Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/oqijAV0SV9i-4ongND19oisICEQ.roa
File: oqijAV0SV9i-4ongND19oisICEQ.roa (raw, json)
Hash identifier: sOKM6f73szB/92v9rUoVr2iQygeDYc9gsmaHFNT4pNk=
Subject key identifier: A2:A8:A3:01:5D:12:57:D8:BE:E2:89:E0:34:3D:7D:A2:2B:08:08:44
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0183476B7240C3C002AE457A973E28688017
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/oqijAV0SV9i-4ongND19oisICEQ.roa
Signing time: Fri 16 Sep 2022 17:49:27 +0000
ROA not before: Fri 16 Sep 2022 17:49:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49901
IP address blocks: 31.14.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:47:6b:72:40:c3:c0:02:ae:45:7a:97:3e:28:68:80:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Sep 16 17:49:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2a8a3015d1257d8bee289e0343d7da22b080844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ad:50:9c:61:5a:a6:39:85:44:67:de:47:98:
9f:02:37:1a:3b:be:e4:2e:3d:1e:53:b8:93:cc:39:
00:21:6f:dc:58:d3:f1:75:36:47:1b:ed:f1:1a:91:
63:f0:68:4c:68:7e:4d:44:77:33:ea:5d:ed:f9:03:
2b:03:7d:4c:cf:c7:f5:19:a9:51:5e:d4:af:13:56:
95:64:16:2a:13:d4:b8:5b:ff:ba:e8:47:7c:93:41:
30:b3:d2:97:17:da:96:20:eb:ae:77:94:ca:72:46:
0f:29:16:49:54:6a:21:8a:50:56:73:d4:a1:03:ad:
8c:8c:82:82:c3:a1:30:dc:ea:fa:c0:1d:aa:57:53:
8f:2f:9b:a3:6c:11:72:45:12:2e:1b:03:5a:2e:00:
67:3d:69:25:57:f7:6f:03:5c:78:85:fd:86:6a:6e:
8b:53:71:56:f3:7f:9e:a2:d7:d4:1e:63:da:6e:0c:
43:d2:d9:39:fd:71:76:83:67:ef:85:5f:50:8d:e1:
a9:ff:e4:64:39:29:26:fd:88:10:db:57:b9:30:08:
91:04:cc:4e:17:59:56:a0:8d:75:e7:3b:58:90:5f:
7b:44:51:b9:42:c7:73:02:e9:e4:da:4a:96:c5:bb:
79:38:17:80:0b:8b:4f:8c:47:e3:c0:96:db:28:0c:
62:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A8:A3:01:5D:12:57:D8:BE:E2:89:E0:34:3D:7D:A2:2B:08:08:44
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/oqijAV0SV9i-4ongND19oisICEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.39.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:0d:b1:85:a3:1b:dc:ca:55:fe:85:73:58:81:e2:78:61:6c:
f7:fb:ab:49:47:b7:a6:2c:4f:79:58:3c:a6:74:d0:21:b7:d7:
13:5e:a4:0b:b2:44:6e:b1:49:03:65:3c:c8:f6:26:0b:17:af:
9d:96:78:4b:2d:dd:a4:ee:56:99:7b:f3:ba:72:50:04:d4:d3:
27:92:ab:ab:1e:b5:3a:50:e0:c0:a9:eb:1e:47:27:23:f8:f2:
56:d5:c9:e2:b6:6b:2e:fd:19:0c:f2:ca:2c:5c:d4:ee:b8:6f:
2e:ce:4e:12:62:3f:00:27:a0:ab:f4:88:3a:61:01:c8:cc:65:
2d:bf:2d:df:0d:3d:3c:11:5c:20:a6:a7:80:a8:6f:c0:8a:c9:
c1:ce:7b:e0:92:8b:bc:eb:8d:49:74:7a:c2:be:d0:0b:29:21:
d1:ea:c2:7b:7f:06:87:f2:87:1d:30:c7:91:88:51:14:e0:05:
c9:34:36:64:1a:54:14:50:38:49:99:0b:3e:d8:6e:ea:8f:e8:
47:63:3f:00:a9:c1:38:29:6e:57:22:33:93:4d:c1:30:21:a3:
f9:dd:c5:8c:85:c7:45:4b:6e:fd:97:4f:be:d8:7a:d1:7e:d5:
36:2c:13:e4:91:07:37:b9:b7:60:fa:ee:32:63:f5:cd:66:d8:
43:63:79:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNHa3JAw8ACrkV6lz4oaIAXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MThiNzM0MzQ5YmYzMjdkOTQ1M2I5NjUwMWU0NGIxOTJl
NTUxNDIwHhcNMjIwOTE2MTc0OTI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmE4YTMwMTVkMTI1N2Q4YmVlMjg5ZTAzNDNkN2RhMjJiMDgwODQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAva1QnGFapjmFRGfeR5ifAjcaO77k
Lj0eU7iTzDkAIW/cWNPxdTZHG+3xGpFj8GhMaH5NRHcz6l3t+QMrA31Mz8f1GalR
XtSvE1aVZBYqE9S4W/+66Ed8k0Ews9KXF9qWIOuud5TKckYPKRZJVGohilBWc9Sh
A62MjIKCw6Ew3Or6wB2qV1OPL5ujbBFyRRIuGwNaLgBnPWklV/dvA1x4hf2Gam6L
U3FW83+eotfUHmPabgxD0tk5/XF2g2fvhV9QjeGp/+RkOSkm/YgQ21e5MAiRBMxO
F1lWoI115ztYkF97RFG5QsdzAunk2kqWxbt5OBeAC4tPjEfjwJbbKAxiXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKKoowFdElfYvuKJ4DQ9faIrCAhEMB8GA1UdIwQY
MBaAFDcYtzQ0m/Mn2UU7llAeRLGS5VFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjct
YzgyM2NjOGYzODM3LzEvb3FpakFWMFNWOWktNG9uZ05EMTlvaXNJQ0VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjctYzgyM2NjOGYzODM3
LzEvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHw4nMA0G
CSqGSIb3DQEBCwUAA4IBAQB9DbGFoxvcylX+hXNYgeJ4YWz3+6tJR7emLE95WDym
dNAht9cTXqQLskRusUkDZTzI9iYLF6+dlnhLLd2k7laZe/O6clAE1NMnkqurHrU6
UODAqeseRycj+PJW1cnitmsu/RkM8sosXNTuuG8uzk4SYj8AJ6Cr9Ig6YQHIzGUt
vy3fDT08EVwgpqeAqG/AisnBznvgkou8641JdHrCvtALKSHR6sJ7fwaH8ocdMMeR
iFEU4AXJNDZkGlQUUDhJmQs+2G7qj+hHYz8AqcE4KW5XIjOTTcEwIaP53cWMhcdF
S279l0++2HrRftU2LBPkkQc3ubdg+u4yY/XNZthDY3ki
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org