Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/4JbmZC9c6gTJpjxgMLQeDwQmT4Y.roa
File: 4JbmZC9c6gTJpjxgMLQeDwQmT4Y.roa (raw, json)
Hash identifier: BuBqOtIhwdMmbfSLMFbDjGTF04VBrBzK5aJEwH8Pgvk=
Subject key identifier: E0:96:E6:64:2F:5C:EA:04:C9:A6:3C:60:30:B4:1E:0F:04:26:4F:86
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42C074C6
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/4JbmZC9c6gTJpjxgMLQeDwQmT4Y.roa
Signing time: Sun 01 May 2022 07:14:35 +0000
ROA not before: Sun 01 May 2022 07:14:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39105
IP address blocks: 31.14.161.0/24 maxlen: 24
86.107.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119909062 (0x42c074c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 1 07:14:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e096e6642f5cea04c9a63c6030b41e0f04264f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ad:0d:92:36:56:85:76:88:89:64:7e:76:b5:
dd:8c:72:a3:9d:ff:a8:17:39:6c:f1:c8:10:7f:63:
d6:b3:9f:90:6e:be:8f:a6:5a:74:54:85:ec:d3:11:
51:7b:29:94:5a:48:ca:ac:c3:db:2d:2c:0f:d9:e3:
50:0d:80:24:84:8c:6f:64:64:61:f2:c8:21:7d:f9:
2d:68:c0:97:2b:4d:84:a3:7b:b5:6d:fc:93:e6:d9:
85:cd:a6:74:89:a9:4f:21:10:90:0c:d6:80:92:2c:
1d:33:41:ab:cb:3a:a6:15:b9:01:10:2d:58:9b:4e:
46:bd:67:5c:91:93:fa:f4:9b:81:c7:3d:35:ff:30:
bd:13:21:c3:e0:25:4e:41:9c:d0:d2:82:50:77:94:
fc:2e:90:f6:69:e8:51:0c:83:32:06:8b:d0:32:1b:
5a:84:80:5a:dc:0f:89:29:f7:19:6e:9f:a2:1a:08:
90:48:40:80:42:82:f4:50:58:2a:65:7f:31:85:1b:
dd:72:a2:34:d7:7f:7e:d4:92:1d:f1:42:fd:4f:c1:
0f:9c:dc:e9:53:c6:3d:37:48:ac:45:6f:97:3e:cd:
fd:3e:27:8c:dc:f3:02:46:4d:42:76:27:47:e8:63:
b5:13:cd:6c:cb:39:73:0f:9d:1d:28:1f:67:14:69:
ec:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:96:E6:64:2F:5C:EA:04:C9:A6:3C:60:30:B4:1E:0F:04:26:4F:86
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/4JbmZC9c6gTJpjxgMLQeDwQmT4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.161.0/24
86.107.176.0/24
Signature Algorithm: sha256WithRSAEncryption
10:c4:f3:32:a3:41:ee:d6:63:8f:0d:fa:77:3c:54:04:2f:cf:
23:67:b9:89:0f:28:06:c3:a8:65:2c:2d:7d:99:8f:d4:e8:4f:
ed:a4:c3:b9:15:03:d7:88:44:ac:4c:7e:e4:1c:40:ce:89:97:
44:61:81:fd:5a:08:99:23:a0:fb:5c:38:85:b6:5e:06:72:a7:
12:ed:40:e6:1e:b8:02:92:29:fe:3a:39:1e:34:33:5c:ed:a1:
05:3d:82:89:05:4f:3c:14:25:64:99:87:73:ad:b3:9d:8e:ce:
8f:ea:87:47:4b:7d:ed:9f:6f:5b:97:94:4c:99:45:86:0f:e4:
3d:ee:fb:31:31:42:07:32:88:b4:91:8c:ed:78:20:99:0b:29:
e5:25:f9:a3:4a:fe:89:db:b2:e6:8a:c3:8f:76:f7:8f:75:b8:
7a:03:9a:68:aa:d4:07:00:db:67:35:42:8e:ba:45:ab:93:9a:
45:ae:d4:fc:4f:22:c6:b9:63:fd:ee:65:c4:e1:2d:d7:e7:1c:
da:85:f0:d3:6f:f4:2f:3e:c1:e8:54:cd:d3:69:d5:35:7a:7c:
3c:3b:8b:60:48:df:65:83:cd:74:df:07:01:d8:42:23:ac:0e:
18:83:26:f0:d1:9c:9c:48:ee:72:e1:cb:87:66:c3:d2:02:2b:
5c:39:ba:d6
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEQsB0xjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDUw
MTA3MTQzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTA5NmU2NjQyZjVj
ZWEwNGM5YTYzYzYwMzBiNDFlMGYwNDI2NGY4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJGtDZI2VoV2iIlkfna13Yxyo53/qBc5bPHIEH9j1rOfkG6+
j6ZadFSF7NMRUXsplFpIyqzD2y0sD9njUA2AJISMb2RkYfLIIX35LWjAlytNhKN7
tW38k+bZhc2mdImpTyEQkAzWgJIsHTNBq8s6phW5ARAtWJtORr1nXJGT+vSbgcc9
Nf8wvRMhw+AlTkGc0NKCUHeU/C6Q9mnoUQyDMgaL0DIbWoSAWtwPiSn3GW6fohoI
kEhAgEKC9FBYKmV/MYUb3XKiNNd/ftSSHfFC/U/BD5zc6VPGPTdIrEVvlz7N/T4n
jNzzAkZNQnYnR+hjtRPNbMs5cw+dHSgfZxRp7CcCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTgluZkL1zqBMmmPGAwtB4PBCZPhjAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS80SmJtWkM5YzZnVEpwanhnTUxRZUR3UW1UNFkucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHw6hAwQAVmuwMA0GCSqGSIb3
DQEBCwUAA4IBAQAQxPMyo0Hu1mOPDfp3PFQEL88jZ7mJDygGw6hlLC19mY/U6E/t
pMO5FQPXiESsTH7kHEDOiZdEYYH9WgiZI6D7XDiFtl4GcqcS7UDmHrgCkin+Ojke
NDNc7aEFPYKJBU88FCVkmYdzrbOdjs6P6odHS33tn29bl5RMmUWGD+Q97vsxMUIH
Moi0kYzteCCZCynlJfmjSv6J27LmisOPdvePdbh6A5poqtQHANtnNUKOukWrk5pF
rtT8TyLGuWP97mXE4S3X5xzahfDTb/QvPsHoVM3TadU1enw8O4tgSN9lg8103wcB
2EIjrA4Ygybw0ZycSO5y4cuHZsPSAitcObrW
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:20 2025 by rpki-client