Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/v9NBZ56KIy4B65SptxESAgiX6aY.roa
File: v9NBZ56KIy4B65SptxESAgiX6aY.roa (raw, json)
Hash identifier: WIxRxhfuzmNl29feDozU2Gxss5tM3wgxp28/OCB/lbE=
Subject key identifier: BF:D3:41:67:9E:8A:23:2E:01:EB:94:A9:B7:11:12:02:08:97:E9:A6
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 0183D02431A45F24151BF2DB83AB0EC6DECE
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/v9NBZ56KIy4B65SptxESAgiX6aY.roa
Signing time: Thu 13 Oct 2022 06:59:36 +0000
ROA not before: Thu 13 Oct 2022 06:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202512
IP address blocks: 81.31.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:24:31:a4:5f:24:15:1b:f2:db:83:ab:0e:c6:de:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Oct 13 06:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfd341679e8a232e01eb94a9b71112020897e9a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f8:72:d3:a5:77:ca:72:02:29:a4:5d:5a:2c:
89:85:a5:e0:b3:aa:dc:c3:35:27:00:6a:3f:bf:ab:
ca:02:d0:c7:43:9e:5e:0e:c4:01:8c:ad:51:f6:b9:
79:01:ee:fa:5c:88:03:83:79:c5:7f:0c:c9:81:7b:
92:b7:2e:fe:e5:33:80:0b:1d:82:06:30:a1:c2:56:
cd:ca:8d:16:71:7d:43:bf:f1:48:d3:7b:5a:87:67:
fc:92:c7:8c:62:9b:36:2e:a3:0a:30:01:bf:b2:52:
54:32:08:4f:c5:78:2d:10:2c:d1:eb:cd:99:d0:1d:
a9:d5:20:58:ce:fc:5d:bd:30:35:e5:9f:93:01:31:
68:8e:42:12:ec:52:ad:ce:f0:d8:b6:8b:7a:51:ae:
a4:bf:09:18:3c:fb:56:4b:bb:6d:c5:6b:0d:29:21:
15:1f:3f:76:0a:cc:e5:42:aa:1c:53:35:c4:88:8c:
64:7a:fc:08:60:32:c7:50:fc:84:54:b6:41:c0:46:
86:ab:e3:05:09:40:a9:56:f1:f9:43:84:62:43:fd:
a4:af:8b:02:68:dc:e5:c7:0d:6f:6a:d8:e0:39:41:
51:b3:53:87:83:74:87:1c:92:92:02:b6:f0:b8:74:
44:13:90:07:45:4c:30:1f:6f:ce:02:fc:58:54:b5:
ce:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D3:41:67:9E:8A:23:2E:01:EB:94:A9:B7:11:12:02:08:97:E9:A6
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/v9NBZ56KIy4B65SptxESAgiX6aY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.198.0/24
Signature Algorithm: sha256WithRSAEncryption
be:bb:5f:33:38:0b:e5:31:ff:c6:57:d8:a2:69:9c:8f:04:63:
5b:dc:f4:4d:f5:a9:66:fe:7b:66:a6:e6:7a:0b:b7:b1:c8:81:
b4:57:ee:67:31:cd:90:9a:12:09:7a:a7:2d:eb:b9:05:20:1b:
fc:cb:2a:ba:67:4c:ee:23:51:8c:60:94:f0:21:b4:8c:57:9a:
c6:88:dc:f9:50:0e:b8:9b:2b:6a:00:28:8b:27:8e:95:45:59:
d1:30:ab:8c:63:98:07:8a:23:00:db:2c:6c:0a:40:7c:72:18:
61:d5:9b:97:e5:a1:67:a4:39:9a:a1:68:52:94:6b:5c:10:c1:
f4:bc:e8:ca:dd:84:3e:e3:12:6a:7a:b2:6b:d7:53:f9:4b:d2:
a0:d2:48:62:c3:51:a4:85:0f:f5:49:c3:e1:32:8a:cc:2e:10:
06:f9:cc:bf:eb:c3:73:a4:a3:d6:9e:0c:90:c7:71:5c:94:7b:
1e:ec:a8:cd:c0:fa:fc:de:8f:af:45:72:86:30:54:2a:88:30:
ff:98:fc:46:8e:0f:79:94:4a:17:5b:b8:73:88:b1:2c:24:5b:
09:bd:97:70:14:e0:17:ba:06:9a:3e:2d:95:34:60:68:4a:e4:
22:05:f0:2b:1c:82:c7:82:3e:12:46:8a:c0:b4:4d:b3:52:c4:
17:35:65:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPQJDGkXyQVG/Lbg6sOxt7OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3OTNiZGU5NDZhZTkzNmQzY2FjYzEzNmE1ZjMyMzllZGYy
NDMxZjQwHhcNMjIxMDEzMDY1OTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmQzNDE2NzllOGEyMzJlMDFlYjk0YTliNzExMTIwMjA4OTdlOWE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhPhy06V3ynICKaRdWiyJhaXgs6rc
wzUnAGo/v6vKAtDHQ55eDsQBjK1R9rl5Ae76XIgDg3nFfwzJgXuSty7+5TOACx2C
BjChwlbNyo0WcX1Dv/FI03tah2f8kseMYps2LqMKMAG/slJUMghPxXgtECzR682Z
0B2p1SBYzvxdvTA15Z+TATFojkIS7FKtzvDYtot6Ua6kvwkYPPtWS7ttxWsNKSEV
Hz92CszlQqocUzXEiIxkevwIYDLHUPyEVLZBwEaGq+MFCUCpVvH5Q4RiQ/2kr4sC
aNzlxw1vatjgOUFRs1OHg3SHHJKSArbwuHREE5AHRUwwH2/OAvxYVLXOXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL/TQWeeiiMuAeuUqbcREgIIl+mmMB8GA1UdIwQY
MBaAFCeTvelGrpNtPKzBNqXzI57fJDH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjVPOTZVYXVrMjA4ck1FMnBmTWpudDhrTWZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9iZjU4ZGEtYTlkMi00MjFhLWI0M2Et
OTJjM2JmNzRhOTdiLzEvdjlOQlo1NktJeTRCNjVTcHR4RVNBZ2lYNmFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi9iZjU4ZGEtYTlkMi00MjFhLWI0M2EtOTJjM2JmNzRhOTdi
LzEvSjVPOTZVYXVrMjA4ck1FMnBmTWpudDhrTWZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR/GMA0G
CSqGSIb3DQEBCwUAA4IBAQC+u18zOAvlMf/GV9iiaZyPBGNb3PRN9alm/ntmpuZ6
C7exyIG0V+5nMc2QmhIJeqct67kFIBv8yyq6Z0zuI1GMYJTwIbSMV5rGiNz5UA64
mytqACiLJ46VRVnRMKuMY5gHiiMA2yxsCkB8chhh1ZuX5aFnpDmaoWhSlGtcEMH0
vOjK3YQ+4xJqerJr11P5S9Kg0khiw1GkhQ/1ScPhMorMLhAG+cy/68NzpKPWngyQ
x3FclHse7KjNwPr83o+vRXKGMFQqiDD/mPxGjg95lEoXW7hziLEsJFsJvZdwFOAX
ugaaPi2VNGBoSuQiBfArHILHgj4SRorAtE2zUsQXNWVN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:13 2024 by rpki-client on console-fra.rpki-client.org