Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/L6hWqCeRmhvNbuhVBQ5Pjjo6h30.roa
File: L6hWqCeRmhvNbuhVBQ5Pjjo6h30.roa (raw, json)
Hash identifier: umb+c7I69q5wocXAEQd6c+a4dwHkLAiCSxa9LRrCcew=
Subject key identifier: 2F:A8:56:A8:27:91:9A:1B:CD:6E:E8:55:05:0E:4F:8E:3A:3A:87:7D
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 01856F42BF2F49328399BF83C2E2955F6706
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/L6hWqCeRmhvNbuhVBQ5Pjjo6h30.roa
Signing time: Sun 01 Jan 2023 21:35:23 +0000
ROA not before: Sun 01 Jan 2023 21:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62416
IP address blocks: 31.7.74.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:bf:2f:49:32:83:99:bf:83:c2:e2:95:5f:67:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jan 1 21:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fa856a827919a1bcd6ee855050e4f8e3a3a877d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d2:0b:87:6c:51:4c:67:52:b7:85:a1:c1:2f:
5d:23:74:bf:22:5b:e9:e0:8b:0b:1a:be:75:40:85:
c7:3d:57:ea:56:98:bc:50:26:3c:b9:ca:89:c3:bc:
01:dc:8e:4e:c9:4e:be:92:7d:b4:61:c1:d2:f1:d9:
3f:ce:7a:24:fe:6e:f1:95:93:5a:9c:fc:20:49:49:
d3:0c:21:60:8e:4e:aa:bc:ac:71:1f:55:e2:74:6a:
dd:22:ee:4d:4a:7a:ce:43:5c:9e:b5:13:99:c0:15:
ec:9d:90:5c:d0:75:9f:91:fb:d6:cb:5c:ac:fe:59:
2e:d3:87:ac:cb:8d:1b:ec:cb:35:e3:93:b2:e0:c6:
37:65:5d:ec:71:15:d8:6d:86:35:52:7e:d4:2e:74:
98:49:12:59:5c:ba:f2:06:eb:51:44:c2:f7:8e:5d:
f8:0d:18:71:11:6a:a3:a0:77:d4:6e:c2:6f:73:e5:
77:0f:ea:45:3b:f2:6d:88:3d:f2:72:0d:86:cb:30:
40:0c:fa:f4:a0:98:fe:27:77:7c:ae:89:1b:7b:05:
61:ba:c2:b3:d0:a7:2a:3d:c6:02:e3:7a:e4:5e:78:
65:f3:ee:82:f7:90:bd:93:b7:2e:f6:97:6a:11:70:
52:46:99:4a:3b:32:17:fc:3b:31:cf:0c:38:cc:19:
e1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A8:56:A8:27:91:9A:1B:CD:6E:E8:55:05:0E:4F:8E:3A:3A:87:7D
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/L6hWqCeRmhvNbuhVBQ5Pjjo6h30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.74.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:26:3f:f4:c8:2a:52:1e:8a:ca:b1:05:5c:48:81:ae:7c:51:
50:42:69:f8:6c:e6:39:9d:26:75:73:b8:e7:9c:22:cb:bb:19:
04:a3:0a:93:bc:95:c1:40:c0:1b:06:51:72:9f:65:96:5d:47:
07:6e:87:16:2f:89:e7:eb:95:34:88:94:cc:72:93:b4:a3:c9:
c3:8b:b6:d3:85:15:39:a1:2a:0d:71:fb:7e:72:51:6b:2f:d9:
95:58:57:c1:66:f3:bd:af:f2:58:cf:1b:1b:21:31:c4:1f:10:
28:d3:7c:e7:83:96:9b:22:77:1d:7e:ef:83:e9:93:05:b9:43:
5b:4b:1d:71:d9:13:aa:78:41:35:40:5a:18:0c:c8:56:a4:42:
ec:0c:9e:b1:b1:f8:26:31:47:6b:db:53:29:ac:10:9d:4b:35:
db:84:16:8d:69:82:e5:a9:e9:06:33:ee:7a:51:c2:80:4a:34:
e8:35:71:e5:9c:f2:9a:0b:91:0d:6b:2f:4e:5a:54:95:d3:38:
0a:dd:8a:eb:8d:d1:ed:21:4b:b7:12:38:22:92:a6:b0:c3:75:
fd:7d:f1:2e:35:76:6c:a5:07:94:b5:cb:40:fb:1f:25:11:65:
fd:b3:4e:03:86:02:08:ed:cf:a6:f7:8e:d6:48:d7:10:75:29:
c4:a5:a3:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQr8vSTKDmb+DwuKVX2cGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNTI2MzRhMmViMDNmODU2NWI1ZTMzZGMyYjlmNDkwNDFm
N2NmYjAwHhcNMjMwMTAxMjEzNTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmE4NTZhODI3OTE5YTFiY2Q2ZWU4NTUwNTBlNGY4ZTNhM2E4NzdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNILh2xRTGdSt4WhwS9dI3S/Ilvp
4IsLGr51QIXHPVfqVpi8UCY8ucqJw7wB3I5OyU6+kn20YcHS8dk/znok/m7xlZNa
nPwgSUnTDCFgjk6qvKxxH1XidGrdIu5NSnrOQ1yetROZwBXsnZBc0HWfkfvWy1ys
/lku04esy40b7Ms145Oy4MY3ZV3scRXYbYY1Un7ULnSYSRJZXLryButRRML3jl34
DRhxEWqjoHfUbsJvc+V3D+pFO/JtiD3ycg2GyzBADPr0oJj+J3d8rokbewVhusKz
0KcqPcYC43rkXnhl8+6C95C9k7cu9pdqEXBSRplKOzIX/Dsxzww4zBnhNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC+oVqgnkZobzW7oVQUOT446Ood9MB8GA1UdIwQY
MBaAFFtSY0ousD+FZbXjPcK59JBB98+wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzFKalNpNndQNFZsdGVNOXdybjBrRUgzejdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83YTViNDQtNmIxOC00MmQzLWE4ZDUt
ZGM2NTU0ZmQxMjM1LzEvTDZoV3FDZVJtaHZOYnVoVkJRNVBqam82aDMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC83YTViNDQtNmIxOC00MmQzLWE4ZDUtZGM2NTU0ZmQxMjM1
LzEvVzFKalNpNndQNFZsdGVNOXdybjBrRUgzejdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBHwdKMA0G
CSqGSIb3DQEBCwUAA4IBAQDVJj/0yCpSHorKsQVcSIGufFFQQmn4bOY5nSZ1c7jn
nCLLuxkEowqTvJXBQMAbBlFyn2WWXUcHbocWL4nn65U0iJTMcpO0o8nDi7bThRU5
oSoNcft+clFrL9mVWFfBZvO9r/JYzxsbITHEHxAo03zng5abIncdfu+D6ZMFuUNb
Sx1x2ROqeEE1QFoYDMhWpELsDJ6xsfgmMUdr21MprBCdSzXbhBaNaYLlqekGM+56
UcKASjToNXHlnPKaC5ENay9OWlSV0zgK3YrrjdHtIUu3Ejgikqaww3X9ffEuNXZs
pQeUtctA+x8lEWX9s04DhgII7c+m947WSNcQdSnEpaNg
-----END CERTIFICATE-----
Generated at Thu Apr 17 13:45:35 2025 by rpki-client