Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/jV74b-Ea4EFIqgIZxeWudUnzOAU.roa
File: jV74b-Ea4EFIqgIZxeWudUnzOAU.roa (raw, json)
Hash identifier: +cTD2jsTVV9Un/3KEXF58+P6t6GLBZ73ORv+bkypMDo=
Subject key identifier: 8D:5E:F8:6F:E1:1A:E0:41:48:AA:02:19:C5:E5:AE:75:49:F3:38:05
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 024AACF1
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/jV74b-Ea4EFIqgIZxeWudUnzOAU.roa
Signing time: Tue 26 Apr 2022 03:27:12 +0000
ROA not before: Tue 26 Apr 2022 03:27:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 31.40.3.0/24 maxlen: 24
31.40.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38448369 (0x24aacf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Apr 26 03:27:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d5ef86fe11ae04148aa0219c5e5ae7549f33805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:96:ce:42:10:c1:56:92:10:be:99:41:1e:db:
23:22:75:27:4f:9f:b1:da:78:1e:57:64:27:08:61:
99:c3:09:bc:94:46:d5:7f:88:d9:bf:74:62:c8:83:
14:a7:92:13:30:84:b3:f8:24:46:ac:99:55:5a:5e:
a1:75:cc:f7:59:2b:d4:00:70:03:69:8d:16:92:80:
0e:af:5d:65:ba:ba:28:3d:0a:cf:1f:04:4e:0b:78:
00:56:00:bb:9e:06:1f:01:89:5e:21:d9:8d:94:43:
6e:54:69:16:b0:d3:4a:77:b2:94:34:7e:40:86:da:
3c:69:00:7f:75:f1:b0:62:52:1d:eb:a1:1b:c0:ce:
ec:70:2e:0c:38:1b:36:9f:35:74:fc:28:fe:cc:67:
42:33:fa:7a:9b:76:f2:36:91:80:f4:27:f8:a2:08:
e8:f6:3a:8a:e7:e8:ad:2c:09:f1:1c:c2:8b:91:a1:
9a:dd:a9:49:2c:c8:e7:2d:c5:69:d8:67:74:f9:30:
12:b1:4b:7a:99:9e:b1:72:8c:06:3d:e0:d7:39:eb:
66:3d:dc:4c:f3:c8:3b:0d:9c:7e:7a:00:58:ca:0a:
cf:ec:98:da:fe:98:30:87:a1:a6:7f:ce:41:1c:09:
00:dc:b9:70:eb:49:f7:f1:25:9b:7c:84:57:0c:c2:
f0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:5E:F8:6F:E1:1A:E0:41:48:AA:02:19:C5:E5:AE:75:49:F3:38:05
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/jV74b-Ea4EFIqgIZxeWudUnzOAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.3.0-31.40.4.255
Signature Algorithm: sha256WithRSAEncryption
58:4c:80:b3:81:30:3a:c9:45:a7:7d:b1:ff:e9:b5:8c:78:af:
07:47:3b:2c:38:7a:eb:1d:2e:1c:5a:0f:e6:b7:1b:a0:5d:2d:
25:40:f4:d9:42:05:7f:82:f8:d0:68:80:e6:82:2e:f9:e6:4f:
10:6c:1b:d3:63:bc:5f:5f:2a:cd:05:49:e9:b1:b8:ea:6e:06:
69:c9:5e:3b:89:1f:38:13:00:09:51:b5:f6:2c:23:54:4c:14:
4e:b9:7d:c0:35:04:2a:ca:bf:b5:dc:02:e8:e9:be:11:a6:3f:
0b:70:35:f1:39:bb:76:f4:71:7d:c5:51:52:d1:a4:0a:7a:4c:
40:04:a1:6c:82:88:10:69:0e:d9:d2:3e:8a:ce:81:45:4f:41:
2c:49:2e:ae:11:40:0f:70:7b:b4:a8:bd:31:4c:46:68:b6:0e:
46:88:d3:2f:20:e9:aa:a9:05:36:12:2b:a6:63:a0:dd:ad:76:
69:09:84:42:3e:11:14:11:14:bd:7a:d7:ab:fc:0f:51:ca:02:
39:fb:2b:49:6e:af:9d:53:c9:e5:12:b0:c8:1b:7f:98:01:27:
23:52:83:a9:8e:df:f8:2f:f2:f8:83:74:90:f8:0f:34:aa:7b:
2e:85:e2:ac:9e:3b:3f:e8:47:2a:07:e1:f8:c7:b8:38:80:0b:
c0:0b:9b:c1
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAkqs8TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZmUwMmI3ZWVkZmZjMzhhYjVlYWI0NDE2MTcyZTdkODhlOWFkMWUyMB4XDTIyMDQy
NjAzMjcxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ1ZWY4NmZlMTFh
ZTA0MTQ4YWEwMjE5YzVlNWFlNzU0OWYzMzgwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANeWzkIQwVaSEL6ZQR7bIyJ1J0+fsdp4HldkJwhhmcMJvJRG
1X+I2b90YsiDFKeSEzCEs/gkRqyZVVpeoXXM91kr1ABwA2mNFpKADq9dZbq6KD0K
zx8ETgt4AFYAu54GHwGJXiHZjZRDblRpFrDTSneylDR+QIbaPGkAf3XxsGJSHeuh
G8DO7HAuDDgbNp81dPwo/sxnQjP6ept28jaRgPQn+KII6PY6iuforSwJ8RzCi5Gh
mt2pSSzI5y3FadhndPkwErFLepmesXKMBj3g1znrZj3cTPPIOw2cfnoAWMoKz+yY
2v6YMIehpn/OQRwJANy5cOtJ9/Elm3yEVwzC8J8CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBSNXvhv4RrgQUiqAhnF5a51SfM4BTAfBgNVHSMEGDAWgBSP4Ct+7f/DirXq
tEFhcufYjprR4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2otQXJmdTNfdzRxMTZyUkJZWExuMkk2YTBlSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8x
L2pWNzRiLUVhNEVGSXFnSVp4ZVd1ZFVuek9BVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
ZDJjMjM1LWExZjUtNDk4NC1hYWRmLTUxNDZmMTNiNzFhMS8xL2otQXJmdTNfdzRx
MTZyUkJZWExuMkk2YTBlSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAHygDAwQAHygEMA0GCSqGSIb3
DQEBCwUAA4IBAQBYTICzgTA6yUWnfbH/6bWMeK8HRzssOHrrHS4cWg/mtxugXS0l
QPTZQgV/gvjQaIDmgi755k8QbBvTY7xfXyrNBUnpsbjqbgZpyV47iR84EwAJUbX2
LCNUTBROuX3ANQQqyr+13ALo6b4Rpj8LcDXxObt29HF9xVFS0aQKekxABKFsgogQ
aQ7Z0j6KzoFFT0EsSS6uEUAPcHu0qL0xTEZotg5GiNMvIOmqqQU2EiumY6DdrXZp
CYRCPhEUERS9eter/A9RygI5+ytJbq+dU8nlErDIG3+YAScjUoOpjt/4L/L4g3SQ
+A80qnsuheKsnjs/6EcqB+H4x7g4gAvAC5vB
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:08 2023 by rpki-client on console-ams.rpki-client.org