Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/k1AwWLkBlQeAbD25wkmyAdNbhuM.roa
File: k1AwWLkBlQeAbD25wkmyAdNbhuM.roa (raw, json)
Hash identifier: I6K5jMaFaKeK1bKXQTayRZ1sLWtWHSFAgZfpeDqnBMY=
Subject key identifier: 93:50:30:58:B9:01:95:07:80:6C:3D:B9:C2:49:B2:01:D3:5B:86:E3
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 018270E6649988EDA52394423D34E05C881F
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/k1AwWLkBlQeAbD25wkmyAdNbhuM.roa
Signing time: Sat 06 Aug 2022 02:05:23 +0000
ROA not before: Sat 06 Aug 2022 02:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 31.223.200.0/21 maxlen: 24
31.223.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:70:e6:64:99:88:ed:a5:23:94:42:3d:34:e0:5c:88:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Aug 6 02:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93503058b9019507806c3db9c249b201d35b86e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c6:03:34:a6:7a:97:e3:50:00:d1:99:ba:e8:
56:84:47:3b:d0:b4:69:3b:d3:99:10:cb:1e:eb:88:
c3:0e:55:5b:26:04:22:b0:ea:ec:b8:0a:71:c2:ce:
02:23:c1:9f:1c:51:31:88:ee:db:3a:18:04:ef:9f:
3c:1e:f8:bf:de:b3:7d:e2:7b:ab:35:2b:e9:54:e1:
9c:f9:a1:cd:11:93:8a:37:0c:98:39:95:50:d2:f0:
88:b8:bb:2a:24:75:e2:de:3d:d6:e1:9b:f1:9c:c9:
44:3a:c0:eb:c0:a6:c6:f0:3a:41:cb:1f:77:25:a5:
c9:3e:5e:38:a2:a6:19:88:e8:f6:96:fa:96:c4:13:
d7:0d:23:82:88:47:af:2f:7c:de:9d:0e:72:72:be:
01:28:4f:00:75:c9:c7:33:3b:6d:63:e8:0f:88:ea:
34:21:59:9d:fa:46:60:90:be:c1:8d:23:d9:97:2c:
f0:09:b9:0e:e7:8c:f3:e9:e2:34:73:1b:ff:0c:7f:
c1:4c:8a:2f:04:90:3f:4d:5b:fd:47:92:f2:b4:fe:
70:3b:61:f7:9f:03:6d:da:65:ab:41:6a:c2:24:4b:
11:52:03:ca:31:6d:38:04:cc:79:ed:8b:a2:29:aa:
75:d1:d3:b6:28:7e:47:7a:26:dc:5c:06:13:8b:b6:
1f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:50:30:58:B9:01:95:07:80:6C:3D:B9:C2:49:B2:01:D3:5B:86:E3
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/k1AwWLkBlQeAbD25wkmyAdNbhuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.192.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:f7:9c:d8:36:87:50:87:be:0c:82:c4:95:62:24:79:cb:d4:
1c:2d:b4:6a:71:85:12:42:10:e3:e5:cf:55:60:b9:2e:a4:22:
4a:28:a2:b0:69:71:33:d0:b0:fc:81:d7:c5:b7:b5:92:d3:cc:
91:b3:e2:8f:e2:33:8a:e6:8c:e2:1a:3f:9b:62:f2:fc:eb:d6:
68:39:8b:5f:89:9a:c2:b4:a0:89:bf:fb:2e:b8:6c:ad:cb:92:
5e:55:73:7b:dc:6a:67:9f:27:7b:25:c2:34:f3:41:d9:cc:f2:
9b:fd:3d:a8:83:41:d5:37:d5:8a:33:42:6d:76:49:37:20:2e:
3d:a1:4e:8e:41:f2:04:b1:44:50:70:35:91:9f:51:6b:7a:b2:
23:67:2f:53:cc:85:c7:23:b8:78:2d:46:a1:35:5f:e5:8c:84:
48:83:46:95:bc:ba:f9:fa:79:89:da:e3:4b:ac:82:14:d6:ac:
2d:07:3a:a5:17:04:06:8b:b7:1b:80:03:8f:60:35:4f:2b:52:
0c:13:00:63:b6:cf:89:7c:ee:8a:b6:da:6b:5b:50:83:b1:f2:
69:44:7a:a6:ed:94:53:7f:01:7c:0c:0b:e9:2a:4c:aa:bc:a9:
a6:d9:80:76:35:a2:ab:c9:f2:c9:ac:b0:43:e4:e9:de:2e:8a:
75:5a:a9:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJw5mSZiO2lI5RCPTTgXIgfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MjUzNzYwMWEzMTY5NzQwNDkyMmQ5NTdlNzQ0NTBmNWE5
Y2JlNzMwHhcNMjIwODA2MDIwNTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MzUwMzA1OGI5MDE5NTA3ODA2YzNkYjljMjQ5YjIwMWQzNWI4NmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMYDNKZ6l+NQANGZuuhWhEc70LRp
O9OZEMse64jDDlVbJgQisOrsuApxws4CI8GfHFExiO7bOhgE7588Hvi/3rN94nur
NSvpVOGc+aHNEZOKNwyYOZVQ0vCIuLsqJHXi3j3W4ZvxnMlEOsDrwKbG8DpByx93
JaXJPl44oqYZiOj2lvqWxBPXDSOCiEevL3zenQ5ycr4BKE8AdcnHMzttY+gPiOo0
IVmd+kZgkL7BjSPZlyzwCbkO54zz6eI0cxv/DH/BTIovBJA/TVv9R5LytP5wO2H3
nwNt2mWrQWrCJEsRUgPKMW04BMx57YuiKap10dO2KH5HeibcXAYTi7YfWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJNQMFi5AZUHgGw9ucJJsgHTW4bjMB8GA1UdIwQY
MBaAFBclN2AaMWl0BJItlX50RQ9anL5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQt
ZTYwNGI2MWJlMGVhLzEvazFBd1dMa0JsUWVBYkQyNXdrbXlBZE5iaHVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQtZTYwNGI2MWJlMGVh
LzEvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEH9/AMA0G
CSqGSIb3DQEBCwUAA4IBAQBc95zYNodQh74MgsSVYiR5y9QcLbRqcYUSQhDj5c9V
YLkupCJKKKKwaXEz0LD8gdfFt7WS08yRs+KP4jOK5oziGj+bYvL869ZoOYtfiZrC
tKCJv/suuGyty5JeVXN73Gpnnyd7JcI080HZzPKb/T2og0HVN9WKM0Jtdkk3IC49
oU6OQfIEsURQcDWRn1FrerIjZy9TzIXHI7h4LUahNV/ljIRIg0aVvLr5+nmJ2uNL
rIIU1qwtBzqlFwQGi7cbgAOPYDVPK1IMEwBjts+JfO6KttprW1CDsfJpRHqm7ZRT
fwF8DAvpKkyqvKmm2YB2NaKryfLJrLBD5OneLop1WqnL
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:06 2023 by rpki-client on console-fra.rpki-client.org