Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/UaJbaZFQ6CVLGXL-VGjq8u5FFYs.roa
File: UaJbaZFQ6CVLGXL-VGjq8u5FFYs.roa (raw, json)
Hash identifier: anlKL3VKd1dbmJ4kiIqhLFMIsZvGxdjYiZyhuy5g+Wo=
Subject key identifier: 51:A2:5B:69:91:50:E8:25:4B:19:72:FE:54:68:EA:F2:EE:45:15:8B
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 0227FBAF
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/UaJbaZFQ6CVLGXL-VGjq8u5FFYs.roa
Signing time: Sun 10 Apr 2022 20:39:27 +0000
ROA not before: Sun 10 Apr 2022 20:39:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 91.226.225.0/24 maxlen: 24
31.40.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36174767 (0x227fbaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Apr 10 20:39:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51a25b699150e8254b1972fe5468eaf2ee45158b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:30:79:53:88:00:c9:0a:60:fa:73:f5:06:19:
8e:ed:8f:ea:90:68:37:71:0b:25:d3:51:a9:84:dd:
77:bd:17:a6:48:40:02:37:95:79:bc:be:1f:68:78:
5a:6b:34:50:b4:c3:c6:b1:17:b1:76:24:4b:57:d1:
0e:11:0b:cf:a3:9b:1a:b4:64:48:f6:db:ca:ee:cf:
03:68:53:fc:0a:b6:c7:34:f3:e8:d9:a3:00:e4:85:
31:61:48:94:a7:cc:4f:78:48:3f:90:9a:6b:44:72:
f6:05:f3:dc:f3:88:78:06:c6:5c:4a:88:0f:1b:42:
cc:21:05:9c:5d:46:2d:bf:0e:5c:1f:91:6f:7f:32:
7b:87:29:3e:34:1d:55:9d:7c:06:e6:b4:29:ea:8e:
d7:75:e6:fa:6b:9e:cb:6a:65:34:96:6b:0c:c1:1d:
e5:bd:6d:ea:85:06:40:0c:6b:f4:a7:ca:65:94:94:
56:ea:72:e2:49:5f:71:0d:b8:c9:e5:58:98:af:fa:
8b:45:8c:db:63:2a:2d:fa:44:2e:33:d8:9e:dc:89:
48:c5:3e:06:7d:4f:7f:7a:55:09:41:c6:d5:44:68:
e6:7a:05:d8:a0:b6:af:64:e4:92:28:53:94:0c:d0:
7e:3d:44:a1:7f:a0:6b:b0:7b:13:11:cb:4a:72:36:
83:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A2:5B:69:91:50:E8:25:4B:19:72:FE:54:68:EA:F2:EE:45:15:8B
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/UaJbaZFQ6CVLGXL-VGjq8u5FFYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.2.0/24
91.226.225.0/24
Signature Algorithm: sha256WithRSAEncryption
28:71:43:98:96:26:76:f8:3e:e4:8d:c3:f8:c9:0a:30:13:48:
78:ad:36:71:2f:42:4b:44:88:4a:49:ec:8b:61:0d:f9:a4:c6:
ae:c4:57:90:a4:65:56:20:6a:85:07:b1:49:eb:76:b3:d3:39:
34:6d:65:43:da:a8:a0:ec:a4:3f:50:f4:ea:1b:a6:4e:77:e7:
30:3e:87:0f:a5:96:e4:b7:b4:66:1c:b1:29:9a:bf:d8:7c:76:
a8:33:31:a0:3d:41:a5:70:40:70:ff:87:37:f1:da:d9:5f:82:
f9:1b:e4:e7:3e:1c:e3:8b:ec:9a:44:d4:de:d5:f0:a8:ab:a6:
8a:42:b9:fb:7a:b8:f2:e6:fb:f1:b6:2a:4d:bf:3e:e8:56:1c:
80:46:06:44:e6:ff:0c:a1:8a:bc:4a:b6:dc:c4:67:2e:6e:1a:
24:78:39:03:e1:b7:f8:8d:4e:38:7e:02:9a:e1:57:ad:e4:d6:
ea:3f:dc:ee:73:33:f2:51:5d:90:9e:43:17:51:d0:66:d4:08:
d0:8a:9e:c9:5d:ee:6f:ca:c1:66:de:30:dc:5a:f9:76:f0:24:
3e:23:3d:df:83:95:20:cd:2f:1e:de:9d:f1:b7:f8:5b:6d:02:
7a:dd:ba:01:ce:8e:92:ee:a5:42:2d:20:1f:32:6d:54:26:68:
e0:12:86:42
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAif7rzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZmUwMmI3ZWVkZmZjMzhhYjVlYWI0NDE2MTcyZTdkODhlOWFkMWUyMB4XDTIyMDQx
MDIwMzkyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTFhMjViNjk5MTUw
ZTgyNTRiMTk3MmZlNTQ2OGVhZjJlZTQ1MTU4YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKsweVOIAMkKYPpz9QYZju2P6pBoN3ELJdNRqYTdd70XpkhA
AjeVeby+H2h4Wms0ULTDxrEXsXYkS1fRDhELz6ObGrRkSPbbyu7PA2hT/Aq2xzTz
6NmjAOSFMWFIlKfMT3hIP5Caa0Ry9gXz3POIeAbGXEqIDxtCzCEFnF1GLb8OXB+R
b38ye4cpPjQdVZ18Bua0KeqO13Xm+muey2plNJZrDMEd5b1t6oUGQAxr9KfKZZSU
Vupy4klfcQ24yeVYmK/6i0WM22MqLfpELjPYntyJSMU+Bn1Pf3pVCUHG1URo5noF
2KC2r2TkkihTlAzQfj1EoX+ga7B7ExHLSnI2g0ECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRRoltpkVDoJUsZcv5UaOry7kUVizAfBgNVHSMEGDAWgBSP4Ct+7f/DirXq
tEFhcufYjprR4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2otQXJmdTNfdzRxMTZyUkJZWExuMkk2YTBlSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8x
L1VhSmJhWkZRNkNWTEdYTC1WR2pxOHU1RkZZcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
ZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8xL2otQXJmdTNfdzRx
MTZyUkJZWExuMkk2YTBlSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAB8oAgMEAFvi4TANBgkqhkiG9w0B
AQsFAAOCAQEAKHFDmJYmdvg+5I3D+MkKMBNIeK02cS9CS0SISknsi2EN+aTGrsRX
kKRlViBqhQexSet2s9M5NG1lQ9qooOykP1D06humTnfnMD6HD6WW5Le0ZhyxKZq/
2Hx2qDMxoD1BpXBAcP+HN/Ha2V+C+Rvk5z4c44vsmkTU3tXwqKumikK5+3q48ub7
8bYqTb8+6FYcgEYGROb/DKGKvEq23MRnLm4aJHg5A+G3+I1OOH4CmuFXreTW6j/c
7nMz8lFdkJ5DF1HQZtQI0IqeyV3ub8rBZt4w3Fr5dvAkPiM934OVIM0vHt6d8bf4
W20Cet26Ac6Oku6lQi0gHzJtVCZo4BKGQg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org