Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/GpPGHO1-gVOWa95DNqTh4xi2DHY.roa
File: GpPGHO1-gVOWa95DNqTh4xi2DHY.roa (raw, json)
Hash identifier: X67ZaB1geEZFu1xxFoSfmQvy679eEwZ2UZo1hmZ8YOg=
Subject key identifier: 1A:93:C6:1C:ED:7E:81:53:96:6B:DE:43:36:A4:E1:E3:18:B6:0C:76
Certificate issuer: /CN=caaee579e013218f571386413e2c5b2bc245a836
Certificate serial: 0502A0DA
Authority key identifier: CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/GpPGHO1-gVOWa95DNqTh4xi2DHY.roa
Signing time: Wed 04 May 2022 08:54:00 +0000
ROA not before: Wed 04 May 2022 08:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208349
IP address blocks: 31.10.7.0/24 maxlen: 24
185.31.133.0/24 maxlen: 24
45.134.125.0/24 maxlen: 24
45.134.124.0/22 maxlen: 22
45.134.124.0/24 maxlen: 24
45.134.127.0/24 maxlen: 24
45.134.126.0/24 maxlen: 24
2a0e:7e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84058330 (0x502a0da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caaee579e013218f571386413e2c5b2bc245a836
Validity
Not Before: May 4 08:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a93c61ced7e8153966bde4336a4e1e318b60c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:63:7c:94:59:fc:68:63:f3:b1:32:f3:d0:07:
53:74:5a:e9:13:f0:83:92:01:f4:a9:27:3d:e0:f8:
83:ba:39:44:b6:f1:27:59:d0:35:fd:b4:ad:27:53:
e7:6d:cc:70:0f:4a:fc:2d:f8:d2:08:b0:96:60:1a:
b6:9a:09:29:9e:75:72:5f:70:07:51:27:f7:1b:47:
f5:ab:bc:31:67:72:3d:07:e0:9d:91:b5:ec:f6:99:
d8:83:49:20:47:ae:48:84:24:c5:8d:54:51:16:8e:
57:16:e8:28:81:ed:06:8b:4d:21:a2:7f:68:67:f6:
d3:72:b4:81:64:c8:b6:42:59:22:31:13:79:8b:4f:
7a:b1:d9:8b:20:8b:6b:99:c7:c0:f5:cf:d1:df:d3:
62:bd:39:03:b4:7a:8a:50:10:d2:ce:3d:c4:49:95:
24:6e:11:a4:87:22:89:61:7c:3a:5c:55:2f:59:f6:
31:b8:b6:19:5c:4e:89:45:f6:64:f8:1e:ac:a2:f5:
55:9e:3a:0e:ef:27:47:27:ff:8b:11:82:62:29:70:
89:ec:7c:02:f3:25:c9:b3:80:95:69:0f:c0:65:6d:
88:b4:86:d1:52:b3:c6:7f:f8:fa:3e:7f:71:10:f8:
a2:6c:f6:b0:3d:8e:48:b0:a9:f7:e9:e7:08:09:ae:
99:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:93:C6:1C:ED:7E:81:53:96:6B:DE:43:36:A4:E1:E3:18:B6:0C:76
X509v3 Authority Key Identifier:
keyid:CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/GpPGHO1-gVOWa95DNqTh4xi2DHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.7.0/24
45.134.124.0/22
185.31.133.0/24
IPv6:
2a0e:7e40::/29
Signature Algorithm: sha256WithRSAEncryption
2b:92:99:cf:d2:be:92:a8:34:89:8e:22:7e:ed:bb:bb:ab:f7:
9d:af:32:c2:91:1b:b3:36:67:d5:ed:ec:aa:3d:c6:a7:92:14:
b1:91:1f:fa:61:26:b3:d0:40:f0:59:67:aa:01:b6:d9:7a:c9:
f8:c5:11:47:d2:61:ae:8a:23:7a:bb:f5:a1:5d:3e:fd:c5:73:
ee:83:97:4d:8c:86:98:5b:c6:b8:c2:d8:af:46:75:45:d6:46:
17:65:d7:53:b3:af:60:e9:93:d6:ca:8e:8e:28:a8:a4:e4:e1:
01:9d:87:e5:34:16:e8:b8:4d:ba:9a:ae:2d:a6:34:25:e4:ca:
b8:b3:30:43:f1:33:77:27:0d:c4:31:8f:f2:0a:10:bc:d8:a3:
01:46:67:4f:b9:62:e6:ab:ee:36:d0:4c:c8:73:4f:b9:20:f3:
34:b0:76:7f:c9:ce:2d:cc:07:45:6b:7a:99:8c:8e:54:1e:44:
55:de:a8:69:c2:4f:5c:f7:d5:38:8f:1d:14:09:29:c7:c5:f3:
8a:8c:5a:ea:3f:27:9d:ca:1b:71:31:4f:93:e2:f6:90:f7:58:
a9:ab:d4:8f:a0:8d:67:45:a3:a4:a7:a9:92:9f:bf:57:51:2c:
7e:d5:1d:6f:dd:e7:38:b1:e1:8f:d0:2b:f8:d5:45:d4:21:ee:
ad:40:f5:2e
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEBQKg2jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YWFlZTU3OWUwMTMyMThmNTcxMzg2NDEzZTJjNWIyYmMyNDVhODM2MB4XDTIyMDUw
NDA4NTQwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWE5M2M2MWNlZDdl
ODE1Mzk2NmJkZTQzMzZhNGUxZTMxOGI2MGM3NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpjfJRZ/Ghj87Ey89AHU3Ra6RPwg5IB9KknPeD4g7o5RLbx
J1nQNf20rSdT523McA9K/C340giwlmAatpoJKZ51cl9wB1En9xtH9au8MWdyPQfg
nZG17PaZ2INJIEeuSIQkxY1UURaOVxboKIHtBotNIaJ/aGf203K0gWTItkJZIjET
eYtPerHZiyCLa5nHwPXP0d/TYr05A7R6ilAQ0s49xEmVJG4RpIciiWF8OlxVL1n2
Mbi2GVxOiUX2ZPgerKL1VZ46Du8nRyf/ixGCYilwiex8AvMlybOAlWkPwGVtiLSG
0VKzxn/4+j5/cRD4omz2sD2OSLCp9+nnCAmumdkCAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBQak8Yc7X6BU5Zr3kM2pOHjGLYMdjAfBgNVHSMEGDAWgBTKruV54BMhj1cT
hkE+LFsrwkWoNjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lxN2xlZUFUSVk5WEU0WkJQaXhiSzhKRnFEWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTgvNzU5ODc0LWU3ZjItNDVmZC04MTlkLWE1ZDExNDhmMjViZC8x
L0dwUEdITzEtZ1ZPV2E5NUROcVRoNHhpMkRIWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTgv
NzU5ODc0LWU3ZjItNDVmZC04MTlkLWE1ZDExNDhmMjViZC8xL3lxN2xlZUFUSVk5
WEU0WkJQaXhiSzhKRnFEWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEAB8KBwMEAi2GfAMEALkfhTANBAIA
AjAHAwUDKg5+QDANBgkqhkiG9w0BAQsFAAOCAQEAK5KZz9K+kqg0iY4ifu27u6v3
na8ywpEbszZn1e3sqj3Gp5IUsZEf+mEms9BA8FlnqgG22XrJ+MURR9Jhroojerv1
oV0+/cVz7oOXTYyGmFvGuMLYr0Z1RdZGF2XXU7OvYOmT1sqOjiiopOThAZ2H5TQW
6LhNupquLaY0JeTKuLMwQ/EzdycNxDGP8goQvNijAUZnT7li5qvuNtBMyHNPuSDz
NLB2f8nOLcwHRWt6mYyOVB5EVd6oacJPXPfVOI8dFAkpx8Xzioxa6j8nncobcTFP
k+L2kPdYqavUj6CNZ0WjpKepkp+/V1EsftUdb93nOLHhj9Ar+NVF1CHurUD1Lg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:15 2024 by rpki-client on console-ams.rpki-client.org