Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/GYn2TqnjLVCOX2swSeCRbxpfwL4.roa
File: GYn2TqnjLVCOX2swSeCRbxpfwL4.roa (raw, json)
Hash identifier: NvPZWjT0t5K4R2LBElVacDwWtx4mvPZ0vdhgllNb5Sw=
Subject key identifier: 19:89:F6:4E:A9:E3:2D:50:8E:5F:6B:30:49:E0:91:6F:1A:5F:C0:BE
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 01829306A2BE2B41E508D66286A7DB360A6F
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/GYn2TqnjLVCOX2swSeCRbxpfwL4.roa
Signing time: Fri 12 Aug 2022 17:07:41 +0000
ROA not before: Fri 12 Aug 2022 17:07:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.218.18.0/24 maxlen: 24
88.218.19.0/24 maxlen: 24
193.228.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:93:06:a2:be:2b:41:e5:08:d6:62:86:a7:db:36:0a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Aug 12 17:07:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1989f64ea9e32d508e5f6b3049e0916f1a5fc0be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:65:16:67:c5:fd:f6:aa:a6:d3:24:99:e5:12:
b4:38:20:73:82:a9:2b:10:66:a3:8e:5b:ca:e3:3a:
16:52:7f:a4:48:7c:8c:cd:b3:eb:fd:50:97:e8:2e:
35:4c:2b:5f:84:7c:d9:b0:64:ce:52:60:88:a0:f7:
dd:4c:7d:1f:cf:83:2c:1c:c5:9e:89:eb:31:6b:0a:
70:66:61:4e:82:38:ac:de:eb:e6:61:ef:04:ea:e8:
03:3e:c5:1f:21:44:09:cc:58:09:96:3f:67:72:29:
56:c9:04:31:2c:3f:78:82:ea:83:1f:b4:ec:98:df:
8a:a8:5f:4e:75:be:c7:a5:0b:bd:c3:32:36:1b:36:
e3:b4:67:55:f8:03:12:78:53:21:c6:98:c3:46:69:
7d:24:7a:92:4f:3f:b4:ca:d3:87:29:1f:5e:68:18:
72:68:7a:44:91:e3:9e:16:05:ab:8d:b8:22:6d:72:
10:79:21:58:e8:66:1d:96:df:68:3c:aa:84:da:df:
46:dc:c3:8d:f9:23:97:62:41:d6:0b:18:b4:ad:2f:
48:a7:87:b7:91:6b:8b:ba:cf:9c:82:bf:cc:6d:fc:
cd:98:68:14:a0:d1:9e:68:e9:68:d4:fd:f4:0f:fd:
ad:bc:77:1d:0a:8d:b4:30:d0:d5:04:c0:57:8e:35:
67:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:89:F6:4E:A9:E3:2D:50:8E:5F:6B:30:49:E0:91:6F:1A:5F:C0:BE
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/GYn2TqnjLVCOX2swSeCRbxpfwL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.18.0/23
193.228.90.0/24
Signature Algorithm: sha256WithRSAEncryption
24:18:4e:aa:e7:aa:11:53:1e:52:e0:7c:00:e5:20:ba:39:8b:
fe:59:13:a0:5f:42:8a:0d:f3:14:d9:fb:ac:48:83:bf:e0:32:
d3:4e:ff:23:8e:59:98:a0:31:f6:b4:84:fa:e3:19:5a:6b:61:
11:0e:8c:c4:58:08:40:3d:5b:5a:3b:15:50:3a:0f:5f:a7:11:
07:c4:c2:af:24:d7:fc:fa:ce:ce:3b:fe:2c:2b:ca:61:2e:ee:
b4:6b:3d:c0:cc:49:0c:1b:4d:ec:fb:e7:83:22:28:da:fb:ce:
4d:98:f3:d6:0e:7b:00:51:44:6e:a2:f3:7e:21:ba:1a:86:00:
eb:18:f2:d4:f7:2e:70:fe:75:03:bd:4d:29:de:c4:a0:fe:c8:
8d:6f:3d:9e:3c:24:df:fd:f0:f4:14:e3:54:70:c0:8f:36:1a:
c2:be:27:93:0e:5d:cc:ef:6d:90:b0:9a:c8:75:65:10:3f:6a:
7b:1b:f0:eb:28:47:95:c4:13:ce:4a:89:81:87:81:59:cc:0a:
0c:05:05:5f:10:c6:2b:79:f8:d7:bc:f4:69:57:b4:30:ae:20:
16:37:57:c9:e2:ee:b6:d6:d4:37:b0:6a:00:6c:3c:eb:74:07:
c0:05:a6:00:b1:30:67:de:4c:25:ce:0a:67:79:d2:7e:dd:62:
75:67:ee:ba
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYKTBqK+K0HlCNZihqfbNgpvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlZTA1M2NiOWNiNGY0MWMxZTQ3NzNlN2YxNmU4NGJiNTc1
MjIwMzMwHhcNMjIwODEyMTcwNzQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTg5ZjY0ZWE5ZTMyZDUwOGU1ZjZiMzA0OWUwOTE2ZjFhNWZjMGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWUWZ8X99qqm0ySZ5RK0OCBzgqkr
EGajjlvK4zoWUn+kSHyMzbPr/VCX6C41TCtfhHzZsGTOUmCIoPfdTH0fz4MsHMWe
iesxawpwZmFOgjis3uvmYe8E6ugDPsUfIUQJzFgJlj9ncilWyQQxLD94guqDH7Ts
mN+KqF9Odb7HpQu9wzI2GzbjtGdV+AMSeFMhxpjDRml9JHqSTz+0ytOHKR9eaBhy
aHpEkeOeFgWrjbgibXIQeSFY6GYdlt9oPKqE2t9G3MON+SOXYkHWCxi0rS9Ip4e3
kWuLus+cgr/MbfzNmGgUoNGeaOlo1P30D/2tvHcdCo20MNDVBMBXjjVn+wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBmJ9k6p4y1Qjl9rMEngkW8aX8C+MB8GA1UdIwQY
MBaAFH7gU8uctPQcHkdz5/FuhLtXUiAzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYt
MThlODZmMGIxZDgxLzEvR1luMlRxbmpMVkNPWDJzd1NlQ1JieHBmd0w0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYtMThlODZmMGIxZDgx
LzEvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBWNoSAwQA
weRaMA0GCSqGSIb3DQEBCwUAA4IBAQAkGE6q56oRUx5S4HwA5SC6OYv+WROgX0KK
DfMU2fusSIO/4DLTTv8jjlmYoDH2tIT64xlaa2ERDozEWAhAPVtaOxVQOg9fpxEH
xMKvJNf8+s7OO/4sK8phLu60az3AzEkMG03s++eDIija+85NmPPWDnsAUURuovN+
IboahgDrGPLU9y5w/nUDvU0p3sSg/siNbz2ePCTf/fD0FONUcMCPNhrCvieTDl3M
722QsJrIdWUQP2p7G/DrKEeVxBPOSomBh4FZzAoMBQVfEMYrefjXvPRpV7QwriAW
N1fJ4u621tQ3sGoAbDzrdAfABaYAsTBn3kwlzgpnedJ+3WJ1Z+66
-----END CERTIFICATE-----
Generated at Mon Apr 7 04:48:02 2025 by rpki-client