Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_vLy5orDyst3vNowvrKIQr1FeL8.roa
File: _vLy5orDyst3vNowvrKIQr1FeL8.roa (raw, json)
Hash identifier: UFiNhLL5OcVUXkeh2nBsczDGP1nXmEoCw7Cv2W6qwo0=
Subject key identifier: FE:F2:F2:E6:8A:C3:CA:CB:77:BC:DA:30:BE:B2:88:42:BD:45:78:BF
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 08B122DC
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_vLy5orDyst3vNowvrKIQr1FeL8.roa
Signing time: Sat 01 Jan 2022 13:02:03 +0000
ROA not before: Sat 01 Jan 2022 13:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48641
IP address blocks: 31.133.96.0/23 maxlen: 23
2a04:d040::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145826524 (0x8b122dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 13:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fef2f2e68ac3cacb77bcda30beb28842bd4578bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:32:1c:53:2c:48:bb:1d:fb:cd:ca:d8:d4:bf:
19:d3:6a:cd:36:f9:9c:2a:15:b2:5f:6d:fc:7e:46:
ff:89:07:37:51:c2:4a:23:11:26:29:08:f3:93:02:
06:42:5f:d8:40:84:84:2f:6e:f1:44:80:87:3f:c1:
03:32:fd:0a:5f:91:02:1a:56:e8:09:03:c3:e4:ff:
50:66:8d:f3:90:8b:02:1c:10:f6:db:d5:bd:5e:b1:
34:da:34:8b:dc:b9:4a:38:03:cc:7c:dd:6d:33:87:
c9:26:21:90:39:0a:13:ad:bf:23:ef:da:5a:83:2b:
a9:0e:9d:0c:0a:95:f0:c4:cf:13:a3:d3:e6:3d:0e:
42:ef:63:ac:8d:f5:77:76:57:06:c7:8c:04:82:ca:
04:b3:89:a6:35:b4:77:51:93:d3:63:c6:0f:d9:15:
2d:4d:15:bc:f3:f4:44:ce:7b:1a:c1:1b:d8:73:27:
5e:6d:e5:ca:3c:0e:f2:b6:b1:aa:74:e3:ff:6c:64:
8d:17:66:f4:b6:8f:96:94:f2:94:8b:3f:d1:7f:67:
92:24:06:3d:48:c1:15:49:65:33:35:88:16:bf:76:
5c:c3:c1:3d:64:4f:57:5f:e0:e2:f9:76:18:f6:2a:
b4:d5:f8:d9:96:87:eb:9a:46:a6:ad:02:4a:65:54:
eb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F2:F2:E6:8A:C3:CA:CB:77:BC:DA:30:BE:B2:88:42:BD:45:78:BF
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_vLy5orDyst3vNowvrKIQr1FeL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.96.0/23
IPv6:
2a04:d040::/29
Signature Algorithm: sha256WithRSAEncryption
6c:89:7d:a5:78:d6:7e:a3:3e:0e:0a:01:43:27:d2:0a:a9:7d:
8a:c2:97:01:a1:6b:62:da:ab:93:25:f7:a5:f3:c9:e9:2a:4f:
eb:1d:1f:2d:5f:3a:2f:06:be:c1:ca:60:6f:cc:c7:82:27:70:
e6:87:2e:ca:ed:52:13:5f:bb:9e:d1:91:d0:86:68:aa:5a:18:
c6:6d:71:a5:90:18:ec:f5:cb:cb:e9:c2:c9:f9:50:d0:22:f5:
53:44:79:81:fb:9e:d4:44:77:c6:01:19:59:0e:2d:64:38:a0:
b2:92:53:6c:34:32:e7:6e:80:4d:f5:36:26:86:2a:ee:38:3d:
da:ea:d1:30:be:63:13:5b:9c:96:37:5d:88:25:da:d8:53:a7:
97:73:52:21:3f:55:38:81:e6:d9:f4:ca:00:a5:ec:c1:a0:07:
72:df:e5:96:5a:cd:de:75:01:02:38:81:07:d1:78:4d:69:ff:
cf:38:91:a7:e6:b0:93:33:7a:10:e9:07:11:c7:9b:b3:66:13:
cd:9d:f5:92:b9:33:90:ab:37:a7:07:52:5c:df:cc:f3:dd:37:
01:7e:3a:96:64:d1:61:bc:91:dd:dc:d2:ba:23:fd:01:24:8e:
4b:39:80:a0:0a:45:3b:d9:e6:41:ff:e5:77:dd:ac:ae:f7:c0:
5b:83:05:f7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECLEi3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NWZhZDk2ZGQwNWFmOGMyZDI2MTkyYzg0MTEzMWYyZjk3NDU5ZmVkMB4XDTIyMDEw
MTEzMDIwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmVmMmYyZTY4YWMz
Y2FjYjc3YmNkYTMwYmViMjg4NDJiZDQ1NzhiZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANcyHFMsSLsd+83K2NS/GdNqzTb5nCoVsl9t/H5G/4kHN1HC
SiMRJikI85MCBkJf2ECEhC9u8USAhz/BAzL9Cl+RAhpW6AkDw+T/UGaN85CLAhwQ
9tvVvV6xNNo0i9y5SjgDzHzdbTOHySYhkDkKE62/I+/aWoMrqQ6dDAqV8MTPE6PT
5j0OQu9jrI31d3ZXBseMBILKBLOJpjW0d1GT02PGD9kVLU0VvPP0RM57GsEb2HMn
Xm3lyjwO8raxqnTj/2xkjRdm9LaPlpTylIs/0X9nkiQGPUjBFUllMzWIFr92XMPB
PWRPV1/g4vl2GPYqtNX42ZaH65pGpq0CSmVU69MCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBT+8vLmisPKy3e82jC+sohCvUV4vzAfBgNVHSMEGDAWgBRV+tlt0Fr4wtJh
kshBEx8vl0Wf7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZmclpiZEJhLU1MU1laTElRUk1mTDVkRm4tMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvMzBlNTgyLTQ0NDgtNDk1Mi05NGEwLTMwZmYyYzgzZjAwMS8x
L192THk1b3JEeXN0M3ZOb3d2cktJUXIxRmVMOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
MzBlNTgyLTQ0NDgtNDk1Mi05NGEwLTMwZmYyYzgzZjAwMS8xL1ZmclpiZEJhLU1M
U1laTElRUk1mTDVkRm4tMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAR+FYDANBAIAAjAHAwUDKgTQQDAN
BgkqhkiG9w0BAQsFAAOCAQEAbIl9pXjWfqM+DgoBQyfSCql9isKXAaFrYtqrkyX3
pfPJ6SpP6x0fLV86Lwa+wcpgb8zHgidw5ocuyu1SE1+7ntGR0IZoqloYxm1xpZAY
7PXLy+nCyflQ0CL1U0R5gfue1ER3xgEZWQ4tZDigspJTbDQy526ATfU2JoYq7jg9
2urRML5jE1ucljddiCXa2FOnl3NSIT9VOIHm2fTKAKXswaAHct/lllrN3nUBAjiB
B9F4TWn/zziRp+awkzN6EOkHEcebs2YTzZ31krkzkKs3pwdSXN/M8903AX46lmTR
YbyR3dzSuiP9ASSOSzmAoApFO9nmQf/ld92srvfAW4MF9w==
-----END CERTIFICATE-----
Generated at Fri Apr 18 00:41:40 2025 by rpki-client