Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/2vwJ3nY_APpJJGl4u0Uf5aCnaCA.roa
File: 2vwJ3nY_APpJJGl4u0Uf5aCnaCA.roa (raw, json)
Hash identifier: Hyvm3aI7lHz71ZBZ5k72+VLBANY2vrX/FwiX8k+YLEA=
Subject key identifier: DA:FC:09:DE:76:3F:00:FA:49:24:69:78:BB:45:1F:E5:A0:A7:68:20
Certificate issuer: /CN=942588b91da9cca81b49e603a988e2b1eabddc98
Certificate serial: 01838B7ED4F4E79B61FFB8409B259731CB49
Authority key identifier: 94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/2vwJ3nY_APpJJGl4u0Uf5aCnaCA.roa
Signing time: Thu 29 Sep 2022 23:04:48 +0000
ROA not before: Thu 29 Sep 2022 23:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210541
IP address blocks: 31.42.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8b:7e:d4:f4:e7:9b:61:ff:b8:40:9b:25:97:31:cb:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942588b91da9cca81b49e603a988e2b1eabddc98
Validity
Not Before: Sep 29 23:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dafc09de763f00fa49246978bb451fe5a0a76820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:06:c0:2e:83:1e:de:55:0f:9d:4b:a0:a8:c6:
70:77:6f:06:a4:4d:ca:7a:7f:45:47:33:bd:b3:0b:
9e:25:28:1f:3b:3f:e3:79:bc:da:ff:0b:f5:95:5e:
41:1e:69:cf:49:1c:74:91:8b:4d:bb:c9:29:b0:e8:
cc:b5:fa:f2:3e:a7:8b:c9:6d:27:55:fe:80:c0:2a:
48:70:03:c1:62:64:a7:42:c2:9a:85:a1:50:61:e6:
0b:70:89:ea:3c:15:c7:88:06:e7:b8:25:90:4d:a8:
3b:15:fd:b5:82:9c:83:63:08:80:65:55:11:0c:8b:
17:0e:6b:9d:37:ae:96:6c:05:56:f4:71:73:53:92:
72:fc:f6:a3:95:79:89:28:da:3a:a7:05:d1:de:4f:
9e:69:b5:57:99:d2:69:db:e5:38:8d:2d:15:33:05:
96:cb:cf:97:af:48:51:e8:5f:ef:2b:a9:ae:7e:10:
42:0f:52:cb:3f:8f:1c:02:61:44:46:21:17:61:8f:
ea:13:01:31:72:ed:8b:ad:8f:de:6e:55:03:9c:57:
90:85:7f:6a:33:f3:3a:1d:16:18:73:0d:12:d4:f8:
4a:80:43:c2:a4:e2:50:88:3e:01:39:19:9c:76:ad:
1d:51:33:83:a0:01:77:ab:5b:29:19:f6:2c:3f:d7:
30:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FC:09:DE:76:3F:00:FA:49:24:69:78:BB:45:1F:E5:A0:A7:68:20
X509v3 Authority Key Identifier:
keyid:94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/2vwJ3nY_APpJJGl4u0Uf5aCnaCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.112.0/21
Signature Algorithm: sha256WithRSAEncryption
75:b0:75:77:da:bd:c5:76:4c:61:e0:cc:c8:08:7a:8e:d8:d2:
ca:d5:d2:e4:bc:b3:19:59:53:67:ec:8f:28:0f:11:d0:bf:f4:
0c:3a:1a:3a:e0:8a:3c:0f:87:4f:b4:dd:76:11:6a:f4:74:dc:
11:b5:08:9c:44:73:1c:c7:f5:83:e7:0c:74:91:88:c5:19:ff:
9a:37:81:63:04:cb:72:6c:7f:62:56:94:ca:65:78:70:f1:78:
cb:d4:9e:9b:bd:0d:32:0f:d8:c5:1d:5f:5d:da:d5:85:9e:6d:
80:29:b9:62:a6:d2:84:e7:e8:e9:dd:23:97:ef:83:b7:68:c4:
92:ff:62:c4:14:43:cc:00:5d:c2:15:92:84:53:28:a2:63:76:
ee:ba:81:7f:05:19:03:eb:d5:20:e6:30:b4:4f:37:ee:af:f1:
4d:55:b9:3a:ef:11:03:8d:dc:f3:f2:fd:8f:75:a1:44:18:67:
b1:60:5c:9b:72:1e:6f:27:f6:b4:1f:06:5f:aa:c2:7c:b9:84:
37:b4:ad:b1:a3:6d:ec:7d:f7:a1:a4:de:e9:b7:2d:2e:1f:63:
92:87:06:32:75:4e:82:02:9b:33:ce:a4:12:20:45:15:f4:6a:
59:bd:e0:c5:c7:db:6e:49:a0:96:0f:5c:37:39:84:9f:04:3f:
f5:cb:2a:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOLftT055th/7hAmyWXMctJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0MjU4OGI5MWRhOWNjYTgxYjQ5ZTYwM2E5ODhlMmIxZWFi
ZGRjOTgwHhcNMjIwOTI5MjMwNDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYWZjMDlkZTc2M2YwMGZhNDkyNDY5NzhiYjQ1MWZlNWEwYTc2ODIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAbALoMe3lUPnUugqMZwd28GpE3K
en9FRzO9swueJSgfOz/jebza/wv1lV5BHmnPSRx0kYtNu8kpsOjMtfryPqeLyW0n
Vf6AwCpIcAPBYmSnQsKahaFQYeYLcInqPBXHiAbnuCWQTag7Ff21gpyDYwiAZVUR
DIsXDmudN66WbAVW9HFzU5Jy/PajlXmJKNo6pwXR3k+eabVXmdJp2+U4jS0VMwWW
y8+Xr0hR6F/vK6mufhBCD1LLP48cAmFERiEXYY/qEwExcu2LrY/eblUDnFeQhX9q
M/M6HRYYcw0S1PhKgEPCpOJQiD4BORmcdq0dUTODoAF3q1spGfYsP9cwhwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNr8Cd52PwD6SSRpeLtFH+Wgp2ggMB8GA1UdIwQY
MBaAFJQliLkdqcyoG0nmA6mI4rHqvdyYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbENXSXVSMnB6S2diU2VZRHFZamlzZXE5M0pnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC80YmJhN2MtYTgxZi00MGUxLTg4MTQt
NjVkYWFkNjMyOTU3LzEvMnZ3SjNuWV9BUHBKSkdsNHUwVWY1YUNuYUNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC80YmJhN2MtYTgxZi00MGUxLTg4MTQtNjVkYWFkNjMyOTU3
LzEvbENXSXVSMnB6S2diU2VZRHFZamlzZXE5M0pnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDHypwMA0G
CSqGSIb3DQEBCwUAA4IBAQB1sHV32r3Fdkxh4MzICHqO2NLK1dLkvLMZWVNn7I8o
DxHQv/QMOho64Io8D4dPtN12EWr0dNwRtQicRHMcx/WD5wx0kYjFGf+aN4FjBMty
bH9iVpTKZXhw8XjL1J6bvQ0yD9jFHV9d2tWFnm2AKbliptKE5+jp3SOX74O3aMSS
/2LEFEPMAF3CFZKEUyiiY3buuoF/BRkD69Ug5jC0Tzfur/FNVbk67xEDjdzz8v2P
daFEGGexYFybch5vJ/a0HwZfqsJ8uYQ3tK2xo23sffehpN7pty0uH2OShwYydU6C
ApszzqQSIEUV9GpZveDFx9tuSaCWD1w3OYSfBD/1yyoy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:49 2024 by rpki-client on console-ams.rpki-client.org