Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/gNhmqbz1AaSIWh59SxQNfa_GWqs.roa
File: gNhmqbz1AaSIWh59SxQNfa_GWqs.roa (raw, json)
Hash identifier: 2/kOW89jCb2aHSkF6XhKKmkYVD9obkwv6wj7Px/Cl+E=
Subject key identifier: 80:D8:66:A9:BC:F5:01:A4:88:5A:1E:7D:4B:14:0D:7D:AF:C6:5A:AB
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 101FD1D4
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/gNhmqbz1AaSIWh59SxQNfa_GWqs.roa
Signing time: Thu 10 Mar 2022 21:27:26 +0000
ROA not before: Thu 10 Mar 2022 21:27:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 185.200.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270520788 (0x101fd1d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Mar 10 21:27:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80d866a9bcf501a4885a1e7d4b140d7dafc65aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1a:d9:3e:70:e6:c7:30:c5:89:c7:09:8c:af:
52:45:29:17:d5:13:69:e9:de:47:74:31:34:59:6b:
7f:0d:c4:05:b7:3f:25:90:bb:5c:72:4d:0a:51:95:
da:a7:d2:0f:0f:3d:08:14:70:7a:85:dc:cc:31:63:
37:32:dd:4c:ed:ab:3c:44:4b:05:d5:f9:ce:21:06:
c5:7b:7b:bb:80:11:5a:1b:76:a0:57:34:d1:f6:5d:
5c:e2:16:61:b4:ed:d7:28:b5:5e:77:b9:f8:47:f5:
08:88:a1:8e:61:5c:82:b5:50:95:62:ea:da:3f:8c:
24:e3:f4:6a:6c:81:ff:6f:20:a0:0a:28:26:c0:c6:
b2:1d:d8:d2:c2:f4:82:85:1d:e6:48:0e:00:f3:8c:
38:8c:75:2e:63:bd:94:59:56:ed:76:03:6d:95:ea:
1e:2b:03:88:98:1d:84:a3:06:2f:20:cb:14:1b:13:
08:c8:70:e3:4c:c7:3d:df:75:6d:7a:a4:93:1d:76:
bf:65:f8:37:96:bf:d8:cf:9f:ad:ac:1b:7c:3f:12:
09:61:b6:9a:57:a1:9a:7d:d7:b1:e7:01:67:69:e8:
d9:fb:cf:4d:6d:03:26:70:46:2d:c9:93:d9:a4:72:
65:6d:95:ce:fa:53:bd:95:7c:99:5a:d2:e1:d2:92:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:D8:66:A9:BC:F5:01:A4:88:5A:1E:7D:4B:14:0D:7D:AF:C6:5A:AB
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/gNhmqbz1AaSIWh59SxQNfa_GWqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.244.0/24
Signature Algorithm: sha256WithRSAEncryption
27:c6:c7:50:7c:a7:f1:9f:36:29:77:e2:1e:d7:b2:af:f5:20:
5a:f9:20:0d:4f:db:38:4d:2c:f3:be:b7:06:58:f0:2e:c9:f2:
6a:ee:c2:ee:96:43:a1:6e:96:4e:40:25:6e:88:34:ee:20:4e:
17:5d:12:b0:06:3d:86:79:3d:c2:7f:20:5f:a1:03:2e:d7:fd:
73:5c:48:25:a6:bb:a8:3c:4b:bf:1b:7d:c0:54:f3:fb:ab:0e:
2d:56:37:bd:4d:0b:87:41:0b:bc:bc:63:f8:af:ec:ab:9d:df:
0c:97:66:ea:d7:8d:69:51:8f:35:d1:ca:f2:0f:20:bd:cc:e2:
a8:b6:5a:05:e7:e2:24:b1:ef:72:56:c9:1d:a1:41:63:e8:fe:
a3:18:1e:ad:e2:65:4e:f9:41:78:5c:77:bf:ec:b5:df:16:d9:
65:39:04:02:1c:3c:0b:96:ad:0e:40:00:1c:86:bc:6d:24:91:
32:dd:b4:66:75:0f:b5:5b:4a:32:8d:13:08:61:53:36:bc:52:
e1:f4:6b:02:a1:06:5f:05:50:74:62:95:df:07:16:0c:13:2f:
01:c8:ef:21:45:81:3e:6a:ca:1b:da:69:a0:03:04:f5:13:8e:
fa:1a:e3:54:6e:bc:4d:77:58:42:43:3d:cc:ae:13:1b:8a:f5:
b1:50:70:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEB/R1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZGRlNGIzYjgyZjIwOWI3MDFhZTM0MGNmNTNiOTc0MDc4ZjE2YTlmMB4XDTIyMDMx
MDIxMjcyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODBkODY2YTliY2Y1
MDFhNDg4NWExZTdkNGIxNDBkN2RhZmM2NWFhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALka2T5w5scwxYnHCYyvUkUpF9UTaeneR3QxNFlrfw3EBbc/
JZC7XHJNClGV2qfSDw89CBRweoXczDFjNzLdTO2rPERLBdX5ziEGxXt7u4ARWht2
oFc00fZdXOIWYbTt1yi1Xne5+Ef1CIihjmFcgrVQlWLq2j+MJOP0amyB/28goAoo
JsDGsh3Y0sL0goUd5kgOAPOMOIx1LmO9lFlW7XYDbZXqHisDiJgdhKMGLyDLFBsT
CMhw40zHPd91bXqkkx12v2X4N5a/2M+frawbfD8SCWG2mlehmn3XsecBZ2no2fvP
TW0DJnBGLcmT2aRyZW2VzvpTvZV8mVrS4dKSt9sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSA2GapvPUBpIhaHn1LFA19r8ZaqzAfBgNVHSMEGDAWgBRd3ks7gvIJtwGu
NAz1O5dAePFqnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hkNUxPNEx5Q2JjQnJqUU05VHVYUUhqeGFwOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvMDJiZGYwLWJmMjktNGRhZS1iMTliLTg2YTU1MThlMmQ1Mi8x
L2dOaG1xYnoxQWFTSVdoNTlTeFFOZmFfR1dxcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
MDJiZGYwLWJmMjktNGRhZS1iMTliLTg2YTU1MThlMmQ1Mi8xL1hkNUxPNEx5Q2Jj
QnJqUU05VHVYUUhqeGFwOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnI9DANBgkqhkiG9w0BAQsFAAOC
AQEAJ8bHUHyn8Z82KXfiHteyr/UgWvkgDU/bOE0s8763BljwLsnyau7C7pZDoW6W
TkAlbog07iBOF10SsAY9hnk9wn8gX6EDLtf9c1xIJaa7qDxLvxt9wFTz+6sOLVY3
vU0Lh0ELvLxj+K/sq53fDJdm6teNaVGPNdHK8g8gvcziqLZaBefiJLHvclbJHaFB
Y+j+oxgereJlTvlBeFx3v+y13xbZZTkEAhw8C5atDkAAHIa8bSSRMt20ZnUPtVtK
Mo0TCGFTNrxS4fRrAqEGXwVQdGKV3wcWDBMvAcjvIUWBPmrKG9ppoAME9ROO+hrj
VG68TXdYQkM9zK4TG4r1sVBwzg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:29 2024 by rpki-client on console-ams.rpki-client.org