Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/gKk6-khAGYi3ILq29mR1Wuwc6Pw.roa
File: gKk6-khAGYi3ILq29mR1Wuwc6Pw.roa (raw, json)
Hash identifier: KaZaFAdaUvwJ3Pz08RaMDMkU7ZI/lcFFMgrAAYiau8I=
Subject key identifier: 80:A9:3A:FA:48:40:19:88:B7:20:BA:B6:F6:64:75:5A:EC:1C:E8:FC
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 0181EE0EB545B9FD7F78548C98F50582804A
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/gKk6-khAGYi3ILq29mR1Wuwc6Pw.roa
Signing time: Mon 11 Jul 2022 16:19:10 +0000
ROA not before: Mon 11 Jul 2022 16:19:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 31.223.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ee:0e:b5:45:b9:fd:7f:78:54:8c:98:f5:05:82:80:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jul 11 16:19:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80a93afa48401988b720bab6f664755aec1ce8fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:5c:4e:a5:13:01:bb:54:12:05:7f:ca:33:
11:52:60:51:79:a9:7e:b6:d5:98:46:2d:e6:94:89:
c0:58:af:27:52:55:dd:60:50:46:7e:6e:42:79:c4:
37:22:93:db:8e:6a:33:e3:69:e2:ed:24:95:1c:80:
ea:d4:0a:37:78:50:03:03:a6:a5:b9:0e:ba:5e:92:
37:18:94:6a:d0:76:86:05:e3:b8:b3:fa:44:02:c7:
10:b6:46:de:97:b0:a3:3b:92:2c:10:26:e9:fb:93:
46:09:05:2e:f2:ae:1e:1f:8d:41:6f:0c:a6:43:bc:
01:78:f5:e0:bf:b7:58:bf:ff:b5:6b:d8:5a:25:29:
b1:f6:fe:05:31:12:55:7a:fe:72:63:1a:86:31:c8:
a8:06:f4:fe:b8:92:79:bc:ea:36:1a:69:41:be:8c:
3b:a2:be:95:a7:d2:38:9c:ca:b1:68:bb:c9:3f:3a:
d4:03:e8:25:64:51:05:79:66:9d:dc:36:dd:b1:08:
8f:ff:73:54:69:d6:f1:b8:25:dc:5f:f2:87:f4:a3:
cc:d1:e7:a6:e9:01:5d:ad:fa:66:b9:1a:d0:8b:3f:
3a:0b:c9:1b:e7:77:c2:72:d2:b9:6a:b6:0e:33:0d:
0b:73:2e:6f:76:cb:4b:bd:ee:36:79:0e:92:67:28:
58:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A9:3A:FA:48:40:19:88:B7:20:BA:B6:F6:64:75:5A:EC:1C:E8:FC
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/gKk6-khAGYi3ILq29mR1Wuwc6Pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.200.0/21
Signature Algorithm: sha256WithRSAEncryption
62:d2:f6:0a:42:9e:98:8d:eb:37:2e:42:73:1c:6f:8f:d6:9c:
fe:00:bc:f9:e0:a5:8a:03:65:02:b5:8c:fd:87:ef:e1:3f:86:
04:f1:db:2e:a3:64:6e:08:97:77:5e:17:af:89:94:22:b1:d7:
64:3c:d1:41:f5:f1:18:ba:61:69:ab:e8:ca:af:ef:65:9f:13:
88:7b:b9:1b:74:68:4b:be:c1:dd:f9:bf:34:69:51:08:c5:bb:
5b:f6:e8:57:16:51:49:32:98:22:8a:6d:63:a0:92:16:ee:de:
9c:62:a9:e6:91:2a:a0:e8:e6:b4:6c:89:90:aa:1b:16:b2:70:
60:01:97:01:72:e0:5a:df:ef:7e:bc:ce:39:66:93:de:65:4a:
9f:22:2f:ee:39:73:bc:2f:cd:d1:24:10:d3:a5:c4:85:cf:ab:
aa:33:4c:e8:91:76:a8:72:9c:25:11:29:58:ae:55:25:ad:22:
3c:15:ac:39:99:b1:71:2b:7b:e5:09:8a:54:a3:b2:d5:ec:40:
79:63:56:75:bc:78:71:41:3d:d6:49:dd:39:39:72:76:e1:75:
62:b8:d2:52:32:5f:cf:2f:10:fd:d9:c4:74:06:ac:88:92:cb:
cf:65:1b:d9:d7:7e:2c:58:17:ac:8e:dd:9f:cb:b0:26:3f:ed:
5d:93:a1:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHuDrVFuf1/eFSMmPUFgoBKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MjUzNzYwMWEzMTY5NzQwNDkyMmQ5NTdlNzQ0NTBmNWE5
Y2JlNzMwHhcNMjIwNzExMTYxOTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGE5M2FmYTQ4NDAxOTg4YjcyMGJhYjZmNjY0NzU1YWVjMWNlOGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+tcTqUTAbtUEgV/yjMRUmBReal+
ttWYRi3mlInAWK8nUlXdYFBGfm5CecQ3IpPbjmoz42ni7SSVHIDq1Ao3eFADA6al
uQ66XpI3GJRq0HaGBeO4s/pEAscQtkbel7CjO5IsECbp+5NGCQUu8q4eH41Bbwym
Q7wBePXgv7dYv/+1a9haJSmx9v4FMRJVev5yYxqGMcioBvT+uJJ5vOo2GmlBvow7
or6Vp9I4nMqxaLvJPzrUA+glZFEFeWad3DbdsQiP/3NUadbxuCXcX/KH9KPM0eem
6QFdrfpmuRrQiz86C8kb53fCctK5arYOMw0Lcy5vdstLve42eQ6SZyhY8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFICpOvpIQBmItyC6tvZkdVrsHOj8MB8GA1UdIwQY
MBaAFBclN2AaMWl0BJItlX50RQ9anL5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQt
ZTYwNGI2MWJlMGVhLzEvZ0trNi1raEFHWWkzSUxxMjltUjFXdXdjNlB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQtZTYwNGI2MWJlMGVh
LzEvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDH9/IMA0G
CSqGSIb3DQEBCwUAA4IBAQBi0vYKQp6Yjes3LkJzHG+P1pz+ALz54KWKA2UCtYz9
h+/hP4YE8dsuo2RuCJd3XheviZQisddkPNFB9fEYumFpq+jKr+9lnxOIe7kbdGhL
vsHd+b80aVEIxbtb9uhXFlFJMpgiim1joJIW7t6cYqnmkSqg6Oa0bImQqhsWsnBg
AZcBcuBa3+9+vM45ZpPeZUqfIi/uOXO8L83RJBDTpcSFz6uqM0zokXaocpwlESlY
rlUlrSI8Faw5mbFxK3vlCYpUo7LV7EB5Y1Z1vHhxQT3WSd05OXJ24XViuNJSMl/P
LxD92cR0BqyIksvPZRvZ134sWBesjt2fy7AmP+1dk6Er
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:06 2023 by rpki-client on console-fra.rpki-client.org