Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/S6DwFu72ORRdmyx6yy8CDQDuEEw.roa
File: S6DwFu72ORRdmyx6yy8CDQDuEEw.roa (raw, json)
Hash identifier: fraUgGgsQS531Y1ZvIED+GcqSJTe3vgMZ8QSlMMlXAY=
Subject key identifier: 4B:A0:F0:16:EE:F6:39:14:5D:9B:2C:7A:CB:2F:02:0D:00:EE:10:4C
Certificate issuer: /CN=684ac8a021270682765d23ef0338f35c786ddb35
Certificate serial: 036D4ECB
Authority key identifier: 68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/S6DwFu72ORRdmyx6yy8CDQDuEEw.roa
Signing time: Sat 01 Jan 2022 12:05:33 +0000
ROA not before: Sat 01 Jan 2022 12:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58207
IP address blocks: 31.129.124.0/24 maxlen: 24
195.16.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57495243 (0x36d4ecb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=684ac8a021270682765d23ef0338f35c786ddb35
Validity
Not Before: Jan 1 12:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ba0f016eef639145d9b2c7acb2f020d00ee104c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2b:d8:f5:11:ea:b0:d9:46:58:ad:c5:e7:55:
d0:c5:e2:89:5e:d5:8b:5f:36:47:e1:86:66:11:f0:
5b:38:ca:69:e2:c0:5c:96:e5:14:31:27:ca:9e:01:
1e:ce:40:15:80:44:a7:0c:a2:22:08:45:cc:cf:5e:
e4:db:c1:fc:0e:87:d7:f5:aa:2e:b5:fc:99:b4:05:
f2:d5:45:87:62:45:15:20:ed:54:84:f9:bb:b8:78:
58:7d:83:90:f3:f3:8d:cf:16:68:e0:e4:00:f3:ff:
42:76:09:06:01:3b:a6:d0:68:94:e8:6b:f3:4f:f5:
64:25:c1:d3:21:ba:3e:5e:f4:b5:cf:ea:de:e4:e3:
1e:aa:a1:7a:eb:fb:cd:fd:41:67:24:ee:d4:ff:6a:
8d:99:fc:41:8a:62:20:d2:ed:4e:36:a7:22:01:b2:
85:35:ed:18:d7:eb:e6:dd:44:3d:55:cc:ca:e6:2a:
86:45:1d:d2:c3:d8:57:38:91:65:cb:68:f6:a8:fe:
35:9d:61:e1:b1:c0:b4:73:66:9c:67:70:3e:88:50:
de:15:3b:14:7a:01:a3:14:a8:37:e0:72:39:79:a6:
85:4d:12:c3:58:76:b7:8f:49:d5:56:e5:59:a4:73:
62:7f:0e:8f:0f:ca:dc:69:e6:e9:33:4d:a9:29:45:
d2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A0:F0:16:EE:F6:39:14:5D:9B:2C:7A:CB:2F:02:0D:00:EE:10:4C
X509v3 Authority Key Identifier:
keyid:68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/S6DwFu72ORRdmyx6yy8CDQDuEEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.124.0/24
195.16.93.0/24
Signature Algorithm: sha256WithRSAEncryption
57:e3:46:d1:66:8e:57:ed:57:6d:45:85:1c:96:b9:6e:25:c8:
67:6f:85:68:44:83:49:75:2d:81:30:c5:4a:73:4f:8f:53:6b:
68:1c:ff:54:cc:6f:e4:95:50:60:a3:4b:54:af:44:dd:8b:46:
4b:06:18:98:cb:17:10:93:0b:3a:79:f9:d2:85:38:12:68:52:
81:ba:bb:b2:87:cf:f5:5d:6d:4b:4f:19:68:54:66:0f:26:23:
a4:e5:78:d6:56:44:5c:fd:92:b0:5e:81:77:93:6b:8b:18:08:
74:0b:14:4c:c9:32:0f:0b:6a:48:7d:e8:19:36:e8:51:a7:67:
ef:92:10:97:5b:bb:1a:44:0e:1e:29:29:de:80:6a:e2:de:4a:
bd:60:b4:d6:e9:2a:d6:89:ae:a6:ba:fd:0e:1c:5a:77:b0:cf:
b5:48:32:a8:43:94:2f:59:7b:24:f4:1b:8d:20:59:40:c8:b9:
1b:f5:e7:da:35:22:5d:04:7b:4f:cc:f3:c1:86:c7:90:ed:e2:
cc:d0:2a:0e:13:e9:6d:09:0f:98:45:ff:c0:f8:a3:af:ec:ac:
c7:28:d4:02:c6:bd:df:fa:5c:90:3e:81:f1:9d:f6:66:51:49:
3c:49:1e:a7:89:7b:4d:3f:3a:dd:c4:09:69:40:85:37:40:c7:
95:2a:5a:8f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA21OyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ODRhYzhhMDIxMjcwNjgyNzY1ZDIzZWYwMzM4ZjM1Yzc4NmRkYjM1MB4XDTIyMDEw
MTEyMDUzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGJhMGYwMTZlZWY2
MzkxNDVkOWIyYzdhY2IyZjAyMGQwMGVlMTA0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMIr2PUR6rDZRlitxedV0MXiiV7Vi182R+GGZhHwWzjKaeLA
XJblFDEnyp4BHs5AFYBEpwyiIghFzM9e5NvB/A6H1/WqLrX8mbQF8tVFh2JFFSDt
VIT5u7h4WH2DkPPzjc8WaODkAPP/QnYJBgE7ptBolOhr80/1ZCXB0yG6Pl70tc/q
3uTjHqqheuv7zf1BZyTu1P9qjZn8QYpiINLtTjanIgGyhTXtGNfr5t1EPVXMyuYq
hkUd0sPYVziRZcto9qj+NZ1h4bHAtHNmnGdwPohQ3hU7FHoBoxSoN+ByOXmmhU0S
w1h2t49J1VblWaRzYn8Ojw/K3Gnm6TNNqSlF0uMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRLoPAW7vY5FF2bLHrLLwINAO4QTDAfBgNVHSMEGDAWgBRoSsigIScGgnZd
I+8DOPNceG3bNTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FFcklvQ0VuQm9KMlhTUHZBemp6WEhodDJ6VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjcvZDMwYjVkLTdmM2ItNGE1YS05ODk3LTBjMDExYzljOTI3ZC8x
L1M2RHdGdTcyT1JSZG15eDZ5eThDRFFEdUVFdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcv
ZDMwYjVkLTdmM2ItNGE1YS05ODk3LTBjMDExYzljOTI3ZC8xL2FFcklvQ0VuQm9K
MlhTUHZBemp6WEhodDJ6VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAB+BfAMEAMMQXTANBgkqhkiG9w0B
AQsFAAOCAQEAV+NG0WaOV+1XbUWFHJa5biXIZ2+FaESDSXUtgTDFSnNPj1NraBz/
VMxv5JVQYKNLVK9E3YtGSwYYmMsXEJMLOnn50oU4EmhSgbq7sofP9V1tS08ZaFRm
DyYjpOV41lZEXP2SsF6Bd5NrixgIdAsUTMkyDwtqSH3oGTboUadn75IQl1u7GkQO
Hikp3oBq4t5KvWC01ukq1omuprr9Dhxad7DPtUgyqEOUL1l7JPQbjSBZQMi5G/Xn
2jUiXQR7T8zzwYbHkO3izNAqDhPpbQkPmEX/wPijr+ysxyjUAsa93/pckD6B8Z32
ZlFJPEkep4l7TT863cQJaUCFN0DHlSpajw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org