Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gbszWMwlNdYcWf5x57NFG9ID1bg.roa
File: gbszWMwlNdYcWf5x57NFG9ID1bg.roa (raw, json)
Hash identifier: w7bpc18jxuYf7Vyw319k1WF/I4OxclQCzv6kmwFEpSU=
Subject key identifier: 81:BB:33:58:CC:25:35:D6:1C:59:FE:71:E7:B3:45:1B:D2:03:D5:B8
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C53268A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gbszWMwlNdYcWf5x57NFG9ID1bg.roa
Signing time: Sat 01 Jan 2022 01:02:21 +0000
ROA not before: Sat 01 Jan 2022 01:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25198
IP address blocks: 87.120.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475211402 (0x1c53268a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81bb3358cc2535d61c59fe71e7b3451bd203d5b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2b:15:d4:f9:46:1b:a0:ed:ab:b9:1d:c0:70:
55:83:bf:ec:bd:c7:18:2e:df:7b:6e:1e:45:87:c5:
96:8c:fc:33:5e:7e:3b:ac:df:4c:75:81:b6:d9:3d:
fb:ee:a0:25:5a:be:76:02:c7:e4:d6:11:04:ff:c2:
96:4c:6a:bf:a7:2c:99:44:04:e1:13:ef:f6:d3:ff:
e4:50:3a:1e:fe:2c:b5:c2:b5:dc:b5:6d:6b:c9:82:
19:41:e9:14:fb:88:17:ec:20:bc:c6:6f:17:44:b9:
45:e4:48:6e:30:5f:03:24:72:96:2c:b4:57:b8:c9:
a2:7f:74:79:db:28:39:ed:7c:44:b4:90:e0:c7:f3:
42:85:09:bf:67:dd:b3:73:e1:e6:36:8f:a4:e4:97:
f0:6c:61:3f:a1:b8:8a:23:f8:9b:28:f7:4a:44:17:
9b:8f:0e:50:8c:6d:13:3c:76:61:1f:4b:ba:ea:d3:
6b:ab:2c:94:a2:17:62:3f:65:81:1e:1f:bf:ac:15:
95:99:42:ed:af:51:38:48:71:2c:9d:fe:3b:c9:52:
c0:0b:06:09:78:6d:fc:8d:fa:a6:0a:14:5d:dc:ec:
35:36:b5:9f:f9:68:98:b6:e6:76:b7:c2:63:39:a1:
bd:33:d0:ab:04:83:a6:8f:37:3c:47:92:3d:df:85:
ee:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BB:33:58:CC:25:35:D6:1C:59:FE:71:E7:B3:45:1B:D2:03:D5:B8
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gbszWMwlNdYcWf5x57NFG9ID1bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.93.0/24
Signature Algorithm: sha256WithRSAEncryption
86:34:dd:19:f3:4b:11:75:01:0d:06:9d:de:4b:9c:ca:01:4c:
ea:a9:9c:73:41:c3:d0:59:05:53:d1:6a:e0:21:b7:71:26:83:
72:4f:67:0c:e1:b3:6c:d7:93:e3:fc:9a:ee:b6:68:19:53:0b:
ce:4a:f1:3a:dd:48:59:1c:72:b8:81:6a:d9:18:fd:04:07:5d:
61:3f:86:c8:10:d6:45:75:bb:9e:cb:0f:27:ca:bc:5a:97:ad:
1b:6c:6d:56:4c:6d:47:a7:b4:3f:16:83:5e:7f:af:b4:bc:d6:
4f:bb:4b:e4:a7:59:a0:89:3e:40:7d:4d:9d:6c:c0:8c:92:56:
0f:40:0b:71:6f:7d:93:33:1a:80:7f:55:64:e4:ca:73:96:ec:
5d:35:b7:62:26:bb:0a:e4:74:f9:2b:d7:2d:50:2e:8f:11:51:
c6:0f:d6:0c:46:ee:ee:ad:49:f2:a9:b6:23:dc:16:9a:d0:e2:
df:fc:f8:a1:75:26:9f:7e:cb:b2:d3:9e:a0:46:55:39:1d:b4:
5e:fe:18:25:b0:87:2c:3a:36:00:54:be:f2:41:82:a9:f9:fe:
fa:ab:16:20:2f:8f:28:55:0c:b6:0f:8a:a5:21:75:05:ff:7f:
9c:67:2d:ae:fe:5c:08:90:1d:d5:c4:03:1e:7e:1f:3b:69:58:
4e:b4:81:ba
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHFMmijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDEw
MTAxMDIyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODFiYjMzNThjYzI1
MzVkNjFjNTlmZTcxZTdiMzQ1MWJkMjAzZDViODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK8rFdT5Rhug7au5HcBwVYO/7L3HGC7fe24eRYfFloz8M15+
O6zfTHWBttk9++6gJVq+dgLH5NYRBP/Clkxqv6csmUQE4RPv9tP/5FA6Hv4stcK1
3LVta8mCGUHpFPuIF+wgvMZvF0S5ReRIbjBfAyRyliy0V7jJon90edsoOe18RLSQ
4MfzQoUJv2fds3Ph5jaPpOSX8GxhP6G4iiP4myj3SkQXm48OUIxtEzx2YR9LuurT
a6sslKIXYj9lgR4fv6wVlZlC7a9ROEhxLJ3+O8lSwAsGCXht/I36pgoUXdzsNTa1
n/lomLbmdrfCYzmhvTPQqwSDpo83PEeSPd+F7n8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSBuzNYzCU11hxZ/nHns0Ub0gPVuDAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L2dic3pXTXdsTmRZY1dmNXg1N05GRzlJRDFiZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFd4XTANBgkqhkiG9w0BAQsFAAOC
AQEAhjTdGfNLEXUBDQad3kucygFM6qmcc0HD0FkFU9Fq4CG3cSaDck9nDOGzbNeT
4/ya7rZoGVMLzkrxOt1IWRxyuIFq2Rj9BAddYT+GyBDWRXW7nssPJ8q8WpetG2xt
VkxtR6e0PxaDXn+vtLzWT7tL5KdZoIk+QH1NnWzAjJJWD0ALcW99kzMagH9VZOTK
c5bsXTW3Yia7CuR0+SvXLVAujxFRxg/WDEbu7q1J8qm2I9wWmtDi3/z4oXUmn37L
stOeoEZVOR20Xv4YJbCHLDo2AFS+8kGCqfn++qsWIC+PKFUMtg+KpSF1Bf9/nGct
rv5cCJAd1cQDHn4fO2lYTrSBug==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:46 2023 by rpki-client on console-fra.rpki-client.org