Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/Uuoj2zFEiGD6-jahARdC3JbRDO0.roa
File: Uuoj2zFEiGD6-jahARdC3JbRDO0.roa (raw, json)
Hash identifier: ii4+7a9LH5weyx6eh1bqb6Z7/WIMILV1iwtMcX9Kl4c=
Subject key identifier: 52:EA:23:DB:31:44:88:60:FA:FA:36:A1:01:17:42:DC:96:D1:0C:ED
Certificate issuer: /CN=4081f85602b1168925d83eb3ca61609f357956a6
Certificate serial: 01856CB83DE0B64CE56E7C91E107E00CF9B6
Authority key identifier: 40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/Uuoj2zFEiGD6-jahARdC3JbRDO0.roa
Signing time: Sun 01 Jan 2023 09:44:51 +0000
ROA not before: Sun 01 Jan 2023 09:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56749
IP address blocks: 31.130.180.0/24 maxlen: 24
31.130.183.0/24 maxlen: 24
31.130.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:3d:e0:b6:4c:e5:6e:7c:91:e1:07:e0:0c:f9:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4081f85602b1168925d83eb3ca61609f357956a6
Validity
Not Before: Jan 1 09:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ea23db31448860fafa36a1011742dc96d10ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f0:43:6b:b0:26:24:b0:ab:9b:bb:c0:c1:9c:
b4:57:22:44:92:77:7c:c7:d3:1d:a6:07:12:ab:3a:
b6:d7:bc:44:d8:50:4c:ee:1b:ca:70:cc:6a:95:7c:
88:b0:e7:a4:fa:a5:14:7c:73:24:9a:5c:d9:58:c4:
b6:d2:ba:5b:51:f1:12:95:6b:35:47:c4:b1:73:aa:
d1:7b:03:24:ec:ae:78:06:74:45:39:7b:4b:3c:b0:
83:48:e3:03:83:0a:4e:4d:d7:f1:5f:66:b3:63:f5:
7d:4c:7d:00:d1:27:82:50:2d:f1:c0:d3:60:18:9a:
40:26:bb:93:e7:10:64:2b:0a:3a:b5:6f:37:f4:82:
01:be:dc:b2:3a:95:25:ae:88:66:74:8d:b8:c3:58:
91:a9:d8:17:16:a5:c3:5a:a3:39:8d:e3:09:e0:eb:
bd:b4:81:2e:86:5d:10:6e:f8:46:ad:e7:a4:d0:a0:
04:55:ac:5c:4a:6d:5a:52:1b:03:8b:bc:85:aa:fc:
e9:a1:5f:dd:76:c8:0d:70:61:86:09:82:eb:6f:75:
da:9f:e7:2c:7f:fc:1a:ad:de:7e:6a:e7:de:cb:55:
d2:f8:31:c8:29:03:ef:a7:97:72:4a:e1:b0:cc:f8:
03:c2:bd:75:d2:67:56:39:1a:12:56:bc:76:46:51:
0b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EA:23:DB:31:44:88:60:FA:FA:36:A1:01:17:42:DC:96:D1:0C:ED
X509v3 Authority Key Identifier:
keyid:40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/Uuoj2zFEiGD6-jahARdC3JbRDO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/QIH4VgKxFokl2D6zymFgnzV5VqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.180.0/24
31.130.182.0/23
Signature Algorithm: sha256WithRSAEncryption
86:97:09:4e:96:0a:be:a9:1a:59:bf:51:42:24:3e:11:b2:61:
bf:a0:40:9a:c8:f1:43:9c:09:ff:4e:bd:98:a9:c3:a3:2b:08:
d2:5b:a4:01:ed:f2:4b:d0:02:ab:6e:12:fc:c5:66:2e:48:c2:
e0:86:64:27:9e:c1:3f:44:22:e7:f5:bf:64:b7:42:e1:f9:39:
88:61:19:8c:0d:ea:97:90:07:2c:7d:84:d2:b2:64:40:8c:70:
f2:0e:15:30:de:f7:b8:43:a0:ef:dd:a6:3c:52:92:a8:f6:bc:
a1:ec:d9:df:62:d5:46:82:df:85:55:27:45:1e:87:34:60:8a:
0b:9b:3d:72:0a:5a:f3:a9:e5:45:61:88:7f:3b:aa:be:71:64:
cc:30:c0:76:21:12:b4:80:e4:13:c7:52:1b:6f:ee:19:06:17:
07:d5:ee:c2:a9:39:2b:7a:5a:9b:00:7f:1e:39:bb:84:6e:a0:
67:14:17:0e:16:e3:7a:ee:37:29:78:d1:ab:37:69:df:5d:92:
2a:08:8e:97:f2:73:86:2c:5a:c0:38:b7:7c:74:ac:6e:8e:7c:
8f:2f:d8:f5:86:7c:9a:c2:05:77:12:30:48:27:70:0e:7a:19:
e5:48:8f:67:99:4b:95:81:e0:a7:b9:fe:15:3c:ba:44:33:46:
46:99:06:48
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVsuD3gtkzlbnyR4QfgDPm2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwODFmODU2MDJiMTE2ODkyNWQ4M2ViM2NhNjE2MDlmMzU3
OTU2YTYwHhcNMjMwMTAxMDk0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmVhMjNkYjMxNDQ4ODYwZmFmYTM2YTEwMTE3NDJkYzk2ZDEwY2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfBDa7AmJLCrm7vAwZy0VyJEknd8
x9MdpgcSqzq217xE2FBM7hvKcMxqlXyIsOek+qUUfHMkmlzZWMS20rpbUfESlWs1
R8Sxc6rRewMk7K54BnRFOXtLPLCDSOMDgwpOTdfxX2azY/V9TH0A0SeCUC3xwNNg
GJpAJruT5xBkKwo6tW839IIBvtyyOpUlrohmdI24w1iRqdgXFqXDWqM5jeMJ4Ou9
tIEuhl0QbvhGreek0KAEVaxcSm1aUhsDi7yFqvzpoV/ddsgNcGGGCYLrb3Xan+cs
f/ward5+aufey1XS+DHIKQPvp5dySuGwzPgDwr110mdWORoSVrx2RlELwwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFLqI9sxRIhg+vo2oQEXQtyW0QztMB8GA1UdIwQY
MBaAFECB+FYCsRaJJdg+s8phYJ81eVamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlINFZnS3hGb2tsMkQ2enltRmduelY1VnFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8yMmM5M2MtOTAwMC00ZTczLWExYzUt
YzAzZjNmZGRkNGFjLzEvVXVvajJ6RkVpR0Q2LWphaEFSZEMzSmJSRE8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8yMmM5M2MtOTAwMC00ZTczLWExYzUtYzAzZjNmZGRkNGFj
LzEvUUlINFZnS3hGb2tsMkQ2enltRmduelY1VnFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAH4K0AwQB
H4K2MA0GCSqGSIb3DQEBCwUAA4IBAQCGlwlOlgq+qRpZv1FCJD4RsmG/oECayPFD
nAn/Tr2YqcOjKwjSW6QB7fJL0AKrbhL8xWYuSMLghmQnnsE/RCLn9b9kt0Lh+TmI
YRmMDeqXkAcsfYTSsmRAjHDyDhUw3ve4Q6Dv3aY8UpKo9ryh7NnfYtVGgt+FVSdF
Hoc0YIoLmz1yClrzqeVFYYh/O6q+cWTMMMB2IRK0gOQTx1Ibb+4ZBhcH1e7CqTkr
elqbAH8eObuEbqBnFBcOFuN67jcpeNGrN2nfXZIqCI6X8nOGLFrAOLd8dKxujnyP
L9j1hnyawgV3EjBIJ3AOehnlSI9nmUuVgeCnuf4VPLpEM0ZGmQZI
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:42:48 2025 by rpki-client