Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/t8MuBpFxkaN21jlKQ9tEIeDzyxg.roa
File: t8MuBpFxkaN21jlKQ9tEIeDzyxg.roa (raw, json)
Hash identifier: UC7/TWYXyHeOQXL+fAqwcC1iTtHCuGKK+BEd3ulYB8w=
Subject key identifier: B7:C3:2E:06:91:71:91:A3:76:D6:39:4A:43:DB:44:21:E0:F3:CB:18
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0181D1AD5D6EE08F6CAA49C2AFDF57C5BB21
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/t8MuBpFxkaN21jlKQ9tEIeDzyxg.roa
Signing time: Wed 06 Jul 2022 04:03:28 +0000
ROA not before: Wed 06 Jul 2022 04:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 31.43.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d1:ad:5d:6e:e0:8f:6c:aa:49:c2:af:df:57:c5:bb:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jul 6 04:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7c32e06917191a376d6394a43db4421e0f3cb18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:33:a0:0f:b1:4c:35:fe:d8:3d:01:26:a4:a1:
6b:5a:85:33:90:70:72:e8:cc:f2:89:b6:84:9c:bc:
28:4f:e0:88:75:ba:a0:a9:75:08:42:92:85:99:c0:
03:21:be:75:ae:17:2b:a1:0d:90:5c:27:ba:3c:0a:
8b:85:7c:f3:5b:25:da:b4:82:c8:f2:5d:20:19:f6:
ab:d2:46:30:a1:9b:21:27:4f:31:4f:94:4d:c9:68:
b1:14:65:47:69:30:15:b3:cf:21:bb:95:3b:45:6a:
af:1e:0f:d1:85:68:d4:c1:ff:83:07:5d:b5:6f:5d:
31:3e:a8:40:eb:34:c8:7c:08:c8:b4:ea:60:19:67:
24:b6:66:be:79:e8:8b:f8:2c:4d:db:eb:61:2a:64:
34:83:4d:fd:4d:b7:a7:3b:7f:ad:54:4a:0d:94:10:
48:c6:19:42:2e:a3:ea:d8:e9:53:a5:0d:4c:5c:16:
9b:91:1e:91:db:aa:ab:ab:35:50:f7:15:60:bf:75:
6d:de:76:56:ec:4f:95:7f:1a:55:0e:25:57:c2:61:
1f:07:f3:ed:1a:6c:4f:fa:b5:91:26:ff:d5:b2:b3:
0a:3f:79:6b:26:da:ae:75:70:f1:5e:2c:c5:0f:ff:
09:c8:06:4e:f9:5f:ce:7d:1d:29:d9:2b:23:1a:4d:
bc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C3:2E:06:91:71:91:A3:76:D6:39:4A:43:DB:44:21:E0:F3:CB:18
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/t8MuBpFxkaN21jlKQ9tEIeDzyxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.166.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:9a:8e:3d:89:69:8e:5f:d3:cb:35:dd:38:66:2d:35:91:0b:
d6:8d:3e:85:e4:f8:8a:b7:54:06:a7:47:b8:12:d3:a3:ae:56:
1e:12:3b:b4:a6:fd:c2:2d:ee:4b:5b:64:48:a6:bf:21:c5:cb:
2f:6f:bf:61:4a:67:ed:94:41:c7:5b:9c:69:bb:37:ed:46:b9:
b7:00:76:75:7d:66:3c:42:2a:cf:9b:14:31:7d:95:77:02:7b:
a9:2e:22:1d:99:bb:d3:6f:18:df:08:ef:e3:35:b5:4e:67:e3:
f7:43:98:52:71:c1:a1:13:f3:95:87:b3:a9:e5:a6:2c:b3:52:
44:0a:b9:46:9d:c3:34:94:08:89:a7:d1:05:83:a4:a7:23:90:
ab:bd:76:dd:38:e7:f7:73:07:13:1c:13:2f:dd:06:76:fe:aa:
59:b9:3e:2b:51:46:ae:cb:8e:5b:a9:fd:36:f4:63:dd:11:c1:
7a:0a:75:7c:0f:b3:8d:95:70:b4:da:8f:65:f5:79:ec:a2:84:
6a:6f:9d:50:f1:17:f9:6d:2b:70:07:ac:92:a6:a0:d7:75:65:
4f:95:36:bd:a5:4f:92:11:6e:00:a6:f0:81:12:1e:2b:34:3f:
08:59:02:97:56:54:67:37:ee:6c:45:10:6e:9a:99:d0:93:85:
2e:fb:00:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHRrV1u4I9sqknCr99XxbshMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZjI0NzI2ZGYzZTc3ZjZmNGM4ZTA0MzY2MTNiMzUxMTBl
ZWFmMzgwHhcNMjIwNzA2MDQwMzI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2MzMmUwNjkxNzE5MWEzNzZkNjM5NGE0M2RiNDQyMWUwZjNjYjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAijOgD7FMNf7YPQEmpKFrWoUzkHBy
6MzyibaEnLwoT+CIdbqgqXUIQpKFmcADIb51rhcroQ2QXCe6PAqLhXzzWyXatILI
8l0gGfar0kYwoZshJ08xT5RNyWixFGVHaTAVs88hu5U7RWqvHg/RhWjUwf+DB121
b10xPqhA6zTIfAjItOpgGWcktma+eeiL+CxN2+thKmQ0g039TbenO3+tVEoNlBBI
xhlCLqPq2OlTpQ1MXBabkR6R26qrqzVQ9xVgv3Vt3nZW7E+VfxpVDiVXwmEfB/Pt
GmxP+rWRJv/VsrMKP3lrJtqudXDxXizFD/8JyAZO+V/OfR0p2SsjGk28XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLfDLgaRcZGjdtY5SkPbRCHg88sYMB8GA1UdIwQY
MBaAFN/yRybfPnf29MjgQ2YTs1EQ7q84MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzct
NjJiYjZkNjNlNTlkLzEvdDhNdUJwRnhrYU4yMWpsS1E5dEVJZUR6eXhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzctNjJiYjZkNjNlNTlk
LzEvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyumMA0G
CSqGSIb3DQEBCwUAA4IBAQDFmo49iWmOX9PLNd04Zi01kQvWjT6F5PiKt1QGp0e4
EtOjrlYeEju0pv3CLe5LW2RIpr8hxcsvb79hSmftlEHHW5xpuzftRrm3AHZ1fWY8
QirPmxQxfZV3AnupLiIdmbvTbxjfCO/jNbVOZ+P3Q5hSccGhE/OVh7Op5aYss1JE
CrlGncM0lAiJp9EFg6SnI5CrvXbdOOf3cwcTHBMv3QZ2/qpZuT4rUUauy45bqf02
9GPdEcF6CnV8D7ONlXC02o9l9XnsooRqb51Q8Rf5bStwB6ySpqDXdWVPlTa9pU+S
EW4ApvCBEh4rND8IWQKXVlRnN+5sRRBumpnQk4Uu+wDp
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:53 2023 by rpki-client on console-fra.rpki-client.org