Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4f220c-5f6e-467e-a26c-9843cd23fb04/1/vZnTky7sl7M_Phxl34o6Buum7jw.roa
File: vZnTky7sl7M_Phxl34o6Buum7jw.roa (raw, json)
Hash identifier: LuHgIw/JhEbrEWlsJ5fO2Huzgs9lznv4ECQRVFD2+TM=
Subject key identifier: BD:99:D3:93:2E:EC:97:B3:3F:3E:1C:65:DF:8A:3A:06:EB:A6:EE:3C
Certificate issuer: /CN=19da8fa2a19630873ed48b06af65ce17d1507566
Certificate serial: 0184E6E641D5D62280351C8292325D2E464A
Authority key identifier: 19:DA:8F:A2:A1:96:30:87:3E:D4:8B:06:AF:65:CE:17:D1:50:75:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdqPoqGWMIc-1IsGr2XOF9FQdWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4f220c-5f6e-467e-a26c-9843cd23fb04/1/vZnTky7sl7M_Phxl34o6Buum7jw.roa
Signing time: Tue 06 Dec 2022 10:06:00 +0000
ROA not before: Tue 06 Dec 2022 10:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212560
IP address blocks: 31.193.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e6:e6:41:d5:d6:22:80:35:1c:82:92:32:5d:2e:46:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19da8fa2a19630873ed48b06af65ce17d1507566
Validity
Not Before: Dec 6 10:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd99d3932eec97b33f3e1c65df8a3a06eba6ee3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:10:7d:a5:b7:d0:cd:3a:b9:52:18:48:e0:51:
8b:d0:0d:80:c5:fd:9e:40:59:4b:ad:b5:0c:f1:99:
b5:8b:9c:95:97:35:07:ab:52:1e:8a:ca:3a:fc:1b:
e1:88:63:12:13:5f:92:12:38:1e:8b:bf:b5:dc:4c:
d9:30:14:63:7b:a8:e4:b2:1c:03:4b:fe:f4:b1:68:
a5:62:0c:e0:f0:8d:4a:72:ab:9d:92:47:cf:8e:1e:
82:f5:4f:b2:e8:31:72:c3:f5:a2:3a:5e:97:e5:88:
99:f4:1d:df:ed:df:bd:1a:fd:b4:6b:cf:26:a6:0d:
8a:37:b3:23:79:d6:18:ec:bc:be:42:35:1c:4e:a2:
81:ef:df:29:63:53:11:c2:0d:bf:4a:12:c2:e0:8d:
dd:54:36:ce:0c:62:4c:2a:fd:92:58:a5:42:9f:22:
75:8b:5d:5a:45:36:36:78:81:e3:93:f1:74:a5:96:
19:3e:87:8c:2b:8b:e4:8d:b5:10:c6:49:2b:65:9d:
48:e1:42:49:a6:70:c6:e0:f0:08:94:ca:41:99:5f:
64:62:72:73:bb:7c:70:9f:0c:fc:21:5e:10:f1:0d:
c8:38:fc:4b:33:f9:af:03:a4:d0:94:29:5f:84:dd:
9f:b2:a2:61:ed:f4:39:58:2c:bb:22:d1:ad:68:54:
72:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:99:D3:93:2E:EC:97:B3:3F:3E:1C:65:DF:8A:3A:06:EB:A6:EE:3C
X509v3 Authority Key Identifier:
keyid:19:DA:8F:A2:A1:96:30:87:3E:D4:8B:06:AF:65:CE:17:D1:50:75:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdqPoqGWMIc-1IsGr2XOF9FQdWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4f220c-5f6e-467e-a26c-9843cd23fb04/1/vZnTky7sl7M_Phxl34o6Buum7jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4f220c-5f6e-467e-a26c-9843cd23fb04/1/GdqPoqGWMIc-1IsGr2XOF9FQdWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.184.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:63:db:89:0a:ca:30:36:86:46:58:13:5c:f1:44:37:08:4c:
a2:3f:e2:d5:05:78:a9:6f:7d:85:33:f3:73:26:a9:b7:1e:11:
8e:a7:ec:c3:5a:0d:0b:d7:96:ce:93:9e:55:7e:0d:5f:f5:6b:
c8:26:18:50:4c:de:7b:46:10:ad:ad:92:c3:b2:10:c5:12:d5:
90:68:22:2c:47:61:1a:2e:d7:c2:f5:21:6f:b4:8d:24:6d:ee:
38:66:3c:95:49:19:e2:b0:8b:6a:52:ab:d4:ff:27:e0:93:c9:
15:78:9f:4c:f5:4b:7c:91:2c:fd:83:a2:4e:a2:6e:31:1a:0b:
cf:7a:4a:13:a0:51:b8:2a:c7:38:fb:8e:36:a7:b9:c3:5c:57:
c3:0d:a7:d2:44:6a:c5:ad:6b:e1:c7:3a:79:f1:d7:01:a0:04:
e9:08:35:5e:93:a8:b1:c9:d4:1e:eb:5d:73:eb:f7:a8:6e:44:
cd:27:52:5f:63:1d:37:c5:19:d5:93:71:47:23:2d:f8:c6:dc:
b3:c9:da:65:2e:a7:79:53:4f:81:7b:ab:c5:9e:ed:b8:d7:03:
cc:67:37:58:6e:88:e8:da:ac:89:aa:74:01:e7:c4:96:ab:ad:
3a:b5:ed:a3:e9:2c:57:b5:2b:84:e0:1d:fc:b9:48:ad:d7:be:
a7:27:c1:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTm5kHV1iKANRyCkjJdLkZKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZGE4ZmEyYTE5NjMwODczZWQ0OGIwNmFmNjVjZTE3ZDE1
MDc1NjYwHhcNMjIxMjA2MTAwNjAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDk5ZDM5MzJlZWM5N2IzM2YzZTFjNjVkZjhhM2EwNmViYTZlZTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiBB9pbfQzTq5UhhI4FGL0A2Axf2e
QFlLrbUM8Zm1i5yVlzUHq1Ieiso6/BvhiGMSE1+SEjgei7+13EzZMBRje6jkshwD
S/70sWilYgzg8I1KcqudkkfPjh6C9U+y6DFyw/WiOl6X5YiZ9B3f7d+9Gv20a88m
pg2KN7MjedYY7Ly+QjUcTqKB798pY1MRwg2/ShLC4I3dVDbODGJMKv2SWKVCnyJ1
i11aRTY2eIHjk/F0pZYZPoeMK4vkjbUQxkkrZZ1I4UJJpnDG4PAIlMpBmV9kYnJz
u3xwnwz8IV4Q8Q3IOPxLM/mvA6TQlClfhN2fsqJh7fQ5WCy7ItGtaFRyaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL2Z05Mu7JezPz4cZd+KOgbrpu48MB8GA1UdIwQY
MBaAFBnaj6KhljCHPtSLBq9lzhfRUHVmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2RxUG9xR1dNSWMtMUlzR3IyWE9GOUZRZFdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80ZjIyMGMtNWY2ZS00NjdlLWEyNmMt
OTg0M2NkMjNmYjA0LzEvdlpuVGt5N3NsN01fUGh4bDM0bzZCdXVtN2p3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi80ZjIyMGMtNWY2ZS00NjdlLWEyNmMtOTg0M2NkMjNmYjA0
LzEvR2RxUG9xR1dNSWMtMUlzR3IyWE9GOUZRZFdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH8G4MA0G
CSqGSIb3DQEBCwUAA4IBAQCbY9uJCsowNoZGWBNc8UQ3CEyiP+LVBXipb32FM/Nz
Jqm3HhGOp+zDWg0L15bOk55Vfg1f9WvIJhhQTN57RhCtrZLDshDFEtWQaCIsR2Ea
LtfC9SFvtI0kbe44ZjyVSRnisItqUqvU/yfgk8kVeJ9M9Ut8kSz9g6JOom4xGgvP
ekoToFG4Ksc4+442p7nDXFfDDafSRGrFrWvhxzp58dcBoATpCDVek6ixydQe611z
6/eobkTNJ1JfYx03xRnVk3FHIy34xtyzydplLqd5U0+Be6vFnu241wPMZzdYbojo
2qyJqnQB58SWq606te2j6SxXtSuE4B38uUit176nJ8HL
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:22 2023 by rpki-client on console-ams.rpki-client.org