Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/0KSUr3aGNtU9rUowpMjJpLlVSHg.roa
File: 0KSUr3aGNtU9rUowpMjJpLlVSHg.roa (raw, json)
Hash identifier: epmHQcJ/kfAOthD3raHRv/iEcdeEZI4m/CnP7KIUaBU=
Subject key identifier: D0:A4:94:AF:76:86:36:D5:3D:AD:4A:30:A4:C8:C9:A4:B9:55:48:78
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 02CBD088
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/0KSUr3aGNtU9rUowpMjJpLlVSHg.roa
Signing time: Sat 01 Jan 2022 09:54:21 +0000
ROA not before: Sat 01 Jan 2022 09:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 31.43.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46911624 (0x2cbd088)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 1 09:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0a494af768636d53dad4a30a4c8c9a4b9554878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f8:ff:a5:ca:2a:e1:c2:b0:dd:52:2b:ae:07:
98:6d:32:13:1c:a1:27:fd:36:b3:fc:79:97:d4:3a:
b7:5d:a4:0d:9e:68:76:45:9f:7d:da:1f:fe:d8:4e:
25:b1:1d:10:95:54:06:d6:b1:9d:de:c8:d6:86:83:
d8:e1:af:b1:97:77:54:f8:2d:98:90:47:dc:9e:33:
2c:74:19:36:93:07:13:14:0b:7c:c6:a9:11:65:b7:
db:bb:dd:61:71:4f:f2:2c:6d:01:f4:f4:e7:fd:2f:
24:0d:c6:42:26:8f:e6:ac:42:87:50:ab:6b:15:6a:
9d:69:5b:d7:f5:86:66:02:8c:e8:af:e4:73:d2:bc:
b3:84:d0:d6:4d:63:03:40:19:08:0e:81:40:76:bd:
2d:24:28:9f:43:9e:86:9e:bd:63:a1:0c:70:84:78:
c1:cb:90:44:89:99:b1:71:18:cb:cb:dd:85:fe:26:
72:10:c6:66:96:2b:c2:e6:06:49:93:b1:1d:14:f9:
ac:31:74:6e:36:2e:fd:57:d1:af:c7:d4:e7:fb:04:
b8:cf:d6:c2:c4:80:2d:28:ae:1d:db:29:f1:84:9f:
b3:41:02:55:b9:21:cf:5f:d9:e1:44:d7:70:7f:77:
77:89:55:d2:73:a3:9a:a8:43:2f:39:16:e8:93:7a:
06:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A4:94:AF:76:86:36:D5:3D:AD:4A:30:A4:C8:C9:A4:B9:55:48:78
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/0KSUr3aGNtU9rUowpMjJpLlVSHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/22
Signature Algorithm: sha256WithRSAEncryption
56:90:a0:aa:24:da:bb:34:a3:44:93:ed:16:e7:9a:e6:fb:57:
7b:32:f1:47:6a:3f:20:62:00:59:5a:1e:d9:30:55:98:d4:c7:
31:5b:f5:5b:c3:58:4a:d1:b6:54:7e:cf:a8:cb:0f:75:68:d1:
9d:ea:62:f2:09:a7:ca:1b:9b:dd:ac:04:94:ed:39:05:4d:bb:
1a:b9:0c:ef:4c:6d:dd:64:2e:00:d2:0b:4f:c5:77:09:fb:6f:
28:3d:97:f9:02:bd:ea:85:ab:c7:47:b0:10:16:ad:0f:20:2a:
df:24:f3:16:c9:24:2d:da:ff:09:ea:52:25:65:2f:70:67:c2:
b0:03:20:63:04:c2:bc:85:0f:a1:b8:07:0e:71:15:85:82:24:
42:af:f8:51:9a:f2:07:6b:11:10:cd:3e:33:6d:50:d1:0d:14:
4e:cc:e2:18:61:9a:ae:02:f1:75:a9:76:13:48:85:82:e0:bb:
bf:85:11:59:2a:ba:bd:4b:6a:56:e1:69:25:f1:bc:31:35:5e:
32:62:78:be:5c:97:ec:bd:c5:d7:68:26:53:e4:49:3f:9f:b8:
68:3c:e2:70:ec:15:af:f7:1c:da:53:b9:b2:da:58:98:4b:5f:
7e:1c:ac:a8:93:09:6d:a5:36:2e:6d:17:12:2e:83:76:8b:d8:
fb:00:3a:e1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAsvQiDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZmYyNDcyNmRmM2U3N2Y2ZjRjOGUwNDM2NjEzYjM1MTEwZWVhZjM4MB4XDTIyMDEw
MTA5NTQyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDBhNDk0YWY3Njg2
MzZkNTNkYWQ0YTMwYTRjOGM5YTRiOTU1NDg3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAND4/6XKKuHCsN1SK64HmG0yExyhJ/02s/x5l9Q6t12kDZ5o
dkWffdof/thOJbEdEJVUBtaxnd7I1oaD2OGvsZd3VPgtmJBH3J4zLHQZNpMHExQL
fMapEWW327vdYXFP8ixtAfT05/0vJA3GQiaP5qxCh1CraxVqnWlb1/WGZgKM6K/k
c9K8s4TQ1k1jA0AZCA6BQHa9LSQon0Oehp69Y6EMcIR4wcuQRImZsXEYy8vdhf4m
chDGZpYrwuYGSZOxHRT5rDF0bjYu/VfRr8fU5/sEuM/WwsSALSiuHdsp8YSfs0EC
Vbkhz1/Z4UTXcH93d4lV0nOjmqhDLzkW6JN6BskCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTQpJSvdoY21T2tSjCkyMmkuVVIeDAfBgNVHSMEGDAWgBTf8kcm3z539vTI
4ENmE7NREO6vODAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNfSkhKdDgtZF9iMHlPQkRaaE96VVJEdXJ6Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTk2MDI0LTY1NTUtNGU4ZC1hZjM3LTYyYmI2ZDYzZTU5ZC8x
LzBLU1VyM2FHTnRVOXJVb3dwTWpKcExsVlNIZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTk2MDI0LTY1NTUtNGU4ZC1hZjM3LTYyYmI2ZDYzZTU5ZC8xLzNfSkhKdDgtZF9i
MHlPQkRaaE96VVJEdXJ6Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAh8rpDANBgkqhkiG9w0BAQsFAAOC
AQEAVpCgqiTauzSjRJPtFuea5vtXezLxR2o/IGIAWVoe2TBVmNTHMVv1W8NYStG2
VH7PqMsPdWjRnepi8gmnyhub3awElO05BU27GrkM70xt3WQuANILT8V3CftvKD2X
+QK96oWrx0ewEBatDyAq3yTzFskkLdr/CepSJWUvcGfCsAMgYwTCvIUPobgHDnEV
hYIkQq/4UZryB2sREM0+M21Q0Q0UTsziGGGargLxdal2E0iFguC7v4URWSq6vUtq
VuFpJfG8MTVeMmJ4vlyX7L3F12gmU+RJP5+4aDzicOwVr/cc2lO5stpYmEtffhys
qJMJbaU2Lm0XEi6DdovY+wA64Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org