Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/7UeNMB7xJ12tY-0gOlur94nQA7g.roa
File: 7UeNMB7xJ12tY-0gOlur94nQA7g.roa (raw, json)
Hash identifier: 7zmiH5rFFvek9Q9Y+y2xZAafC9e4bcsaj/3YigfJavs=
Subject key identifier: ED:47:8D:30:1E:F1:27:5D:AD:63:ED:20:3A:5B:AB:F7:89:D0:03:B8
Certificate issuer: /CN=19ffff289f2dad0fc08456b0bad54d7ba449a492
Certificate serial: 0877646A
Authority key identifier: 19:FF:FF:28:9F:2D:AD:0F:C0:84:56:B0:BA:D5:4D:7B:A4:49:A4:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gf__KJ8trQ_AhFawutVNe6RJpJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/7UeNMB7xJ12tY-0gOlur94nQA7g.roa
Signing time: Sat 01 Jan 2022 15:56:33 +0000
ROA not before: Sat 01 Jan 2022 15:56:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 31.24.225.0/24 maxlen: 24
2a02:2498:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142042218 (0x877646a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ffff289f2dad0fc08456b0bad54d7ba449a492
Validity
Not Before: Jan 1 15:56:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed478d301ef1275dad63ed203a5babf789d003b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1e:af:d1:0d:e0:78:ed:70:e7:e6:b5:9a:a1:
f5:f1:f9:43:a1:0a:8b:a8:20:5f:06:83:e2:6e:c0:
79:7e:1c:f3:4e:e4:22:61:da:00:c6:29:ee:3d:0c:
47:12:74:c5:a5:2c:0e:b4:6d:8d:32:9d:bd:cf:ec:
64:16:55:e4:8e:2d:dc:73:0e:af:d4:94:5c:f4:3d:
00:e3:ce:03:4d:94:9e:01:5e:6d:2f:d4:b6:48:12:
f9:76:96:a3:c1:d0:99:2c:ca:de:1e:1e:df:f1:22:
20:39:82:37:5c:3b:79:3a:50:8f:a7:77:eb:eb:f4:
5d:96:08:bf:eb:6a:6a:1d:c9:fc:f6:c0:d3:19:61:
7b:92:7f:ab:f6:b3:ee:bb:3a:bc:d7:b9:7f:0f:d8:
eb:8c:28:65:a6:53:69:35:ef:cf:60:c3:cd:eb:9e:
73:e2:d8:c9:33:2c:ab:70:e1:4f:f9:fa:9b:7c:16:
95:f5:df:6e:76:db:c7:84:af:9b:37:c5:be:8f:33:
ca:2a:a7:c6:72:25:d1:2d:a6:63:6b:4d:e4:62:16:
9c:52:35:12:85:4d:58:33:ff:5d:21:d8:b5:00:ff:
bb:6b:d3:c2:28:22:55:65:ae:fd:20:d3:0d:9b:b3:
69:aa:52:11:b2:35:83:16:2d:da:77:af:e9:ef:c1:
5c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:47:8D:30:1E:F1:27:5D:AD:63:ED:20:3A:5B:AB:F7:89:D0:03:B8
X509v3 Authority Key Identifier:
keyid:19:FF:FF:28:9F:2D:AD:0F:C0:84:56:B0:BA:D5:4D:7B:A4:49:A4:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gf__KJ8trQ_AhFawutVNe6RJpJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/7UeNMB7xJ12tY-0gOlur94nQA7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/Gf__KJ8trQ_AhFawutVNe6RJpJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.225.0/24
IPv6:
2a02:2498:3::/48
Signature Algorithm: sha256WithRSAEncryption
12:9b:3a:7d:29:7b:b8:c7:d0:7c:76:2d:aa:06:0d:1f:85:f5:
21:b6:bf:6e:10:15:61:3d:1d:5d:47:35:b9:9d:52:bb:34:58:
b4:83:55:cc:6c:1a:06:29:f7:62:88:b8:6f:d7:91:61:a7:25:
a5:75:a5:e5:95:8c:66:12:c8:61:22:ca:51:74:36:03:fc:25:
fe:61:50:a0:c2:93:49:20:66:8d:dc:0e:7b:09:a5:51:63:32:
38:68:b3:62:dc:b9:11:55:93:fe:f1:42:88:a0:cf:54:41:b6:
18:bd:19:98:49:0b:a6:94:f8:59:c7:54:52:d3:3d:12:91:e1:
b2:79:ee:c3:c9:75:dd:8f:74:26:ed:43:43:7a:34:3c:03:9d:
4c:e5:4c:f8:5f:e6:60:8c:c8:df:3b:46:f0:35:1b:9a:82:6d:
14:ce:87:6e:2b:09:cb:65:2c:7d:fa:87:fe:e8:da:95:fc:54:
54:9c:8c:8f:9e:06:4c:c9:c6:8b:4a:dd:a5:16:07:de:c8:d3:
9c:76:1a:61:b1:eb:ec:a2:9a:f7:72:a3:7d:3b:38:e3:67:e3:
13:79:17:a0:f9:9b:65:81:f2:3f:19:7e:67:91:d9:58:2c:c0:
c5:f9:08:cc:ce:71:c9:ff:b0:4b:2b:ea:48:46:ff:6a:90:a4:
d1:30:a8:cd
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECHdkajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
OWZmZmYyODlmMmRhZDBmYzA4NDU2YjBiYWQ1NGQ3YmE0NDlhNDkyMB4XDTIyMDEw
MTE1NTYzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWQ0NzhkMzAxZWYx
Mjc1ZGFkNjNlZDIwM2E1YmFiZjc4OWQwMDNiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALoer9EN4HjtcOfmtZqh9fH5Q6EKi6ggXwaD4m7AeX4c807k
ImHaAMYp7j0MRxJ0xaUsDrRtjTKdvc/sZBZV5I4t3HMOr9SUXPQ9AOPOA02UngFe
bS/UtkgS+XaWo8HQmSzK3h4e3/EiIDmCN1w7eTpQj6d36+v0XZYIv+tqah3J/PbA
0xlhe5J/q/az7rs6vNe5fw/Y64woZaZTaTXvz2DDzeuec+LYyTMsq3DhT/n6m3wW
lfXfbnbbx4SvmzfFvo8zyiqnxnIl0S2mY2tN5GIWnFI1EoVNWDP/XSHYtQD/u2vT
wigiVWWu/SDTDZuzaapSEbI1gxYt2nev6e/BXJ8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBTtR40wHvEnXa1j7SA6W6v3idADuDAfBgNVHSMEGDAWgBQZ//8ony2tD8CE
VrC61U17pEmkkjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dmX19LSjh0clFfQWhGYXd1dFZOZTZSSnBKSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDQvYzExYzg3LWVmYmItNDVlOC05YjAzLWQ1MjU3MThhYTQ0YS8x
LzdVZU5NQjd4SjEydFktMGdPbHVyOTRuUUE3Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQv
YzExYzg3LWVmYmItNDVlOC05YjAzLWQ1MjU3MThhYTQ0YS8xL0dmX19LSjh0clFf
QWhGYXd1dFZOZTZSSnBKSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAB8Y4TAPBAIAAjAJAwcAKgIkmAAD
MA0GCSqGSIb3DQEBCwUAA4IBAQASmzp9KXu4x9B8di2qBg0fhfUhtr9uEBVhPR1d
RzW5nVK7NFi0g1XMbBoGKfdiiLhv15FhpyWldaXllYxmEshhIspRdDYD/CX+YVCg
wpNJIGaN3A57CaVRYzI4aLNi3LkRVZP+8UKIoM9UQbYYvRmYSQumlPhZx1RS0z0S
keGyee7DyXXdj3Qm7UNDejQ8A51M5Uz4X+ZgjMjfO0bwNRuagm0UzoduKwnLZSx9
+of+6NqV/FRUnIyPngZMycaLSt2lFgfeyNOcdhphsevsopr3cqN9OzjjZ+MTeReg
+ZtlgfI/GX5nkdlYLMDF+QjMznHJ/7BLK+pIRv9qkKTRMKjN
-----END CERTIFICATE-----
Generated at Mon Apr 7 21:14:30 2025 by rpki-client