Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/qS13zZHgTklWMIbc4k9EQ4UApJI.roa
File: qS13zZHgTklWMIbc4k9EQ4UApJI.roa (raw, json)
Hash identifier: nFd2zNv/NExEIWEdyUPbILqzhjltSRRMIco2LdMkQl4=
Subject key identifier: A9:2D:77:CD:91:E0:4E:49:56:30:86:DC:E2:4F:44:43:85:00:A4:92
Certificate issuer: /CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Certificate serial: 0182207BDC733A92A9941F11EF8C5E2F3680
Authority key identifier: 7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/qS13zZHgTklWMIbc4k9EQ4UApJI.roa
Signing time: Thu 21 Jul 2022 11:19:24 +0000
ROA not before: Thu 21 Jul 2022 11:19:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 31.222.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:7b:dc:73:3a:92:a9:94:1f:11:ef:8c:5e:2f:36:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Validity
Not Before: Jul 21 11:19:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a92d77cd91e04e49563086dce24f44438500a492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:33:b8:c1:b5:81:bc:7a:71:24:44:37:d8:1f:
bf:17:b4:54:43:21:64:56:96:e9:65:e6:ce:87:ff:
84:8e:e9:76:c1:c4:ce:79:ac:20:44:90:8f:91:12:
50:1a:8c:e0:87:6c:50:5b:85:31:11:0d:a6:c3:ae:
e2:a8:ba:1d:89:e3:a5:0a:77:a7:d7:3e:4e:b1:b9:
d5:4d:35:fe:b9:82:23:6a:24:4f:32:11:57:f7:d8:
a1:93:20:41:c4:80:9b:1f:a4:be:37:3e:37:b3:6d:
6c:ff:2d:03:f5:8c:5e:e9:8d:9b:38:0f:34:a5:18:
ad:d7:ab:bc:f2:35:ea:87:e5:87:5e:a3:ad:4b:fe:
db:0c:92:58:bf:f0:be:3e:eb:32:15:00:85:27:22:
94:05:54:dd:e1:2e:14:a7:47:62:4b:3f:e6:80:b2:
70:57:25:32:ac:f4:60:34:f6:c1:eb:88:b3:94:96:
c5:35:0f:6d:f1:00:fd:27:cc:1e:d4:de:05:fa:1e:
cc:e9:fa:a4:96:60:2f:99:15:25:af:9b:be:78:9d:
bd:d0:98:ba:2d:85:f6:1a:eb:df:15:4e:44:77:af:
c2:24:ed:4e:97:88:e4:19:88:de:36:3e:b4:48:b9:
f6:44:08:4a:ee:d6:77:de:b9:3f:51:26:23:af:f3:
98:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2D:77:CD:91:E0:4E:49:56:30:86:DC:E2:4F:44:43:85:00:A4:92
X509v3 Authority Key Identifier:
keyid:7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/qS13zZHgTklWMIbc4k9EQ4UApJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/ewqeoIbYHu1NKd5GPWApCI_jvsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.228.0/24
Signature Algorithm: sha256WithRSAEncryption
32:63:5c:67:70:03:1b:9a:df:d5:72:75:43:07:f0:e3:71:d5:
6b:9d:71:5a:d2:93:74:b1:b5:0e:08:20:b2:4d:0e:0c:92:0f:
96:d4:87:62:0f:57:18:6e:13:f1:24:17:b9:d2:bc:d0:14:fe:
d4:b4:c9:25:df:dd:40:68:79:af:9d:f0:4f:4e:e6:c6:62:7f:
51:e8:f5:12:84:7a:14:14:e1:bc:0c:46:79:b9:6c:0b:31:2d:
fc:df:1f:81:0d:47:79:30:05:e8:b2:55:d1:c3:7a:60:db:fa:
d5:5b:ad:69:4d:3c:bc:60:5c:10:f1:ef:93:78:09:46:aa:e4:
17:c9:67:95:af:f7:f6:53:da:a9:d2:9b:cc:b6:35:45:f3:58:
35:4a:65:55:95:f1:5b:ec:b7:99:f6:17:91:3f:f3:90:5b:c6:
46:9a:3f:ae:1c:9a:f1:a1:7a:94:59:10:60:63:9d:56:d6:25:
0b:e8:52:51:18:67:85:aa:ca:9f:89:68:24:66:f6:b1:ff:3f:
31:4d:18:42:e3:75:02:87:9e:12:57:24:07:22:bc:97:94:8e:
f9:85:99:08:0e:df:12:46:37:07:7d:db:46:3d:ab:0d:e6:6a:
ae:f3:03:5a:08:f1:ec:46:12:fb:04:d5:8f:40:d6:40:53:07:
06:89:40:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIge9xzOpKplB8R74xeLzaAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiMGE5ZWEwODZkODFlZWQ0ZDI5ZGU0NjNkNjAyOTA4OGZl
M2JlYzEwHhcNMjIwNzIxMTExOTI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTJkNzdjZDkxZTA0ZTQ5NTYzMDg2ZGNlMjRmNDQ0Mzg1MDBhNDkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTO4wbWBvHpxJEQ32B+/F7RUQyFk
VpbpZebOh/+Ejul2wcTOeawgRJCPkRJQGozgh2xQW4UxEQ2mw67iqLodieOlCnen
1z5OsbnVTTX+uYIjaiRPMhFX99ihkyBBxICbH6S+Nz43s21s/y0D9Yxe6Y2bOA80
pRit16u88jXqh+WHXqOtS/7bDJJYv/C+PusyFQCFJyKUBVTd4S4Up0diSz/mgLJw
VyUyrPRgNPbB64izlJbFNQ9t8QD9J8we1N4F+h7M6fqklmAvmRUlr5u+eJ290Ji6
LYX2GuvfFU5Ed6/CJO1Ol4jkGYjeNj60SLn2RAhK7tZ33rk/USYjr/OYhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKktd82R4E5JVjCG3OJPREOFAKSSMB8GA1UdIwQY
MBaAFHsKnqCG2B7tTSneRj1gKQiP477BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXdxZW9JYllIdTFOS2Q1R1BXQXBDSV9qdnNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS80Yjk3YzQtZGUwYy00NWQ3LThmMTct
NWQwYWUxNDU2M2Q3LzEvcVMxM3paSGdUa2xXTUliYzRrOUVRNFVBcEpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS80Yjk3YzQtZGUwYy00NWQ3LThmMTctNWQwYWUxNDU2M2Q3
LzEvZXdxZW9JYllIdTFOS2Q1R1BXQXBDSV9qdnNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH97kMA0G
CSqGSIb3DQEBCwUAA4IBAQAyY1xncAMbmt/VcnVDB/DjcdVrnXFa0pN0sbUOCCCy
TQ4Mkg+W1IdiD1cYbhPxJBe50rzQFP7UtMkl391AaHmvnfBPTubGYn9R6PUShHoU
FOG8DEZ5uWwLMS383x+BDUd5MAXoslXRw3pg2/rVW61pTTy8YFwQ8e+TeAlGquQX
yWeVr/f2U9qp0pvMtjVF81g1SmVVlfFb7LeZ9heRP/OQW8ZGmj+uHJrxoXqUWRBg
Y51W1iUL6FJRGGeFqsqfiWgkZvax/z8xTRhC43UCh54SVyQHIryXlI75hZkIDt8S
RjcHfdtGPasN5mqu8wNaCPHsRhL7BNWPQNZAUwcGiUCc
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:32 2023 by rpki-client on console-ams.rpki-client.org