Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/Xn3iolOINRG7_I9jDz6IZVCrjhA.roa
File: Xn3iolOINRG7_I9jDz6IZVCrjhA.roa (raw, json)
Hash identifier: 30ASlIWrKXITALwR5v+eV3qkdfIo/iXPrIXBJjxJ6cA=
Subject key identifier: 5E:7D:E2:A2:53:88:35:11:BB:FC:8F:63:0F:3E:88:65:50:AB:8E:10
Certificate issuer: /CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Certificate serial: 10DB986B
Authority key identifier: 25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/Xn3iolOINRG7_I9jDz6IZVCrjhA.roa
Signing time: Thu 03 Feb 2022 10:54:01 +0000
ROA not before: Thu 03 Feb 2022 10:54:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209127
IP address blocks: 31.192.211.0/24 maxlen: 24
2a03:2100:31::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282826859 (0x10db986b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Validity
Not Before: Feb 3 10:54:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e7de2a253883511bbfc8f630f3e886550ab8e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b0:b4:3f:a9:c4:d1:fe:30:04:dd:30:87:48:
9b:d1:0e:65:fa:eb:16:48:02:7c:94:1f:4e:b1:d3:
b6:41:23:20:54:42:72:52:c2:b0:22:a1:55:8d:69:
7c:31:f9:5a:cb:51:e6:a8:79:a5:da:c3:5b:81:10:
b7:b5:77:2c:8a:5e:0b:10:b1:80:40:f2:2d:a9:be:
84:ea:94:70:2a:05:da:21:d5:41:d7:b6:f7:af:9a:
a9:9c:64:27:e3:d5:56:6d:b4:3b:5e:62:cc:ac:26:
97:13:91:6f:ab:3b:39:04:e1:ca:dc:37:ce:85:2c:
b8:67:75:97:2f:b1:4c:56:9b:8b:2d:22:ed:33:c6:
f3:3a:ab:0e:40:8a:33:a0:80:f3:b7:82:93:09:57:
f1:ef:b3:6a:79:bf:c0:78:0f:9b:ef:19:d0:a0:fd:
82:c4:25:88:db:5d:31:d0:28:9f:6c:b8:d2:c6:13:
88:13:57:39:50:e6:cc:0d:05:82:9e:f0:92:71:e9:
ad:c8:45:83:04:f6:e4:f6:57:c4:c7:95:13:a9:63:
c9:87:d5:99:97:46:10:f4:15:7c:58:cd:c7:e1:8c:
7e:e1:8e:f6:86:a7:b6:e7:a4:11:9c:7d:36:48:c6:
e2:0c:24:8d:29:68:49:37:de:3c:ee:a1:3e:40:f3:
55:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7D:E2:A2:53:88:35:11:BB:FC:8F:63:0F:3E:88:65:50:AB:8E:10
X509v3 Authority Key Identifier:
keyid:25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/Xn3iolOINRG7_I9jDz6IZVCrjhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.192.211.0/24
IPv6:
2a03:2100:31::/48
Signature Algorithm: sha256WithRSAEncryption
63:f2:13:cc:cd:54:27:3c:21:ff:b1:98:99:ee:a4:f5:64:aa:
96:d5:46:07:0d:a0:53:7d:e1:bd:30:29:b5:e5:54:93:6a:ab:
f8:6f:2c:55:c4:51:a9:0e:57:d9:44:13:fa:4d:f6:7a:4b:0c:
17:80:f0:bc:24:8e:bf:ad:fb:9f:c0:8d:07:9b:56:ac:4b:59:
06:37:4b:da:c7:a8:b3:c2:67:a3:65:50:a9:76:f2:d4:f2:29:
1d:ad:50:b4:52:3e:87:28:a9:25:66:18:b5:82:f9:ce:da:8c:
92:04:66:73:8e:88:28:c8:50:4f:88:ae:e5:9b:0e:a8:07:69:
7f:df:69:1c:f9:d2:e0:c7:b8:f1:2c:52:0d:5e:4d:c4:f7:22:
ef:c9:bd:d2:ef:bd:48:5d:c0:de:b8:bd:2f:25:a8:a6:3b:02:
ec:90:98:bd:70:0b:b1:17:ac:38:e5:75:16:3b:a7:bb:2b:85:
75:e5:22:3b:9f:37:ff:8b:8b:a1:5c:7d:03:3f:34:79:0d:c4:
66:35:5f:c6:61:98:f1:3e:3e:4b:a4:37:3c:94:d5:ad:e1:ec:
2f:3e:06:1a:83:17:cb:b0:9c:77:ce:f8:ca:54:bf:83:10:99:
0e:94:d2:52:39:65:7a:c1:84:08:e6:da:46:e8:65:4c:ce:87:
2b:40:2e:1e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEENuYazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NWU0YWVkM2VmNzJiZWUzMTQxNjYwZDExNDllMTZkMDc5MjA1ZjNjMB4XDTIyMDIw
MzEwNTQwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWU3ZGUyYTI1Mzg4
MzUxMWJiZmM4ZjYzMGYzZTg4NjU1MGFiOGUxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJqwtD+pxNH+MATdMIdIm9EOZfrrFkgCfJQfTrHTtkEjIFRC
clLCsCKhVY1pfDH5WstR5qh5pdrDW4EQt7V3LIpeCxCxgEDyLam+hOqUcCoF2iHV
Qde296+aqZxkJ+PVVm20O15izKwmlxORb6s7OQThytw3zoUsuGd1ly+xTFabiy0i
7TPG8zqrDkCKM6CA87eCkwlX8e+zanm/wHgPm+8Z0KD9gsQliNtdMdAon2y40sYT
iBNXOVDmzA0Fgp7wknHprchFgwT25PZXxMeVE6ljyYfVmZdGEPQVfFjNx+GMfuGO
9oantuekEZx9NkjG4gwkjSloSTfePO6hPkDzVe8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRefeKiU4g1Ebv8j2MPPohlUKuOEDAfBgNVHSMEGDAWgBQl5K7T73K+4xQW
YNEUnhbQeSBfPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0plU3UwLTl5dnVNVUZtRFJGSjRXMEhrZ1h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNjMzNmQwLTk0OTQtNDZkMy05ODYxLWVkM2UzOGY5NTc3Zi8x
L1huM2lvbE9JTlJHN19JOWpEejZJWlZDcmpoQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NjMzNmQwLTk0OTQtNDZkMy05ODYxLWVkM2UzOGY5NTc3Zi8xL0plU3UwLTl5dnVN
VUZtRFJGSjRXMEhrZ1h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAB/A0zAPBAIAAjAJAwcAKgMhAAAx
MA0GCSqGSIb3DQEBCwUAA4IBAQBj8hPMzVQnPCH/sZiZ7qT1ZKqW1UYHDaBTfeG9
MCm15VSTaqv4byxVxFGpDlfZRBP6TfZ6SwwXgPC8JI6/rfufwI0Hm1asS1kGN0va
x6izwmejZVCpdvLU8ikdrVC0Uj6HKKklZhi1gvnO2oySBGZzjogoyFBPiK7lmw6o
B2l/32kc+dLgx7jxLFINXk3E9yLvyb3S771IXcDeuL0vJaimOwLskJi9cAuxF6w4
5XUWO6e7K4V15SI7nzf/i4uhXH0DPzR5DcRmNV/GYZjxPj5LpDc8lNWt4ewvPgYa
gxfLsJx3zvjKVL+DEJkOlNJSOWV6wYQI5tpG6GVMzocrQC4e
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:52 2024 by rpki-client on console-fra.rpki-client.org