Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/AOThaigpBuZJ4GxI1wkuRyT4T2c.roa
File: AOThaigpBuZJ4GxI1wkuRyT4T2c.roa (raw, json)
Hash identifier: F0PhAZFQZgEL3DJfsnq1rY0rNvI23qI0Lsfpnhvmtps=
Subject key identifier: 00:E4:E1:6A:28:29:06:E6:49:E0:6C:48:D7:09:2E:47:24:F8:4F:67
Certificate issuer: /CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Certificate serial: 3720962B
Authority key identifier: 6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/AOThaigpBuZJ4GxI1wkuRyT4T2c.roa
Signing time: Sat 01 Jan 2022 03:01:45 +0000
ROA not before: Sat 01 Jan 2022 03:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 31.169.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 924882475 (0x3720962b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Validity
Not Before: Jan 1 03:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00e4e16a282906e649e06c48d7092e4724f84f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:52:48:ea:22:b1:24:a3:3f:86:ce:ec:38:
22:38:3b:ca:56:78:6d:a1:e0:27:91:f1:e4:f1:37:
dd:8a:a4:e1:3e:50:8b:f5:b3:af:4e:71:09:40:d1:
ae:3e:ab:a6:2e:26:51:9e:22:49:cb:4a:a0:43:ad:
ae:81:11:86:a5:df:5e:7a:90:f0:62:c3:1c:fd:53:
58:3c:8f:cd:c4:3b:08:d0:72:85:af:8f:71:59:f8:
10:69:02:6a:29:cf:e5:19:c3:9d:e7:b6:e3:07:ad:
e9:ac:9e:77:b1:60:3b:fa:a1:c2:ce:34:8e:93:2a:
60:e1:d7:3c:95:f5:fc:83:42:db:01:f0:74:7c:73:
01:6d:ec:1a:e2:bd:8b:66:bb:d9:64:bd:0f:e5:ac:
3c:74:5e:d7:8f:27:cd:17:7b:b6:ef:4f:97:40:de:
46:24:a0:ff:e9:70:fb:ed:de:0e:7d:1f:4a:14:e6:
41:b6:0b:95:d1:d4:87:8d:a3:a4:70:59:ef:e8:d2:
8e:0f:72:bf:e4:61:67:33:e5:02:e2:88:43:25:83:
77:fa:f3:ed:8a:6e:d5:7d:0e:61:0a:26:e3:db:8d:
8e:4b:8f:de:cf:1d:6d:8a:48:a0:88:bf:d0:64:41:
da:42:e1:cd:96:28:67:1f:69:2a:01:5c:75:69:bb:
72:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E4:E1:6A:28:29:06:E6:49:E0:6C:48:D7:09:2E:47:24:F8:4F:67
X509v3 Authority Key Identifier:
keyid:6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/AOThaigpBuZJ4GxI1wkuRyT4T2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:0e:06:3c:c9:50:f5:9e:fa:cb:c2:4b:c5:40:af:94:21:0d:
01:22:0d:43:31:70:36:e4:7c:00:02:77:22:b1:17:f1:87:35:
8b:b4:d9:c0:8c:d9:c4:e6:95:48:3b:49:12:1d:ea:fe:cc:8b:
c7:c1:4e:71:fe:cd:bd:6a:6d:46:33:e9:bc:ab:93:82:0f:c7:
7c:ff:9b:bf:58:46:c6:f5:e7:8d:ca:11:6e:c9:36:3f:92:4a:
96:d5:9d:20:f6:64:c9:26:b4:e5:1a:a6:1c:81:9e:4e:ab:72:
f3:a8:5c:72:bb:01:8a:28:e8:1c:64:3a:2c:c8:60:0c:1b:4d:
20:24:2c:56:50:c3:c3:bf:3f:08:f4:a7:9a:28:21:e1:e6:b1:
68:9f:32:c3:28:d0:e6:1e:5f:43:39:0a:f1:af:85:eb:0e:9d:
6d:33:36:35:e7:d3:95:16:b7:52:47:cb:d9:d4:64:fa:65:19:
4d:fd:03:a2:43:80:13:8d:ed:cd:b2:63:1f:45:68:72:60:41:
f9:f7:db:84:ef:7d:6d:f1:ce:79:1b:77:fc:64:b7:10:04:b8:
3c:7b:55:0f:f0:95:ed:cb:6d:a8:33:2b:82:e0:81:44:76:cc:
50:18:44:c1:59:a3:0d:6e:35:d2:24:26:54:16:41:e3:5f:7b:
d3:88:f0:1f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENyCWKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZDY5ZGE0NGFlMDY3ZmMxYTk4YTVmNmYwNWYxMmU1NDVkMGZjNjJhMB4XDTIyMDEw
MTAzMDE0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDBlNGUxNmEyODI5
MDZlNjQ5ZTA2YzQ4ZDcwOTJlNDcyNGY4NGY2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKS9UkjqIrEkoz+Gzuw4Ijg7ylZ4baHgJ5Hx5PE33Yqk4T5Q
i/Wzr05xCUDRrj6rpi4mUZ4iSctKoEOtroERhqXfXnqQ8GLDHP1TWDyPzcQ7CNBy
ha+PcVn4EGkCainP5RnDnee24wet6ayed7FgO/qhws40jpMqYOHXPJX1/INC2wHw
dHxzAW3sGuK9i2a72WS9D+WsPHRe148nzRd7tu9Pl0DeRiSg/+lw++3eDn0fShTm
QbYLldHUh42jpHBZ7+jSjg9yv+RhZzPlAuKIQyWDd/rz7Ypu1X0OYQom49uNjkuP
3s8dbYpIoIi/0GRB2kLhzZYoZx9pKgFcdWm7cv0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQA5OFqKCkG5kngbEjXCS5HJPhPZzAfBgNVHSMEGDAWgBRtadpErgZ/wamK
X28F8S5UXQ/GKjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JXbmFSSzRHZjhHcGlsOXZCZkV1VkYwUHhpby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDEvYjFhODJhLTQ5MGYtNDNmYi05ODZlLTI2MTcwZGE0YTBiMS8x
L0FPVGhhaWdwQnVaSjRHeEkxd2t1UnlUNFQyYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEv
YjFhODJhLTQ5MGYtNDNmYi05ODZlLTI2MTcwZGE0YTBiMS8xL2JXbmFSSzRHZjhH
cGlsOXZCZkV1VkYwUHhpby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+pWTANBgkqhkiG9w0BAQsFAAOC
AQEAKw4GPMlQ9Z76y8JLxUCvlCENASINQzFwNuR8AAJ3IrEX8Yc1i7TZwIzZxOaV
SDtJEh3q/syLx8FOcf7NvWptRjPpvKuTgg/HfP+bv1hGxvXnjcoRbsk2P5JKltWd
IPZkySa05RqmHIGeTqty86hccrsBiijoHGQ6LMhgDBtNICQsVlDDw78/CPSnmigh
4eaxaJ8ywyjQ5h5fQzkK8a+F6w6dbTM2NefTlRa3UkfL2dRk+mUZTf0DokOAE43t
zbJjH0VocmBB+ffbhO99bfHOeRt3/GS3EAS4PHtVD/CV7cttqDMrguCBRHbMUBhE
wVmjDW410iQmVBZB419704jwHw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:47 2024 by rpki-client on console-ams.rpki-client.org