9W95tPwut1wCCZko1WHVI/hs5LPuHIt0E09IbeZucoJrRfEU8lzPX3rZ6QtKme
fGKBMkzPTeC4/Lg6++NCApQn0NsorqligS3d47z5mpoxizPjMwXryhOvt6o6GvBt
b6b8aehc+WOWILPB7pSkcmyrA/S8gKmbUzovGvWFaxrtyBGmh9dd9S2uC+eNy55W
doL5wfJ5E0AnXYA6J/E2grekic0/hNJpHqLCyxECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSTlsUS4O1w4FEbjEPNOhskaZ3jMTAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L2s1YkZFdUR0Y09CUkc0eER6VG9iSkdtZDR6RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+UlDANBgkqhkiG9w0BAQsFAAOC
AQEAkiHDxfGBNXkJz464Dv6268gkVTSjtJVYqrtZbRMS93vYJFHyvy8nN4gUF+jg
BzrpJo7sUaxwZbZBLjj+Hlg32tb4N0PDasA56vGpV4+G1cHFyn5yH/Qh7QRIFsaB
7tLWBfHyZEj0bxrpmc7UBVBkejv5R1baf6Dbp5f6Lw0OboY0T2l6PS6A3qj/MDIA
tb4Tp1a9aleYzn11JY5XIA9iifsLnswNZ0N3wIwdA7bUJb6gYM52eMapFBUUahOu
QXJL5Gnq0SSK6dw7Z0+m9MnO5mSk2IDOQ5T7kmVvFT+m17lrLxtubM9CoYqV3uyG
6mgRYbbI3si4xrsvExA/KlenBQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:32 2025 by rpki-client