Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/E3EeFnjw_QRufsTlJeKs5hynfz8.roa
File: E3EeFnjw_QRufsTlJeKs5hynfz8.roa (raw, json)
Hash identifier: CAL/NP2STrKgfk7hxiJDEH8RpAEvLa6JEaGp8t5vLXc=
Subject key identifier: 13:71:1E:16:78:F0:FD:04:6E:7E:C4:E5:25:E2:AC:E6:1C:A7:7F:3F
Certificate issuer: /CN=c722ad43471b606bcc853bba11b8ed663c151882
Certificate serial: 09668D
Authority key identifier: C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/E3EeFnjw_QRufsTlJeKs5hynfz8.roa
Signing time: Thu 28 Apr 2022 09:24:34 +0000
ROA not before: Thu 28 Apr 2022 09:24:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197617
IP address blocks: 31.24.70.0/24 maxlen: 24
185.61.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 616077 (0x9668d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c722ad43471b606bcc853bba11b8ed663c151882
Validity
Not Before: Apr 28 09:24:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13711e1678f0fd046e7ec4e525e2ace61ca77f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:d5:80:66:20:e9:30:14:ce:af:62:19:de:1a:
00:06:ea:13:e8:12:af:ed:23:f0:2e:95:ae:5d:ee:
55:f7:7b:fe:df:3d:7d:fa:9f:e8:08:b3:54:8f:25:
45:7f:ac:35:89:61:bb:e8:b2:44:b2:92:23:2b:be:
54:a6:9c:c1:c3:91:82:5f:84:76:e5:a1:7b:bb:c5:
38:13:94:96:0f:06:5f:1b:cc:07:f9:90:ae:85:54:
17:1a:a9:fe:c2:7c:9b:98:cb:8e:60:72:87:9a:82:
cd:a9:b3:8b:59:df:9e:05:46:7c:51:01:65:06:c7:
33:5e:4c:2e:48:69:c6:e0:ff:5e:41:35:64:e2:c3:
4e:97:57:fe:ac:e2:22:be:78:c7:3b:ec:fa:2d:96:
41:b4:80:e4:32:6a:45:4b:0b:5b:7d:5d:c8:79:b2:
20:ef:ed:7e:60:3d:e0:dd:8b:0a:32:85:b7:01:18:
e2:b0:84:4d:92:74:d8:48:83:50:ee:1a:61:32:00:
c0:4c:17:50:18:04:cd:60:64:66:fd:f3:64:73:d5:
45:7a:46:42:7c:24:8e:26:eb:5b:cd:d8:e3:b1:39:
19:7f:51:27:57:c8:67:d1:a0:ba:38:ac:b3:a9:62:
48:65:71:10:df:93:a3:aa:6d:95:96:ca:af:3e:70:
23:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:71:1E:16:78:F0:FD:04:6E:7E:C4:E5:25:E2:AC:E6:1C:A7:7F:3F
X509v3 Authority Key Identifier:
keyid:C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/E3EeFnjw_QRufsTlJeKs5hynfz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.70.0/24
185.61.108.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:a3:9a:40:52:37:56:29:03:c8:96:e4:22:ea:b5:94:d5:56:
a1:1e:e9:ab:fb:ed:13:82:48:1c:b2:4a:90:84:d1:7c:98:45:
43:47:59:59:84:b0:30:af:cf:10:c3:79:a0:d2:a3:0a:bb:2e:
62:33:48:66:27:97:96:01:7e:3a:b9:a0:7b:86:77:df:10:d7:
a3:86:3a:f6:cb:15:d8:40:21:bc:78:ff:9d:19:ac:91:3a:7e:
70:3f:61:6d:c0:fa:d9:91:bc:17:d8:99:58:5e:f8:c8:a3:db:
d8:1b:4b:ff:9c:73:b4:e5:e7:74:24:92:28:c6:18:7c:3d:cd:
34:b9:1d:c5:21:1b:82:20:fb:4f:a0:d2:d1:6a:c0:03:b7:9e:
04:c8:de:dd:6f:f5:9e:f8:7a:3a:f9:c2:b8:7e:3a:51:44:d0:
d3:ba:9e:eb:6d:90:2c:66:4b:ce:8e:1d:a0:53:d8:c7:9c:6e:
07:b0:c5:86:d0:66:9d:07:17:f6:9e:cb:06:2f:a9:26:00:9a:
d2:87:d4:e6:f8:ad:f8:aa:8b:2b:67:be:46:bf:d3:f2:e6:5b:
d2:71:e7:4b:15:b9:5d:0f:bb:c3:e2:d9:23:f3:62:64:39:ef:
2d:4a:1a:e7:36:55:e1:17:fc:e4:42:3c:e3:62:4e:7b:59:e3:
94:1a:39:f8
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDCWaNMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGM3
MjJhZDQzNDcxYjYwNmJjYzg1M2JiYTExYjhlZDY2M2MxNTE4ODIwHhcNMjIwNDI4
MDkyNDM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxMzcxMWUxNjc4ZjBm
ZDA0NmU3ZWM0ZTUyNWUyYWNlNjFjYTc3ZjNmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA9dWAZiDpMBTOr2IZ3hoABuoT6BKv7SPwLpWuXe5V93v+3z19
+p/oCLNUjyVFf6w1iWG76LJEspIjK75UppzBw5GCX4R25aF7u8U4E5SWDwZfG8wH
+ZCuhVQXGqn+wnybmMuOYHKHmoLNqbOLWd+eBUZ8UQFlBsczXkwuSGnG4P9eQTVk
4sNOl1f+rOIivnjHO+z6LZZBtIDkMmpFSwtbfV3IebIg7+1+YD3g3YsKMoW3ARji
sIRNknTYSINQ7hphMgDATBdQGATNYGRm/fNkc9VFekZCfCSOJutbzdjjsTkZf1En
V8hn0aC6OKyzqWJIZXEQ35Ojqm2VlsqvPnAjfQIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFBNxHhZ48P0Ebn7E5SXirOYcp38/MB8GA1UdIwQYMBaAFMcirUNHG2BrzIU7
uhG47WY8FRiCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
eHlLdFEwY2JZR3ZNaFR1NkVianRaandWR0lJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lZS9kM2EwYjEtMDhhMC00NGRkLTg3NzQtMDY2ZmZlZmQwY2FiLzEv
RTNFZUZuandfUVJ1ZnNUbEplS3M1aHluZno4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9k
M2EwYjEtMDhhMC00NGRkLTg3NzQtMDY2ZmZlZmQwY2FiLzEveHlLdFEwY2JZR3ZN
aFR1NkVianRaandWR0lJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHxhGAwQCuT1sMA0GCSqGSIb3DQEB
CwUAA4IBAQDOo5pAUjdWKQPIluQi6rWU1VahHumr++0TgkgcskqQhNF8mEVDR1lZ
hLAwr88Qw3mg0qMKuy5iM0hmJ5eWAX46uaB7hnffENejhjr2yxXYQCG8eP+dGayR
On5wP2FtwPrZkbwX2JlYXvjIo9vYG0v/nHO05ed0JJIoxhh8Pc00uR3FIRuCIPtP
oNLRasADt54EyN7db/We+Ho6+cK4fjpRRNDTup7rbZAsZkvOjh2gU9jHnG4HsMWG
0GadBxf2nssGL6kmAJrSh9Tm+K34qosrZ75Gv9Py5lvScedLFbldD7vD4tkj82Jk
Oe8tShrnNlXhF/zkQjzjYk57WeOUGjn4
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:32 2025 by rpki-client