Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/eZMjvGnwtbFPKgPT_36XrzdgtqE.roa
File: eZMjvGnwtbFPKgPT_36XrzdgtqE.roa (raw, json)
Hash identifier: z5xA6A7HN30Lef/iBIHAV3nNHCHRM8HxUi5ENg88Dvw=
Subject key identifier: 79:93:23:BC:69:F0:B5:B1:4F:2A:03:D3:FF:7E:97:AF:37:60:B6:A1
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0682DFF9
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/eZMjvGnwtbFPKgPT_36XrzdgtqE.roa
Signing time: Sat 01 Jan 2022 10:05:16 +0000
ROA not before: Sat 01 Jan 2022 10:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 31.14.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109240313 (0x682dff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Jan 1 10:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=799323bc69f0b5b14f2a03d3ff7e97af3760b6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:11:c4:d0:cf:27:e3:08:58:a4:70:9a:00:11:
75:8f:16:fe:c0:40:32:07:12:41:ac:be:6e:f2:b2:
26:71:c0:92:ea:ea:5c:bf:0c:ae:60:38:09:d8:60:
d4:f5:94:a8:69:28:c6:ba:18:16:0d:d7:d6:0b:c7:
13:1a:27:05:a4:41:44:fb:f2:4d:ea:9e:0c:b9:62:
a8:c1:e3:67:bd:30:f6:ad:8c:d3:b3:d7:9c:17:c0:
e9:ca:07:90:c3:13:d0:cc:2f:fc:37:39:b7:54:c2:
36:e4:46:9a:c8:97:97:6e:83:74:5c:e2:30:13:1d:
43:9b:79:cd:f7:c0:78:2e:13:05:4f:19:f0:74:bd:
97:7e:4c:b4:0d:f5:5a:e4:19:11:e7:bf:08:8e:02:
21:24:43:e3:f0:49:fb:6c:93:ab:3e:ae:13:9f:9e:
e5:62:86:10:fd:64:c1:4f:29:91:fb:ef:1f:81:c7:
33:42:08:7b:c4:30:fd:47:9a:41:85:0e:70:eb:93:
31:1f:a8:39:b4:20:41:b5:27:79:d9:cf:31:42:59:
06:df:22:e2:bd:85:22:5c:b2:5e:08:6c:d8:d8:49:
b0:f3:f0:3a:54:8f:43:e1:59:2d:5d:77:9f:9a:0e:
91:04:9d:02:c0:e5:35:3b:82:8d:84:75:40:63:7f:
0b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:93:23:BC:69:F0:B5:B1:4F:2A:03:D3:FF:7E:97:AF:37:60:B6:A1
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/eZMjvGnwtbFPKgPT_36XrzdgtqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.36.0/22
Signature Algorithm: sha256WithRSAEncryption
15:49:ba:05:b0:e5:3e:94:34:b0:50:fa:48:6a:6e:2d:70:f3:
39:b2:c1:5a:7c:80:52:d8:ef:fa:b8:3c:24:8a:27:14:f7:78:
f1:b7:b4:dd:62:38:e7:57:b3:bc:22:b2:d9:13:a6:58:fb:c4:
81:73:34:bd:07:05:82:ab:be:22:a7:fe:40:29:d2:e4:62:b6:
3d:a4:88:8d:01:39:63:b5:84:a4:4a:c6:8f:18:89:c4:58:d2:
7c:fd:ca:aa:fe:ed:c2:32:cc:de:fb:af:6c:dd:70:31:fe:54:
4d:8b:c5:50:f7:1f:5d:eb:bc:42:18:9d:33:51:fd:55:9b:7c:
02:e8:58:a9:3a:c9:c8:57:49:c5:e9:03:e5:d5:f7:57:da:1b:
9f:70:20:90:48:a9:76:60:19:db:20:1f:66:59:54:1a:ea:51:
c8:a0:a5:14:e0:38:8a:1e:23:b1:da:e3:a4:81:7f:98:39:5b:
4a:82:f2:ed:f3:c8:0b:c4:5e:1c:62:7a:a9:88:b7:ff:ef:76:
37:0b:9a:91:10:55:5b:90:49:ac:bb:98:67:97:5f:ae:3c:9e:
f4:04:c8:11:3b:0c:f7:99:20:52:97:a2:7c:8e:ad:ba:63:5e:
62:5f:c7:a6:38:88:22:67:30:ed:2d:3e:0d:e9:66:ae:1a:86:
7a:b5:e2:84
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBoLf+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzE4YjczNDM0OWJmMzI3ZDk0NTNiOTY1MDFlNDRiMTkyZTU1MTQyMB4XDTIyMDEw
MTEwMDUxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzk5MzIzYmM2OWYw
YjViMTRmMmEwM2QzZmY3ZTk3YWYzNzYwYjZhMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMURxNDPJ+MIWKRwmgARdY8W/sBAMgcSQay+bvKyJnHAkurq
XL8MrmA4Cdhg1PWUqGkoxroYFg3X1gvHExonBaRBRPvyTeqeDLliqMHjZ70w9q2M
07PXnBfA6coHkMMT0Mwv/Dc5t1TCNuRGmsiXl26DdFziMBMdQ5t5zffAeC4TBU8Z
8HS9l35MtA31WuQZEee/CI4CISRD4/BJ+2yTqz6uE5+e5WKGEP1kwU8pkfvvH4HH
M0IIe8Qw/UeaQYUOcOuTMR+oObQgQbUnednPMUJZBt8i4r2FIlyyXghs2NhJsPPw
OlSPQ+FZLV13n5oOkQSdAsDlNTuCjYR1QGN/C/ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR5kyO8afC1sU8qA9P/fpevN2C2oTAfBgNVHSMEGDAWgBQ3GLc0NJvzJ9lF
O5ZQHkSxkuVRQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L054aTNORFNiOHlmWlJUdVdVQjVFc1pMbFVVSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvN2JmOGE4LWU0OWMtNDA2ZS04ZWI3LWM4MjNjYzhmMzgzNy8x
L2VaTWp2R253dGJGUEtnUFRfMzZYcnpkZ3RxRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
N2JmOGE4LWU0OWMtNDA2ZS04ZWI3LWM4MjNjYzhmMzgzNy8xL054aTNORFNiOHlm
WlJUdVdVQjVFc1pMbFVVSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAh8OJDANBgkqhkiG9w0BAQsFAAOC
AQEAFUm6BbDlPpQ0sFD6SGpuLXDzObLBWnyAUtjv+rg8JIonFPd48be03WI451ez
vCKy2ROmWPvEgXM0vQcFgqu+Iqf+QCnS5GK2PaSIjQE5Y7WEpErGjxiJxFjSfP3K
qv7twjLM3vuvbN1wMf5UTYvFUPcfXeu8QhidM1H9VZt8AuhYqTrJyFdJxekD5dX3
V9obn3AgkEipdmAZ2yAfZllUGupRyKClFOA4ih4jsdrjpIF/mDlbSoLy7fPIC8Re
HGJ6qYi3/+92NwuakRBVW5BJrLuYZ5dfrjye9ATIETsM95kgUpeifI6tumNeYl/H
pjiIImcw7S0+DelmrhqGerXihA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:17 2024 by rpki-client on console-fra.rpki-client.org