Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/Ez_SrH89HJka3bgyTAGkqNRpzsc.roa
File: Ez_SrH89HJka3bgyTAGkqNRpzsc.roa (raw, json)
Hash identifier: SDEo9xl3ReYILTKDzY7fzuaPPBHbNw7yQ5VLn5ZkuLQ=
Subject key identifier: 13:3F:D2:AC:7F:3D:1C:99:1A:DD:B8:32:4C:01:A4:A8:D4:69:CE:C7
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01F306E2
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/Ez_SrH89HJka3bgyTAGkqNRpzsc.roa
Signing time: Wed 16 Mar 2022 23:12:45 +0000
ROA not before: Wed 16 Mar 2022 23:12:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 91.226.224.0/24 maxlen: 24
91.226.225.0/24 maxlen: 24
31.40.2.0/24 maxlen: 24
31.40.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32704226 (0x1f306e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Mar 16 23:12:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=133fd2ac7f3d1c991addb8324c01a4a8d469cec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:79:93:da:ad:b8:de:37:ae:32:d6:2b:04:0d:
58:e5:bd:34:ec:ce:43:93:3f:60:0c:27:84:7d:45:
9c:d0:10:f7:81:b0:76:ce:3c:3d:4f:be:44:11:f3:
fb:0a:11:da:5c:22:10:25:80:90:0d:12:e0:1d:bf:
e0:7e:11:1b:83:50:e2:6b:42:e2:70:84:bf:bc:bd:
b3:a4:29:d0:dd:46:d5:b5:5c:0b:41:49:76:72:9b:
8f:ce:de:c2:aa:44:b3:b7:97:88:a7:42:41:62:47:
14:29:30:48:5c:28:9e:f6:84:23:d1:fc:7a:61:1d:
00:cc:45:7d:d0:5c:ab:48:7f:29:d8:ff:16:5a:e4:
85:2c:a6:cf:9d:dd:c7:8f:67:ee:83:9b:60:99:9b:
c6:88:56:7d:c9:3a:89:3e:8b:b3:95:9e:73:e6:f0:
4e:c0:6a:99:26:84:98:51:49:d6:de:0b:42:b4:9a:
c2:2f:8f:60:a9:52:af:25:79:6a:c7:17:b8:7b:f7:
ef:12:f4:02:87:f8:86:02:b0:ca:a3:bd:a3:17:b4:
0f:d8:1f:f4:23:40:29:89:09:a4:d0:4a:c1:be:5e:
9c:a4:11:4f:6e:a6:8a:1f:c8:b5:73:04:fb:12:96:
35:ef:4f:8a:1f:73:98:12:18:43:02:92:db:2b:f0:
ec:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3F:D2:AC:7F:3D:1C:99:1A:DD:B8:32:4C:01:A4:A8:D4:69:CE:C7
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/Ez_SrH89HJka3bgyTAGkqNRpzsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.2.0/23
91.226.224.0/23
Signature Algorithm: sha256WithRSAEncryption
64:da:92:bf:9c:93:b2:64:37:1c:b4:cc:11:50:b4:8d:48:c4:
0e:1a:dc:ac:8a:17:85:73:b3:60:29:b0:1b:66:f7:de:a0:bf:
5d:fb:20:de:ae:97:d6:5f:21:b0:f8:df:63:85:43:48:fe:8c:
67:42:67:32:96:75:38:c5:9a:54:f2:68:30:ee:0f:91:6e:a0:
38:77:08:bb:16:f1:fa:90:d4:a4:85:bb:f2:db:40:32:75:08:
a7:cf:80:5f:66:54:b1:b7:07:e1:2b:18:4c:77:a9:e4:d2:70:
c3:87:e4:af:d1:ca:03:6c:66:07:f2:82:0e:12:82:fe:9b:db:
c2:41:ee:7d:5b:ec:d4:d4:03:d4:9a:e5:16:89:99:67:aa:db:
f8:97:12:93:f7:b6:ec:34:9f:99:1e:68:0b:72:4f:71:25:8f:
c6:d5:fc:60:59:36:d7:c8:d7:aa:ca:f3:13:29:50:f5:ca:fd:
a7:c3:c8:4d:7c:5a:73:5a:3e:27:f4:93:5c:d6:4e:6e:fb:21:
68:1c:3c:53:b9:0e:8b:e0:c2:1b:f4:39:10:9d:a9:38:ae:44:
06:03:11:a7:c9:c6:ae:cc:31:ae:fb:91:d4:81:27:59:96:be:
bd:2c:b9:7b:e9:3a:63:5c:ce:a7:24:07:df:57:a5:be:47:33:
0c:c4:0e:ea
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAfMG4jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZmUwMmI3ZWVkZmZjMzhhYjVlYWI0NDE2MTcyZTdkODhlOWFkMWUyMB4XDTIyMDMx
NjIzMTI0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTMzZmQyYWM3ZjNk
MWM5OTFhZGRiODMyNGMwMWE0YThkNDY5Y2VjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIl5k9qtuN43rjLWKwQNWOW9NOzOQ5M/YAwnhH1FnNAQ94Gw
ds48PU++RBHz+woR2lwiECWAkA0S4B2/4H4RG4NQ4mtC4nCEv7y9s6Qp0N1G1bVc
C0FJdnKbj87ewqpEs7eXiKdCQWJHFCkwSFwonvaEI9H8emEdAMxFfdBcq0h/Kdj/
FlrkhSymz53dx49n7oObYJmbxohWfck6iT6Ls5Wec+bwTsBqmSaEmFFJ1t4LQrSa
wi+PYKlSryV5ascXuHv37xL0Aof4hgKwyqO9oxe0D9gf9CNAKYkJpNBKwb5enKQR
T26mih/ItXME+xKWNe9Pih9zmBIYQwKS2yvw7GUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQTP9Ksfz0cmRrduDJMAaSo1GnOxzAfBgNVHSMEGDAWgBSP4Ct+7f/DirXq
tEFhcufYjprR4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2otQXJmdTNfdzRxMTZyUkJZWExuMkk2YTBlSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8x
L0V6X1NySDg5SEprYTNiZ3lUQUdrcU5ScHpzYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
ZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8xL2otQXJmdTNfdzRx
MTZyUkJZWExuMkk2YTBlSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAR8oAgMEAVvi4DANBgkqhkiG9w0B
AQsFAAOCAQEAZNqSv5yTsmQ3HLTMEVC0jUjEDhrcrIoXhXOzYCmwG2b33qC/Xfsg
3q6X1l8hsPjfY4VDSP6MZ0JnMpZ1OMWaVPJoMO4PkW6gOHcIuxbx+pDUpIW78ttA
MnUIp8+AX2ZUsbcH4SsYTHep5NJww4fkr9HKA2xmB/KCDhKC/pvbwkHufVvs1NQD
1JrlFomZZ6rb+JcSk/e27DSfmR5oC3JPcSWPxtX8YFk218jXqsrzEylQ9cr9p8PI
TXxac1o+J/STXNZObvshaBw8U7kOi+DCG/Q5EJ2pOK5EBgMRp8nGrswxrvuR1IEn
WZa+vSy5e+k6Y1zOpyQH31elvkczDMQO6g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org