Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/Gbcvces3XAHurZUcTRRUj4Ppvo8.roa
File: Gbcvces3XAHurZUcTRRUj4Ppvo8.roa (raw, json)
Hash identifier: KoOzV0Y/ODKsPryzPSw+FVuRI32jAyEMf5kuJua7Kbw=
Subject key identifier: 19:B7:2F:71:EB:37:5C:01:EE:AD:95:1C:4D:14:54:8F:83:E9:BE:8F
Certificate issuer: /CN=2cda5f03eaf513a77f2ec20de5bb1672c5d279ab
Certificate serial: 13FB2B10
Authority key identifier: 2C:DA:5F:03:EA:F5:13:A7:7F:2E:C2:0D:E5:BB:16:72:C5:D2:79:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNpfA-r1E6d_LsIN5bsWcsXSeas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/Gbcvces3XAHurZUcTRRUj4Ppvo8.roa
Signing time: Sat 01 Jan 2022 09:54:30 +0000
ROA not before: Sat 01 Jan 2022 09:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56532
IP address blocks: 91.224.226.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335227664 (0x13fb2b10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cda5f03eaf513a77f2ec20de5bb1672c5d279ab
Validity
Not Before: Jan 1 09:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19b72f71eb375c01eead951c4d14548f83e9be8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:79:d8:1c:01:9a:f8:f4:c8:e8:a4:c0:38:8c:
70:06:11:c4:e9:31:48:70:fb:98:78:69:a9:17:58:
b5:a3:a9:f6:79:6e:a8:0d:37:1d:8c:42:5a:2b:6a:
12:48:a7:bf:03:cf:bf:fc:14:80:9d:e4:55:13:e0:
56:97:34:60:90:91:07:c0:b7:08:94:e8:59:e4:83:
2a:dd:03:89:bd:d7:68:09:83:29:45:a5:ba:fd:3d:
f5:16:26:6e:93:56:70:06:39:18:2b:8a:88:39:11:
87:91:95:9a:c2:f7:84:4f:e8:33:81:b0:87:e5:f6:
ec:41:d9:3b:d6:c4:ad:ac:b6:ea:b5:f3:a5:ad:f5:
41:ea:ab:23:8e:2e:a1:88:b7:de:48:17:30:8d:fd:
76:4c:c4:56:4c:91:76:41:da:19:39:d3:bf:72:3b:
0a:2d:a1:d1:e8:34:ec:5c:48:60:0f:55:6d:b4:31:
f2:0d:37:52:71:20:49:d6:45:c7:b4:95:87:fc:4c:
4d:11:db:cb:24:a1:f3:29:dd:21:42:71:b7:96:c3:
77:e1:9a:12:8b:03:0c:d2:48:7c:44:43:f0:f7:ee:
04:ec:5d:d5:32:39:fe:f5:8c:b6:5c:14:41:48:1a:
6b:8a:d4:ac:dc:d7:f4:50:ef:b5:16:71:86:9e:e9:
d3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B7:2F:71:EB:37:5C:01:EE:AD:95:1C:4D:14:54:8F:83:E9:BE:8F
X509v3 Authority Key Identifier:
keyid:2C:DA:5F:03:EA:F5:13:A7:7F:2E:C2:0D:E5:BB:16:72:C5:D2:79:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNpfA-r1E6d_LsIN5bsWcsXSeas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/Gbcvces3XAHurZUcTRRUj4Ppvo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3838c4-6e46-49a8-8c14-ae8b8d788700/1/LNpfA-r1E6d_LsIN5bsWcsXSeas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.226.0/23
Signature Algorithm: sha256WithRSAEncryption
23:9c:b9:1f:72:88:8d:1b:8d:a8:a3:31:fa:ad:a5:37:7d:ea:
a0:c0:b9:17:1b:cd:0b:66:55:a7:79:94:89:51:f2:17:93:0d:
37:18:48:53:b8:61:bb:89:fa:f7:f7:6c:56:07:fe:e5:10:11:
72:e6:b9:db:40:61:2b:6f:fa:e2:d8:4e:72:20:e4:52:0d:70:
63:8e:f0:33:da:ca:ca:ad:37:75:e2:13:fb:cd:f4:f1:75:b2:
c3:53:30:61:94:0b:9a:02:95:e3:03:76:04:ce:30:dc:93:82:
b5:13:a1:f5:f4:8e:51:5b:bd:41:c2:5b:09:8f:3d:68:af:8a:
b3:4f:7b:32:43:29:52:d0:da:12:31:58:e6:5f:b8:c6:74:2b:
2d:26:48:66:fc:76:14:17:40:ca:0d:b7:32:f7:ac:3c:a9:ae:
b4:68:a8:a6:6e:28:05:32:0e:ba:80:21:3c:ab:d3:ac:1d:16:
6b:eb:44:45:46:84:f6:ae:85:1d:9d:f9:5e:19:d6:65:d9:e4:
fa:1b:6c:e4:87:b2:26:f2:ca:b8:99:a8:93:d3:68:a9:8f:ac:
a3:fc:77:7e:57:cd:18:58:5c:aa:ec:35:d7:2b:b8:01:f8:5c:
52:05:91:e9:c7:08:02:12:da:ef:c0:c5:79:f1:fc:23:fb:e1:
a7:5b:0d:f3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEE/srEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
Y2RhNWYwM2VhZjUxM2E3N2YyZWMyMGRlNWJiMTY3MmM1ZDI3OWFiMB4XDTIyMDEw
MTA5NTQzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTliNzJmNzFlYjM3
NWMwMWVlYWQ5NTFjNGQxNDU0OGY4M2U5YmU4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ552BwBmvj0yOikwDiMcAYRxOkxSHD7mHhpqRdYtaOp9nlu
qA03HYxCWitqEkinvwPPv/wUgJ3kVRPgVpc0YJCRB8C3CJToWeSDKt0Dib3XaAmD
KUWluv099RYmbpNWcAY5GCuKiDkRh5GVmsL3hE/oM4Gwh+X27EHZO9bEray26rXz
pa31QeqrI44uoYi33kgXMI39dkzEVkyRdkHaGTnTv3I7Ci2h0eg07FxIYA9VbbQx
8g03UnEgSdZFx7SVh/xMTRHbyySh8yndIUJxt5bDd+GaEosDDNJIfERD8PfuBOxd
1TI5/vWMtlwUQUgaa4rUrNzX9FDvtRZxhp7p0/cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQZty9x6zdcAe6tlRxNFFSPg+m+jzAfBgNVHSMEGDAWgBQs2l8D6vUTp38u
wg3luxZyxdJ5qzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xOcGZBLXIxRTZkX0xzSU41YnNXY3NYU2Vhcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvMzgzOGM0LTZlNDYtNDlhOC04YzE0LWFlOGI4ZDc4ODcwMC8x
L0diY3ZjZXMzWEFIdXJaVWNUUlJVajRQcHZvOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
MzgzOGM0LTZlNDYtNDlhOC04YzE0LWFlOGI4ZDc4ODcwMC8xL0xOcGZBLXIxRTZk
X0xzSU41YnNXY3NYU2Vhcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvg4jANBgkqhkiG9w0BAQsFAAOC
AQEAI5y5H3KIjRuNqKMx+q2lN33qoMC5FxvNC2ZVp3mUiVHyF5MNNxhIU7hhu4n6
9/dsVgf+5RARcua520BhK2/64thOciDkUg1wY47wM9rKyq03deIT+8308XWyw1Mw
YZQLmgKV4wN2BM4w3JOCtROh9fSOUVu9QcJbCY89aK+Ks097MkMpUtDaEjFY5l+4
xnQrLSZIZvx2FBdAyg23MvesPKmutGiopm4oBTIOuoAhPKvTrB0Wa+tERUaE9q6F
HZ35XhnWZdnk+hts5IeyJvLKuJmok9NoqY+so/x3flfNGFhcquw11yu4AfhcUgWR
6ccIAhLa78DFefH8I/vhp1sN8w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:03 2024 by rpki-client on console-ams.rpki-client.org