Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/29pPkX1J4G2XBMz0wnXG3hiV22Y.roa
File: 29pPkX1J4G2XBMz0wnXG3hiV22Y.roa (raw, json)
Hash identifier: JsPpcapYcYAnasBxKZhxdigqzMZE7wCHCRr13yp9v8o=
Subject key identifier: DB:DA:4F:91:7D:49:E0:6D:97:04:CC:F4:C2:75:C6:DE:18:95:DB:66
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0181ECFFB6951E1D6F4C2FDDAB1BBF8D0854
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/29pPkX1J4G2XBMz0wnXG3hiV22Y.roa
Signing time: Mon 11 Jul 2022 11:23:10 +0000
ROA not before: Mon 11 Jul 2022 11:23:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198689
IP address blocks: 31.7.84.0/24 maxlen: 24
2a00:c9e0:0:2::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ec:ff:b6:95:1e:1d:6f:4c:2f:dd:ab:1b:bf:8d:08:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jul 11 11:23:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbda4f917d49e06d9704ccf4c275c6de1895db66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:55:9d:d9:31:86:39:27:17:0e:56:d9:16:
68:99:72:03:fb:bf:85:8e:98:6d:22:94:7f:dd:41:
7f:e5:61:a3:0f:e1:f5:db:37:23:a8:4e:ff:e3:04:
83:94:a3:73:f9:4e:f0:9c:62:70:0b:b4:7a:ff:87:
69:ce:e2:9f:48:68:51:03:9a:0e:98:62:a3:07:c0:
33:08:3c:6b:e8:0b:f1:2c:9a:2a:bc:26:32:57:a7:
a9:95:62:29:61:c1:99:8f:26:54:ee:f6:58:61:bb:
ef:08:6e:f5:60:61:8c:6e:6f:80:75:d9:ce:06:25:
be:ea:45:69:14:fe:24:63:3c:db:12:24:3e:d9:87:
13:4a:4b:39:d6:fe:19:16:26:54:11:55:64:fa:6a:
8c:0d:0f:6d:9f:f3:b1:b6:cd:29:48:85:6d:34:3a:
fc:45:11:8d:56:f7:7c:5e:a6:4a:df:78:9e:be:a0:
f3:d0:ff:06:29:24:bf:00:1b:0e:2d:7b:2c:74:88:
6e:c0:33:86:45:d4:c2:6e:fa:a6:04:a3:e0:a6:06:
59:02:48:ad:a7:ae:6d:41:73:ef:de:4d:47:c3:dc:
86:0c:6f:30:53:c4:20:2d:31:c9:21:37:91:d7:bf:
33:ad:ba:7f:0b:5e:da:88:4f:26:29:1f:80:6f:a5:
29:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:DA:4F:91:7D:49:E0:6D:97:04:CC:F4:C2:75:C6:DE:18:95:DB:66
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/29pPkX1J4G2XBMz0wnXG3hiV22Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.84.0/24
IPv6:
2a00:c9e0:0:2::/64
Signature Algorithm: sha256WithRSAEncryption
98:0f:b0:f0:77:11:68:c9:40:ba:e7:57:19:1c:ab:60:b3:ca:
9a:dc:9f:cf:db:e7:f3:c8:01:fb:e2:fb:6f:95:00:33:42:84:
2d:42:8c:48:ba:45:9d:52:74:ed:83:6e:2d:88:81:53:f3:12:
53:92:f6:c0:78:e8:03:10:53:13:a6:82:6d:d3:46:47:0e:d0:
a4:b7:be:6c:78:2c:41:09:6c:cc:a9:23:f6:6b:22:4a:2f:1b:
a0:15:64:b1:08:d9:3d:2c:28:7b:94:8f:a2:45:02:33:e8:c5:
9f:4e:81:ea:84:d7:8a:19:56:20:8f:84:31:cf:52:a3:33:d5:
dc:09:f9:3d:65:3b:d1:53:e7:b0:c9:fe:85:a0:36:78:d6:57:
0d:7c:8a:a6:62:b5:f0:73:d5:36:98:2e:7b:5e:b8:d0:4c:73:
8c:cc:99:4d:cf:49:4c:da:fe:2b:3e:2a:49:59:79:79:83:ee:
be:f7:b0:04:fe:5e:85:0f:11:0c:da:b7:d1:67:ba:88:83:02:
af:ff:8a:c0:18:36:c8:6a:0b:b9:26:1b:a0:c4:81:98:65:55:
ad:f4:ce:4f:f3:7a:3f:cc:70:96:75:bb:7b:67:43:57:be:66:
8a:7b:b5:9e:04:42:a2:25:1d:9c:54:83:0c:e6:6a:bc:25:9d:
4e:a8:fd:44
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgISAYHs/7aVHh1vTC/dqxu/jQhUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYmJkNGY4NjVhMTJkNzlhMDlhMDM0NDg2Y2U2MWJhMDIz
ODgyYzcwHhcNMjIwNzExMTEyMzEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmRhNGY5MTdkNDllMDZkOTcwNGNjZjRjMjc1YzZkZTE4OTVkYjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKBVndkxhjknFw5W2RZomXID+7+F
jphtIpR/3UF/5WGjD+H12zcjqE7/4wSDlKNz+U7wnGJwC7R6/4dpzuKfSGhRA5oO
mGKjB8AzCDxr6AvxLJoqvCYyV6eplWIpYcGZjyZU7vZYYbvvCG71YGGMbm+AddnO
BiW+6kVpFP4kYzzbEiQ+2YcTSks51v4ZFiZUEVVk+mqMDQ9tn/Oxts0pSIVtNDr8
RRGNVvd8XqZK33ievqDz0P8GKSS/ABsOLXssdIhuwDOGRdTCbvqmBKPgpgZZAkit
p65tQXPv3k1Hw9yGDG8wU8QgLTHJITeR178zrbp/C17aiE8mKR+Ab6UpowIDAQAB
o4ICHDCCAhgwHQYDVR0OBBYEFNvaT5F9SeBtlwTM9MJ1xt4YldtmMB8GA1UdIwQY
MBaAFAK71PhloS15oJoDRIbOYboCOILHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXJ2VS1HV2hMWG1nbWdORWhzNWh1Z0k0Z3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9jYjgzYjItMzNiNS00NTYwLTg5MzUt
MGE5ODA0OGNkZjcyLzEvMjlwUGtYMUo0RzJYQk16MHduWEczaGlWMjJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9jYjgzYjItMzNiNS00NTYwLTg5MzUtMGE5ODA0OGNkZjcy
LzEvQXJ2VS1HV2hMWG1nbWdORWhzNWh1Z0k0Z3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAMBAIAATAGAwQAHwdUMBEE
AgACMAsDCQAqAMngAAAAAjANBgkqhkiG9w0BAQsFAAOCAQEAmA+w8HcRaMlAuudX
GRyrYLPKmtyfz9vn88gB++L7b5UAM0KELUKMSLpFnVJ07YNuLYiBU/MSU5L2wHjo
AxBTE6aCbdNGRw7QpLe+bHgsQQlszKkj9msiSi8boBVksQjZPSwoe5SPokUCM+jF
n06B6oTXihlWII+EMc9SozPV3An5PWU70VPnsMn+haA2eNZXDXyKpmK18HPVNpgu
e1640ExzjMyZTc9JTNr+Kz4qSVl5eYPuvvewBP5ehQ8RDNq30We6iIMCr/+KwBg2
yGoLuSYboMSBmGVVrfTOT/N6P8xwlnW7e2dDV75minu1ngRCoiUdnFSDDOZqvCWd
Tqj9RA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org