Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vThRNDqe0HAWiyiXCw5fqB7CB6A.roa
File: vThRNDqe0HAWiyiXCw5fqB7CB6A.roa (raw, json)
Hash identifier: 57n2OW8nq+gRi1acaTPw6/cKtsX3SoMfeLp66Lz6wCw=
Subject key identifier: BD:38:51:34:3A:9E:D0:70:16:8B:28:97:0B:0E:5F:A8:1E:C2:07:A0
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28369734
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vThRNDqe0HAWiyiXCw5fqB7CB6A.roa
Signing time: Sat 01 Jan 2022 16:09:51 +0000
ROA not before: Sat 01 Jan 2022 16:09:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204791
IP address blocks: 31.148.218.0/24 maxlen: 24
146.120.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674666292 (0x28369734)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd3851343a9ed070168b28970b0e5fa81ec207a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:3e:cd:d4:75:ad:ab:3f:6e:b1:63:42:56:
b8:1e:0c:bb:02:a3:ef:c1:cc:84:70:58:0f:bc:b1:
53:75:39:0e:ba:53:70:25:1c:a7:7b:16:c1:d6:13:
be:93:00:bc:bd:4c:47:66:30:00:ac:1e:bd:32:15:
1a:32:c3:8f:a4:09:82:9e:14:fb:8c:e1:96:54:7a:
50:2e:b3:58:92:93:91:bf:54:76:f6:82:ad:f1:77:
2e:83:9e:f9:d3:2c:c5:d9:33:3f:3c:54:84:6b:d1:
0d:e8:f4:7a:c4:6c:85:a5:35:a5:60:14:11:00:be:
d0:eb:4b:f9:da:86:dd:0f:7f:54:4e:45:c0:22:3c:
38:84:03:76:05:30:1e:2d:82:ab:96:87:f3:07:03:
a7:77:97:bf:a4:d5:22:ad:1d:53:93:06:ea:36:a7:
67:63:93:52:ff:a7:8d:a2:4b:4f:4a:5c:39:df:e9:
c9:f7:90:55:c3:51:e1:96:a7:bb:c9:39:62:55:e5:
9f:71:01:f3:f1:c0:19:d0:d6:ba:b1:5a:bc:a7:ee:
da:4d:8e:e2:10:1b:93:bc:58:9e:d0:aa:5c:25:2c:
00:f1:ff:07:18:0c:2e:ac:fb:5c:9f:a2:7b:2f:8f:
ed:69:ac:db:ae:6b:e8:62:e9:f0:f8:ef:6e:f1:3c:
11:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:38:51:34:3A:9E:D0:70:16:8B:28:97:0B:0E:5F:A8:1E:C2:07:A0
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vThRNDqe0HAWiyiXCw5fqB7CB6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.218.0/24
146.120.240.0/24
Signature Algorithm: sha256WithRSAEncryption
99:c9:56:41:6d:0f:7d:6f:84:75:6c:82:7d:c3:dc:bf:37:79:
3b:f0:38:bc:69:80:6f:c7:b2:9f:ed:69:8d:c0:35:0f:61:e3:
fa:f0:f4:2a:e9:6a:c1:6a:b2:48:02:69:11:77:d3:5e:09:fc:
7a:c9:4a:71:f3:1c:6c:14:ea:c2:9c:bc:fe:d5:2c:e0:f1:42:
99:e2:08:45:cf:d2:4b:f8:26:ad:d9:28:00:69:4e:4a:f3:56:
50:c3:1c:03:9a:1c:c7:b2:5e:78:f4:c4:00:ea:db:72:81:ed:
57:bf:6e:ac:c1:20:f8:f1:99:69:3d:fa:ab:80:86:09:8a:d1:
b9:c1:c1:a9:36:b5:f5:77:88:d4:13:27:f3:98:66:68:6c:a5:
63:4a:dd:81:bb:2c:11:32:38:5d:3d:53:c2:3c:7e:33:54:cf:
8c:0a:48:2f:9b:14:67:44:3a:48:9c:3d:38:50:5a:d2:52:82:
f6:0b:1b:2f:54:08:71:25:6d:27:7c:5c:87:6f:14:8c:b9:dd:
29:4a:d6:d0:51:d5:91:f0:80:c2:c8:c0:e7:38:e2:94:4b:d0:
c5:ab:48:86:b0:71:c3:58:1f:9b:a8:19:0b:6a:f0:10:8d:c8:
99:66:4a:52:0d:0d:cd:d0:4d:a6:40:03:ea:1c:44:30:48:de:
ce:02:66:08
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEKDaXNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDk1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQzODUxMzQzYTll
ZDA3MDE2OGIyODk3MGIwZTVmYTgxZWMyMDdhMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKafPs3Uda2rP26xY0JWuB4MuwKj78HMhHBYD7yxU3U5DrpT
cCUcp3sWwdYTvpMAvL1MR2YwAKwevTIVGjLDj6QJgp4U+4zhllR6UC6zWJKTkb9U
dvaCrfF3LoOe+dMsxdkzPzxUhGvRDej0esRshaU1pWAUEQC+0OtL+dqG3Q9/VE5F
wCI8OIQDdgUwHi2Cq5aH8wcDp3eXv6TVIq0dU5MG6janZ2OTUv+njaJLT0pcOd/p
yfeQVcNR4Zanu8k5YlXln3EB8/HAGdDWurFavKfu2k2O4hAbk7xYntCqXCUsAPH/
BxgMLqz7XJ+iey+P7Wms265r6GLp8PjvbvE8Ed0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBS9OFE0Op7QcBaLKJcLDl+oHsIHoDAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L3ZUaFJORHFlMEhBV2l5aVhDdzVmcUI3Q0I2QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAB+U2gMEAJJ48DANBgkqhkiG9w0B
AQsFAAOCAQEAmclWQW0PfW+EdWyCfcPcvzd5O/A4vGmAb8eyn+1pjcA1D2Hj+vD0
KulqwWqySAJpEXfTXgn8eslKcfMcbBTqwpy8/tUs4PFCmeIIRc/SS/gmrdkoAGlO
SvNWUMMcA5ocx7JeePTEAOrbcoHtV79urMEg+PGZaT36q4CGCYrRucHBqTa19XeI
1BMn85hmaGylY0rdgbssETI4XT1Twjx+M1TPjApIL5sUZ0Q6SJw9OFBa0lKC9gsb
L1QIcSVtJ3xch28UjLndKUrW0FHVkfCAwsjA5zjilEvQxatIhrBxw1gfm6gZC2rw
EI3ImWZKUg0NzdBNpkAD6hxEMEjezgJmCA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:52 2024 by rpki-client on console-ams.rpki-client.org