Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g1qNA-1ohbobqBl1mItchAiflEw.roa
File: g1qNA-1ohbobqBl1mItchAiflEw.roa (raw, json)
Hash identifier: rANFlVrvc++DijtdrUURNfyn0iHfddeFzex51M9naOg=
Subject key identifier: 83:5A:8D:03:ED:68:85:BA:1B:A8:19:75:98:8B:5C:84:08:9F:94:4C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C523EBA
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g1qNA-1ohbobqBl1mItchAiflEw.roa
Signing time: Sat 01 Jan 2022 01:02:19 +0000
ROA not before: Sat 01 Jan 2022 01:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20665
IP address blocks: 217.145.80.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475152058 (0x1c523eba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=835a8d03ed6885ba1ba81975988b5c84089f944c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3c:9e:d3:a2:6f:93:18:50:54:28:cf:48:78:
b9:b8:13:e9:4b:be:9f:5d:fc:e6:5f:83:f2:44:5a:
d8:10:b8:30:1a:0b:73:3c:dd:6d:84:2a:42:e7:d8:
5b:8a:e2:0b:45:a3:32:7a:b3:07:29:33:68:d9:67:
77:01:ac:35:c7:5a:0b:5b:7b:7e:76:dd:1b:5f:1d:
5e:96:42:19:67:76:04:e3:62:f3:50:88:af:b7:ad:
20:c1:08:80:8a:33:27:11:02:f7:4a:8e:7f:44:db:
a3:e2:ad:c8:d7:30:68:18:47:9e:f0:6a:67:83:06:
e3:4d:b3:bf:f7:4b:c2:72:f3:a8:6e:55:cb:78:93:
25:93:a2:2f:97:85:49:0b:c7:8b:03:ce:e2:c5:27:
cc:92:86:81:b1:b6:e6:b5:5e:8b:2e:1d:54:57:13:
0c:58:9a:59:fe:bc:4d:9b:8e:f1:67:ec:35:b6:23:
68:e0:e4:80:40:dd:2f:1d:f5:84:2d:e6:f2:1b:fe:
fc:f7:d3:ca:22:51:88:ac:a4:75:e9:7f:e7:52:2f:
ea:ee:d5:bf:6f:a7:03:45:79:7a:43:3a:af:06:8b:
b0:3f:79:c8:14:fa:1f:c8:80:cf:f5:90:af:4d:ff:
05:59:ba:32:0c:d3:32:40:82:1d:dd:e6:a6:29:0e:
4a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5A:8D:03:ED:68:85:BA:1B:A8:19:75:98:8B:5C:84:08:9F:94:4C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g1qNA-1ohbobqBl1mItchAiflEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.80.0/20
Signature Algorithm: sha256WithRSAEncryption
93:3b:95:74:74:6d:29:2a:98:99:6e:c4:14:31:91:b1:a1:e3:
4e:84:c1:56:98:01:1e:bf:08:43:65:df:84:79:28:c9:61:dc:
0c:32:d2:b0:ef:37:6c:bb:7f:d0:c9:89:55:30:af:65:17:fb:
6f:3e:a3:be:f3:e4:79:e7:d2:5f:8f:85:8a:a7:72:f1:2a:f0:
b5:e0:ea:4c:29:24:b6:3d:eb:72:91:d5:65:a4:e6:61:a6:9b:
92:45:5c:de:9c:43:00:b5:d5:3d:1a:30:96:59:39:c4:ec:28:
4d:2d:28:d1:c7:7a:c5:0c:78:5e:c5:8e:d7:3f:7b:0d:d6:7f:
4c:c7:f0:20:07:cd:f7:7f:d8:b6:ae:d7:19:ac:fd:53:6d:bb:
dd:a0:65:a4:23:9f:bf:b4:98:f6:e6:de:ce:f3:6e:1d:8b:62:
fd:3b:f8:00:21:7a:4c:c9:e1:51:63:44:49:ea:e2:fc:3d:87:
83:84:4f:3b:7a:06:5b:5c:83:0f:84:42:0c:cc:99:71:8b:35:
5b:6b:ec:1f:84:b1:5e:5c:e5:d2:a9:38:10:a1:88:0e:97:eb:
80:95:2f:af:53:a1:86:e0:e6:54:54:44:9b:75:37:07:18:1d:
bc:82:18:a2:47:41:df:41:24:18:04:20:a0:29:40:9d:00:b6:
91:d1:61:ab
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHFI+ujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDEw
MTAxMDIxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODM1YThkMDNlZDY4
ODViYTFiYTgxOTc1OTg4YjVjODQwODlmOTQ0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJk8ntOib5MYUFQoz0h4ubgT6Uu+n1385l+D8kRa2BC4MBoL
czzdbYQqQufYW4riC0WjMnqzBykzaNlndwGsNcdaC1t7fnbdG18dXpZCGWd2BONi
81CIr7etIMEIgIozJxEC90qOf0Tbo+KtyNcwaBhHnvBqZ4MG402zv/dLwnLzqG5V
y3iTJZOiL5eFSQvHiwPO4sUnzJKGgbG25rVeiy4dVFcTDFiaWf68TZuO8WfsNbYj
aODkgEDdLx31hC3m8hv+/PfTyiJRiKykdel/51Iv6u7Vv2+nA0V5ekM6rwaLsD95
yBT6H8iAz/WQr03/BVm6MgzTMkCCHd3mpikOSjECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSDWo0D7WiFuhuoGXWYi1yECJ+UTDAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L2cxcU5BLTFvaGJvYnFCbDFtSXRjaEFpZmxFdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNmRUDANBgkqhkiG9w0BAQsFAAOC
AQEAkzuVdHRtKSqYmW7EFDGRsaHjToTBVpgBHr8IQ2XfhHkoyWHcDDLSsO83bLt/
0MmJVTCvZRf7bz6jvvPkeefSX4+Fiqdy8SrwteDqTCkktj3rcpHVZaTmYaabkkVc
3pxDALXVPRowllk5xOwoTS0o0cd6xQx4XsWO1z97DdZ/TMfwIAfN93/Ytq7XGaz9
U2273aBlpCOfv7SY9ubezvNuHYti/Tv4ACF6TMnhUWNESeri/D2Hg4RPO3oGW1yD
D4RCDMyZcYs1W2vsH4SxXlzl0qk4EKGIDpfrgJUvr1OhhuDmVFREm3U3BxgdvIIY
okdB30EkGAQgoClAnQC2kdFhqw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:39 2024 by rpki-client on console-ams.rpki-client.org