Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/arQbSWg46NRHszIhNlXZYUDG-mw.roa
File: arQbSWg46NRHszIhNlXZYUDG-mw.roa (raw, json)
Hash identifier: bVx7t3m213h3lkEzawAsMQLXfYnZ81cMIFrznawghEU=
Subject key identifier: 6A:B4:1B:49:68:38:E8:D4:47:B3:32:21:36:55:D9:61:40:C6:FA:6C
Certificate issuer: /CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Certificate serial: CFC1F4
Authority key identifier: 7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/arQbSWg46NRHszIhNlXZYUDG-mw.roa
Signing time: Sat 01 Jan 2022 12:04:42 +0000
ROA not before: Sat 01 Jan 2022 12:04:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 31.222.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13615604 (0xcfc1f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Validity
Not Before: Jan 1 12:04:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ab41b496838e8d447b332213655d96140c6fa6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5e:7a:4a:5d:58:07:3a:c4:a5:44:6d:c2:ed:
78:7f:fb:11:fc:52:70:6b:9f:89:a1:f2:4c:e7:20:
7b:67:95:bc:46:51:90:4b:75:34:38:fb:19:83:ec:
ee:b6:ab:a3:3b:5f:0a:52:ae:d6:f2:7f:0b:6c:2b:
15:c6:cf:98:fd:67:89:3d:94:a7:84:61:89:06:60:
98:6b:e1:d0:19:f3:f3:f0:62:33:c1:dd:07:15:0d:
8d:5f:68:30:2b:42:ca:1d:2e:ad:f7:61:a8:23:3c:
3f:00:c9:e8:ef:57:5e:67:a4:8d:73:34:e1:a9:2c:
6d:44:fb:e6:72:39:80:01:9b:b9:21:03:3c:63:00:
87:a1:d0:f6:4c:16:ec:85:fc:e6:93:e3:cf:bd:d3:
c1:82:e8:30:92:57:df:cd:cc:0d:60:9a:7c:80:1f:
61:f2:71:15:13:fc:06:ce:5c:5a:d6:8a:d3:60:e0:
b4:ec:19:31:5a:8b:4a:9b:86:3e:66:96:6b:e0:1e:
9d:cb:27:e3:07:ea:1f:1f:63:11:b8:c2:ef:58:ab:
28:f8:ab:75:95:a0:40:4e:88:38:0b:67:84:8f:e0:
bc:82:5d:d1:03:6e:66:de:54:66:05:f5:9e:48:fb:
da:b9:83:07:a1:43:ff:40:b2:1f:c1:19:48:3d:81:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B4:1B:49:68:38:E8:D4:47:B3:32:21:36:55:D9:61:40:C6:FA:6C
X509v3 Authority Key Identifier:
keyid:7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/arQbSWg46NRHszIhNlXZYUDG-mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/ewqeoIbYHu1NKd5GPWApCI_jvsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.228.0/24
Signature Algorithm: sha256WithRSAEncryption
32:52:67:02:a9:b3:3f:5d:94:20:71:6b:58:0e:be:ed:45:ae:
42:72:d3:72:c3:27:05:39:84:90:8b:61:36:7d:a8:83:40:58:
75:74:9e:5b:47:10:ba:57:b3:80:f6:9a:38:f2:85:6c:93:03:
e1:dc:00:21:af:a8:15:7d:3d:c5:d2:d9:53:30:e9:c0:23:cf:
b7:06:8b:be:f1:3d:d2:ca:9b:cf:40:8d:76:3f:cd:d6:50:bc:
a5:8b:18:28:03:99:c0:e0:c2:3d:a7:8e:1d:bd:69:8d:d9:05:
14:a5:b2:e9:c5:86:37:b2:81:10:27:78:ef:92:7b:9c:c3:d5:
32:54:8d:88:83:9c:92:d8:13:c1:d5:50:16:fd:cb:3c:45:e7:
3f:aa:31:21:fa:e4:3a:5d:70:76:71:ae:b4:2d:6c:a3:0e:3a:
12:37:7d:02:77:7b:56:f2:ce:29:c4:2b:b8:30:1c:07:3b:69:
30:68:32:c4:34:d7:dd:7b:60:e0:fe:e7:9d:a9:9d:5f:0c:e5:
dc:26:1f:7e:93:f5:91:f6:45:89:db:30:fb:e0:bb:56:ad:3c:
e2:6c:6d:97:7c:51:e0:30:6f:79:96:8e:36:c4:4f:16:19:38:
85:ee:0f:65:3e:53:90:67:24:22:77:93:f8:d2:01:2e:15:7a:
51:85:42:5b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAM/B9DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YjBhOWVhMDg2ZDgxZWVkNGQyOWRlNDYzZDYwMjkwODhmZTNiZWMxMB4XDTIyMDEw
MTEyMDQ0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmFiNDFiNDk2ODM4
ZThkNDQ3YjMzMjIxMzY1NWQ5NjE0MGM2ZmE2YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKJeekpdWAc6xKVEbcLteH/7EfxScGufiaHyTOcge2eVvEZR
kEt1NDj7GYPs7raroztfClKu1vJ/C2wrFcbPmP1niT2Up4RhiQZgmGvh0Bnz8/Bi
M8HdBxUNjV9oMCtCyh0urfdhqCM8PwDJ6O9XXmekjXM04aksbUT75nI5gAGbuSED
PGMAh6HQ9kwW7IX85pPjz73TwYLoMJJX383MDWCafIAfYfJxFRP8Bs5cWtaK02Dg
tOwZMVqLSpuGPmaWa+Aencsn4wfqHx9jEbjC71irKPirdZWgQE6IOAtnhI/gvIJd
0QNuZt5UZgX1nkj72rmDB6FD/0CyH8EZSD2BFokCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRqtBtJaDjo1EezMiE2VdlhQMb6bDAfBgNVHSMEGDAWgBR7Cp6ghtge7U0p
3kY9YCkIj+O+wTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2V3cWVvSWJZSHUxTktkNUdQV0FwQ0lfanZzRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvNGI5N2M0LWRlMGMtNDVkNy04ZjE3LTVkMGFlMTQ1NjNkNy8x
L2FyUWJTV2c0Nk5SSHN6SWhObFhaWVVERy1tdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
NGI5N2M0LWRlMGMtNDVkNy04ZjE3LTVkMGFlMTQ1NjNkNy8xL2V3cWVvSWJZSHUx
TktkNUdQV0FwQ0lfanZzRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB/e5DANBgkqhkiG9w0BAQsFAAOC
AQEAMlJnAqmzP12UIHFrWA6+7UWuQnLTcsMnBTmEkIthNn2og0BYdXSeW0cQulez
gPaaOPKFbJMD4dwAIa+oFX09xdLZUzDpwCPPtwaLvvE90sqbz0CNdj/N1lC8pYsY
KAOZwODCPaeOHb1pjdkFFKWy6cWGN7KBECd475J7nMPVMlSNiIOcktgTwdVQFv3L
PEXnP6oxIfrkOl1wdnGutC1sow46Ejd9And7VvLOKcQruDAcBztpMGgyxDTX3Xtg
4P7nnamdXwzl3CYffpP1kfZFidsw++C7Vq084mxtl3xR4DBveZaONsRPFhk4he4P
ZT5TkGckIneT+NIBLhV6UYVCWw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-fra.rpki-client.org