Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/gPR4_LzP9gRNRtrRidaWrnPH67E.roa
File: gPR4_LzP9gRNRtrRidaWrnPH67E.roa (raw, json)
Hash identifier: 0Z2OWGap0q5UxXdIGwGL68w12d204NpiAUFThn3LzOc=
Subject key identifier: 80:F4:78:FC:BC:CF:F6:04:4D:46:DA:D1:89:D6:96:AE:73:C7:EB:B1
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 0183169C96D1E4ACCC59DF51983F00E92EA4
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/gPR4_LzP9gRNRtrRidaWrnPH67E.roa
Signing time: Wed 07 Sep 2022 06:21:44 +0000
ROA not before: Wed 07 Sep 2022 06:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12826
IP address blocks: 194.250.211.0/24 maxlen: 24
81.80.237.0/24 maxlen: 24
195.101.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:16:9c:96:d1:e4:ac:cc:59:df:51:98:3f:00:e9:2e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Sep 7 06:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80f478fcbccff6044d46dad189d696ae73c7ebb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:65:dd:c8:e3:f4:03:36:3e:62:06:b9:95:10:
05:5c:58:68:4c:bc:93:3f:67:12:9b:31:2c:97:13:
91:bc:94:8f:6e:4d:2b:e5:5d:a1:2a:68:a1:67:89:
91:df:96:9a:54:af:1e:30:16:96:5c:b5:60:07:51:
9d:fd:28:93:a0:c1:52:f4:c7:47:72:85:bc:f3:56:
a2:33:eb:05:a6:75:f9:7c:5b:29:07:13:e9:13:c0:
2d:a2:4b:67:ad:24:7f:16:c8:a7:92:31:0c:69:b4:
31:b6:85:c4:26:36:04:0b:6c:27:f9:93:ef:73:76:
02:71:a8:58:92:93:62:29:f3:fa:9f:df:d1:2a:bf:
71:01:33:75:10:36:38:72:c3:0e:6a:50:b1:5a:48:
ad:fb:8d:af:90:04:78:02:d6:e3:69:86:cb:48:0f:
9a:bb:60:0d:ba:1e:44:e9:5d:2d:7e:17:d7:fe:31:
48:56:f9:71:28:c2:30:7b:7a:a3:10:86:f6:2a:5d:
55:e0:29:86:bd:8e:3a:c7:b7:8d:a4:60:85:29:bb:
e6:f3:af:f7:58:ef:6a:58:17:5e:41:d8:97:b4:d5:
58:ad:9f:eb:b7:09:aa:93:12:9b:8a:50:38:ae:c7:
a7:ef:4a:87:22:57:7d:dd:7f:a5:da:e9:99:7e:f3:
41:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F4:78:FC:BC:CF:F6:04:4D:46:DA:D1:89:D6:96:AE:73:C7:EB:B1
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/gPR4_LzP9gRNRtrRidaWrnPH67E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.80.237.0/24
194.250.211.0/24
195.101.158.0/24
Signature Algorithm: sha256WithRSAEncryption
65:f4:36:37:fe:c5:27:63:15:aa:a2:bb:83:b8:4c:a9:1c:ba:
eb:2f:3c:e4:36:c1:5d:51:d7:a4:c2:7b:84:3e:b7:17:cf:8e:
37:14:75:fb:67:85:49:6a:bb:b4:ca:e5:6a:63:dd:82:a5:cb:
6e:d2:17:23:e9:22:83:74:0c:42:7d:2d:ee:80:d2:0c:04:60:
1b:e3:ac:15:f6:38:85:88:27:50:26:6c:f7:97:8b:ef:94:c6:
a2:45:81:ea:d2:9d:b6:84:30:e4:9d:6a:96:f9:f8:90:18:8b:
64:7a:82:83:8f:7c:e9:a7:a8:ea:3a:52:0c:c8:f4:07:aa:cd:
9f:c2:cb:cf:54:a8:35:6f:72:76:81:d0:3d:ee:a8:fb:22:65:
f2:50:3d:82:06:66:4d:a7:7d:ea:99:64:32:d4:0d:bf:a6:3b:
d9:f2:b0:6d:55:01:0b:78:62:9a:c1:c3:41:9a:2a:66:34:b1:
45:eb:6b:3e:9f:fb:fb:6e:7b:21:20:87:d6:dc:6f:0f:bf:48:
03:78:49:3a:a4:b2:b0:cd:7a:00:bc:76:f8:f3:63:77:21:5f:
a3:83:71:3d:b8:5a:e2:09:72:ca:29:89:ab:fc:7f:ad:49:e7:
78:79:90:f3:29:15:b8:4d:75:fc:27:c2:79:af:f4:e2:06:7c:
0d:eb:d7:46
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYMWnJbR5KzMWd9RmD8A6S6kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh
MTA1MTEwHhcNMjIwOTA3MDYyMTQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGY0NzhmY2JjY2ZmNjA0NGQ0NmRhZDE4OWQ2OTZhZTczYzdlYmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5WXdyOP0AzY+Yga5lRAFXFhoTLyT
P2cSmzEslxORvJSPbk0r5V2hKmihZ4mR35aaVK8eMBaWXLVgB1Gd/SiToMFS9MdH
coW881aiM+sFpnX5fFspBxPpE8AtoktnrSR/FsinkjEMabQxtoXEJjYEC2wn+ZPv
c3YCcahYkpNiKfP6n9/RKr9xATN1EDY4csMOalCxWkit+42vkAR4AtbjaYbLSA+a
u2ANuh5E6V0tfhfX/jFIVvlxKMIwe3qjEIb2Kl1V4CmGvY46x7eNpGCFKbvm86/3
WO9qWBdeQdiXtNVYrZ/rtwmqkxKbilA4rsen70qHIld93X+l2umZfvNBEwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFID0ePy8z/YETUba0YnWlq5zx+uxMB8GA1UdIwQY
MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt
NDU5MzVmNTA2YTEyLzEvZ1BSNF9MelA5Z1JOUnRyUmlkYVdyblBINjdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy
LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUVDtAwQA
wvrTAwQAw2WeMA0GCSqGSIb3DQEBCwUAA4IBAQBl9DY3/sUnYxWqoruDuEypHLrr
LzzkNsFdUdekwnuEPrcXz443FHX7Z4VJaru0yuVqY92Cpctu0hcj6SKDdAxCfS3u
gNIMBGAb46wV9jiFiCdQJmz3l4vvlMaiRYHq0p22hDDknWqW+fiQGItkeoKDj3zp
p6jqOlIMyPQHqs2fwsvPVKg1b3J2gdA97qj7ImXyUD2CBmZNp33qmWQy1A2/pjvZ
8rBtVQELeGKawcNBmipmNLFF62s+n/v7bnshIIfW3G8Pv0gDeEk6pLKwzXoAvHb4
82N3IV+jg3E9uFriCXLKKYmr/H+tSed4eZDzKRW4TXX8J8J5r/TiBnwN69dG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org