Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ACMPYZDOiDAfhKJsAKLQz71ICC0.roa
File: ACMPYZDOiDAfhKJsAKLQz71ICC0.roa (raw, json)
Hash identifier: lVWqnRb0ugy6LIzHfOikLoSxigmPotmdZiS4rVlYgO4=
Subject key identifier: 00:23:0F:61:90:CE:88:30:1F:84:A2:6C:00:A2:D0:CF:BD:48:08:2D
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 07F6ACC9
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ACMPYZDOiDAfhKJsAKLQz71ICC0.roa
Signing time: Wed 18 May 2022 09:38:17 +0000
ROA not before: Wed 18 May 2022 09:38:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 31.170.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133606601 (0x7f6acc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: May 18 09:38:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00230f6190ce88301f84a26c00a2d0cfbd48082d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:58:55:8f:42:eb:25:22:3f:99:2a:ad:bd:3f:
f2:2f:a0:8d:3c:5a:12:e7:fd:7c:0b:26:bc:79:7e:
8d:36:f5:78:5e:ec:5d:2d:9e:6b:a1:7e:27:3c:0c:
dc:7e:29:6e:9e:c0:5d:7c:1b:13:52:17:79:f6:0d:
ad:bf:a4:28:4e:12:da:c6:58:7f:9c:2a:df:63:82:
f6:e4:fa:36:ba:32:38:6c:58:ac:87:bd:d7:47:0a:
33:1c:5b:3c:15:cd:c3:86:d1:3f:95:b8:72:44:ff:
22:c4:52:0f:1c:0a:e8:4c:c3:36:e7:b7:44:0f:41:
3a:43:21:e4:92:ed:c0:9d:e8:99:f3:a8:af:65:21:
71:fc:3a:f0:a0:06:fa:82:f0:a3:28:f0:0b:69:d9:
50:fe:aa:49:10:00:35:f3:48:12:80:36:3f:eb:60:
34:9c:fe:8f:9f:e3:17:71:99:70:94:e2:12:99:dc:
fb:4c:79:ff:a0:c8:07:12:c0:b2:01:29:ba:58:72:
ee:30:df:0b:f2:8d:27:da:21:d6:f5:da:b7:3d:df:
a9:dd:00:2b:d8:30:65:fa:b7:25:76:42:5d:0a:47:
da:a6:7e:f0:84:fa:e7:78:bb:49:4d:01:b2:80:10:
4b:cd:ac:b6:23:30:0f:a7:10:ba:de:67:0f:d8:bd:
aa:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:23:0F:61:90:CE:88:30:1F:84:A2:6C:00:A2:D0:CF:BD:48:08:2D
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ACMPYZDOiDAfhKJsAKLQz71ICC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ad:bd:b2:4a:2d:72:70:ab:ac:8e:fa:dd:08:05:d9:49:0b:
de:59:ff:b4:90:4e:ca:c5:d3:88:52:43:89:08:4b:c4:33:71:
eb:77:6b:f1:3f:db:20:53:67:02:df:3f:bb:aa:e0:f0:48:2c:
8b:54:a6:df:58:11:1a:ab:69:5d:24:8b:c8:88:0c:7d:11:e4:
31:d8:89:68:e5:77:43:ab:08:58:4e:d4:2a:20:72:e8:c8:c0:
d5:00:fc:e5:dd:87:13:5f:c8:7f:9a:f2:d0:7a:1a:23:ab:c1:
a6:46:45:3b:e4:bd:a4:22:cd:2f:35:f5:0e:44:5f:4b:d0:c2:
28:f7:ff:02:fa:54:32:bf:e2:9e:a4:97:55:b7:f3:20:88:0f:
97:6f:13:e5:53:a4:e2:ef:c6:d3:b6:3a:ad:41:9a:4b:cf:18:
07:b5:74:25:90:50:36:84:a4:5a:79:e6:32:3d:a8:7e:29:82:
d1:6e:69:59:d5:03:2e:09:9f:80:d0:51:cf:01:30:8c:d4:fa:
e9:97:7b:0d:a2:af:7b:16:4f:ac:81:9e:4f:e7:79:eb:51:30:
a1:7e:47:f4:75:b3:86:9f:97:76:2e:b9:14:c0:e6:14:cd:d2:
cc:e1:74:fd:63:02:18:f9:18:43:7f:24:2b:6f:2c:82:91:0c:
cc:6e:d8:9c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/asyTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NjA0NzVlYmU3ZjA3ZDc0MTUzY2IxY2NhMzM4YzE2ZDgwMWY0NWY3MB4XDTIyMDUx
ODA5MzgxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDAyMzBmNjE5MGNl
ODgzMDFmODRhMjZjMDBhMmQwY2ZiZDQ4MDgyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJhYVY9C6yUiP5kqrb0/8i+gjTxaEuf9fAsmvHl+jTb1eF7s
XS2ea6F+JzwM3H4pbp7AXXwbE1IXefYNrb+kKE4S2sZYf5wq32OC9uT6NroyOGxY
rIe910cKMxxbPBXNw4bRP5W4ckT/IsRSDxwK6EzDNue3RA9BOkMh5JLtwJ3omfOo
r2Uhcfw68KAG+oLwoyjwC2nZUP6qSRAANfNIEoA2P+tgNJz+j5/jF3GZcJTiEpnc
+0x5/6DIBxLAsgEpulhy7jDfC/KNJ9oh1vXatz3fqd0AK9gwZfq3JXZCXQpH2qZ+
8IT653i7SU0BsoAQS82stiMwD6cQut5nD9i9qvMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQAIw9hkM6IMB+EomwAotDPvUgILTAfBgNVHSMEGDAWgBTWBHXr5/B9dBU8
scyjOMFtgB9F9zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFnUjE2LWZ3ZlhRVlBMSE1vempCYllBZlJmYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjgvNTJlYmFlLWUwMDYtNDc3OC1hYzNjLTQ5NmY4ZWJiMmQ2MS8x
L0FDTVBZWkRPaURBZmhLSnNBS0xRejcxSUNDMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjgv
NTJlYmFlLWUwMDYtNDc3OC1hYzNjLTQ5NmY4ZWJiMmQ2MS8xLzFnUjE2LWZ3ZlhR
VlBMSE1vempCYllBZlJmYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+qNzANBgkqhkiG9w0BAQsFAAOC
AQEAO629skotcnCrrI763QgF2UkL3ln/tJBOysXTiFJDiQhLxDNx63dr8T/bIFNn
At8/u6rg8Egsi1Sm31gRGqtpXSSLyIgMfRHkMdiJaOV3Q6sIWE7UKiBy6MjA1QD8
5d2HE1/If5ry0HoaI6vBpkZFO+S9pCLNLzX1DkRfS9DCKPf/AvpUMr/inqSXVbfz
IIgPl28T5VOk4u/G07Y6rUGaS88YB7V0JZBQNoSkWnnmMj2ofimC0W5pWdUDLgmf
gNBRzwEwjNT66Zd7DaKvexZPrIGeT+d561EwoX5H9HWzhp+Xdi65FMDmFM3SzOF0
/WMCGPkYQ38kK28sgpEMzG7YnA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net