Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/TnrgN1BeLrNMXxmbXzriDycrD2M.roa
File: TnrgN1BeLrNMXxmbXzriDycrD2M.roa (raw, json)
Hash identifier: 11tSm35lZ6bwbx8EimJn4ncfn8cuFvxN4WFSZfI2FSs=
Subject key identifier: 4E:7A:E0:37:50:5E:2E:B3:4C:5F:19:9B:5F:3A:E2:0F:27:2B:0F:63
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 014EA915
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/TnrgN1BeLrNMXxmbXzriDycrD2M.roa
Signing time: Wed 12 Jan 2022 22:10:00 +0000
ROA not before: Wed 12 Jan 2022 22:10:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56703
IP address blocks: 31.40.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21932309 (0x14ea915)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Jan 12 22:10:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e7ae037505e2eb34c5f199b5f3ae20f272b0f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9c:72:e0:73:3d:7b:fc:bc:07:b5:ef:f3:08:
76:b3:a7:97:44:1a:87:cc:bd:9b:1d:c4:18:be:90:
b8:f0:e7:68:7b:f1:60:36:cd:cf:a6:00:49:c5:c7:
8b:82:95:09:7b:51:60:00:15:d9:be:96:54:27:7c:
b9:19:fd:2f:c5:a1:ef:bc:4a:28:28:77:bc:22:a4:
1c:fa:57:42:4c:1f:d0:15:61:26:d2:c0:31:5c:10:
b3:e6:c0:f4:8e:f4:01:58:c3:1d:95:59:8c:b7:76:
c3:ac:4e:60:41:36:e0:c8:c8:da:38:9a:7f:5c:f2:
f5:08:e9:ec:cd:2e:cc:71:c5:f3:d9:b9:d7:97:33:
ac:3a:00:eb:84:17:88:63:25:5c:a1:45:04:ba:8e:
68:39:96:77:1d:a4:1d:dd:bd:08:c5:cc:1b:37:15:
2c:20:d1:bc:91:5b:a7:81:ad:2d:15:75:3b:fb:c6:
07:c6:31:b5:ec:7a:c8:6f:52:53:f1:70:c7:54:26:
38:75:5f:01:61:d1:3d:89:ca:e9:cf:7e:3f:34:aa:
ea:0b:8d:ec:8d:6e:54:ce:94:56:8a:0a:58:00:2d:
07:a9:fa:2b:ae:2e:99:d4:e6:ae:1e:a4:30:53:9b:
83:ea:7d:46:2f:cd:78:6b:f4:c0:d1:a3:43:b3:6b:
72:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7A:E0:37:50:5E:2E:B3:4C:5F:19:9B:5F:3A:E2:0F:27:2B:0F:63
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/TnrgN1BeLrNMXxmbXzriDycrD2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.0.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:61:13:50:c7:a6:e2:18:c1:de:f9:7f:2e:57:a8:cb:89:fa:
07:05:ab:c8:bf:8c:67:1b:c3:4d:59:21:7e:37:24:7b:f7:f1:
e1:b8:39:d7:a8:f8:ff:02:f2:53:ab:21:ee:52:42:83:ed:75:
13:0d:bd:ec:a4:1c:3a:42:b2:27:93:5d:8f:0c:46:01:fc:02:
ef:04:3a:32:c8:c8:08:f4:c3:eb:af:b0:4d:94:a2:09:0f:17:
13:57:c6:9c:be:94:50:07:19:d6:05:7c:55:26:5d:16:e1:59:
ad:b8:87:2f:4f:a1:c3:24:40:b5:01:1f:2f:82:5c:fd:19:41:
a6:11:ac:b1:28:20:47:c8:a1:4d:a6:f8:64:96:db:9a:84:d2:
ee:39:71:b1:5a:3d:5e:d7:ac:ab:b5:1a:5f:03:aa:cd:f8:1c:
71:9c:b1:75:85:a5:9f:97:01:c5:f0:e5:8f:19:3b:39:4e:57:
b7:05:85:77:1b:0f:71:38:3e:ac:f5:14:2b:56:53:ef:01:ec:
9d:ec:14:70:bf:78:03:34:2d:27:a5:06:32:c0:aa:85:13:e8:
61:c5:18:83:f0:9a:e5:ff:dd:10:d7:9d:1a:81:35:32:d0:67:
81:ac:55:71:f4:5a:5b:90:a3:b1:ce:bf:2b:78:81:53:b7:60:
08:4a:54:db
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAU6pFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZmUwMmI3ZWVkZmZjMzhhYjVlYWI0NDE2MTcyZTdkODhlOWFkMWUyMB4XDTIyMDEx
MjIyMTAwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGU3YWUwMzc1MDVl
MmViMzRjNWYxOTliNWYzYWUyMGYyNzJiMGY2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM6ccuBzPXv8vAe17/MIdrOnl0Qah8y9mx3EGL6QuPDnaHvx
YDbNz6YAScXHi4KVCXtRYAAV2b6WVCd8uRn9L8Wh77xKKCh3vCKkHPpXQkwf0BVh
JtLAMVwQs+bA9I70AVjDHZVZjLd2w6xOYEE24MjI2jiaf1zy9Qjp7M0uzHHF89m5
15czrDoA64QXiGMlXKFFBLqOaDmWdx2kHd29CMXMGzcVLCDRvJFbp4GtLRV1O/vG
B8Yxtex6yG9SU/Fwx1QmOHVfAWHRPYnK6c9+PzSq6guN7I1uVM6UVooKWAAtB6n6
K64umdTmrh6kMFObg+p9Ri/NeGv0wNGjQ7NrclUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROeuA3UF4us0xfGZtfOuIPJysPYzAfBgNVHSMEGDAWgBSP4Ct+7f/DirXq
tEFhcufYjprR4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2otQXJmdTNfdzRxMTZyUkJZWExuMkk2YTBlSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8x
L1RucmdOMUJlTHJOTVh4bWJYenJpRHljckQyTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
ZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8xL2otQXJmdTNfdzRx
MTZyUkJZWExuMkk2YTBlSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAR8oADANBgkqhkiG9w0BAQsFAAOC
AQEArGETUMem4hjB3vl/Lleoy4n6BwWryL+MZxvDTVkhfjcke/fx4bg516j4/wLy
U6sh7lJCg+11Ew297KQcOkKyJ5NdjwxGAfwC7wQ6MsjICPTD66+wTZSiCQ8XE1fG
nL6UUAcZ1gV8VSZdFuFZrbiHL0+hwyRAtQEfL4Jc/RlBphGssSggR8ihTab4ZJbb
moTS7jlxsVo9Xtesq7UaXwOqzfgccZyxdYWln5cBxfDljxk7OU5XtwWFdxsPcTg+
rPUUK1ZT7wHsnewUcL94AzQtJ6UGMsCqhRPoYcUYg/Ca5f/dENedGoE1MtBngaxV
cfRaW5Cjsc6/K3iBU7dgCEpU2w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org