Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/GGm4tSyPuadvqtM44mepxjG-86w.roa
File: GGm4tSyPuadvqtM44mepxjG-86w.roa (raw, json)
Hash identifier: YIjDcoBqYVKe5C5WHewcNVCpOmBXV+2ore8Hj6vRcyQ=
Subject key identifier: 18:69:B8:B5:2C:8F:B9:A7:6F:AA:D3:38:E2:67:A9:C6:31:BE:F3:AC
Certificate issuer: /CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Certificate serial: 0514922B
Authority key identifier: 5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/GGm4tSyPuadvqtM44mepxjG-86w.roa
Signing time: Sat 01 Jan 2022 12:03:28 +0000
ROA not before: Sat 01 Jan 2022 12:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202187
IP address blocks: 89.30.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85234219 (0x514922b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Validity
Not Before: Jan 1 12:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1869b8b52c8fb9a76faad338e267a9c631bef3ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ef:e4:a3:87:30:09:1b:d2:69:1f:6c:4c:25:
4a:98:7a:5b:0a:33:e0:a3:33:5d:00:01:55:70:93:
7f:44:02:65:93:db:2f:fa:bc:08:79:85:d7:10:06:
11:9a:71:2d:9f:63:b2:fb:4f:33:d0:e6:22:9d:32:
cc:6a:2c:e4:ef:cb:4f:e0:d4:11:22:d0:20:c7:99:
68:59:8e:6c:48:83:b6:39:d5:57:6e:62:73:bc:f9:
54:06:58:77:a4:79:ef:3c:7c:71:eb:79:2d:2c:01:
99:d1:46:5a:c4:56:1d:82:2c:14:cb:f8:1c:96:be:
1d:93:89:ce:fc:78:04:52:2d:ff:b6:01:0e:a4:57:
68:91:3d:a7:5a:86:ec:cb:de:cd:76:06:98:d5:8f:
a6:f3:c2:a5:61:ff:31:a4:13:a3:68:c8:91:63:e0:
20:2d:ca:be:fa:fd:97:b5:73:1d:e2:d8:70:ea:46:
bd:0b:47:89:54:ae:40:c9:87:d7:ad:80:8b:3d:fc:
61:80:06:aa:d4:05:c8:99:98:dc:64:c5:67:67:e3:
6d:e7:f7:ff:a0:3e:e8:21:67:04:22:9c:8d:46:69:
44:f3:2c:4f:1b:a3:d2:3b:72:9f:bc:ca:b6:66:e6:
c5:0c:a7:df:16:f2:f9:2a:3e:31:f1:5d:8f:4c:e5:
40:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:69:B8:B5:2C:8F:B9:A7:6F:AA:D3:38:E2:67:A9:C6:31:BE:F3:AC
X509v3 Authority Key Identifier:
keyid:5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/GGm4tSyPuadvqtM44mepxjG-86w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.30.108.0/24
Signature Algorithm: sha256WithRSAEncryption
73:60:c8:07:7f:f7:d8:63:44:1d:b0:60:2d:bc:36:d2:fd:ad:
a1:a8:be:e3:31:1f:a5:03:86:88:cb:28:db:c7:26:76:f8:ce:
8e:b3:84:91:b3:b7:db:1d:5a:5c:75:ed:cd:0d:82:49:03:a6:
07:53:be:47:fe:ee:9f:4f:bd:d0:29:10:e6:5e:20:e0:5a:b8:
e1:00:db:98:ed:8a:01:7c:33:40:d9:61:fe:9c:fe:10:54:c7:
af:27:30:60:4f:98:4b:fc:e0:3d:4a:14:f1:08:9d:0c:f0:b3:
82:7a:b4:b6:69:e3:c4:d1:51:7e:de:fc:59:27:c6:85:4b:d6:
47:71:11:4b:5d:94:77:ac:b5:bf:d4:d7:18:be:c0:53:d0:ed:
ca:ef:a8:18:ef:97:20:a1:f6:dc:4c:22:b3:68:d5:12:2e:a8:
b1:57:aa:7d:61:f8:fa:07:8e:c8:3d:7a:02:7e:dd:79:e3:50:
1a:b0:cf:59:e4:3a:7e:be:e3:f6:04:06:13:80:56:22:6a:a2:
05:23:17:ad:5b:b1:95:e6:8a:ae:ed:47:b7:35:d8:7d:c6:81:
d6:4b:fd:50:b3:b2:8f:63:20:39:d9:34:b8:03:b4:fd:c6:54:
92:4e:e9:f7:90:c5:b5:8f:23:a2:34:27:b6:c2:12:af:07:99:
06:06:db:50
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBRSSKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZTQwMGFjMjM5NmFlMjI4ZDJiMmU1NmY0YjA2NzM5OTY5Mzc5ZTQ0MB4XDTIyMDEw
MTEyMDMyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTg2OWI4YjUyYzhm
YjlhNzZmYWFkMzM4ZTI2N2E5YzYzMWJlZjNhYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAODv5KOHMAkb0mkfbEwlSph6Wwoz4KMzXQABVXCTf0QCZZPb
L/q8CHmF1xAGEZpxLZ9jsvtPM9DmIp0yzGos5O/LT+DUESLQIMeZaFmObEiDtjnV
V25ic7z5VAZYd6R57zx8cet5LSwBmdFGWsRWHYIsFMv4HJa+HZOJzvx4BFIt/7YB
DqRXaJE9p1qG7MvezXYGmNWPpvPCpWH/MaQTo2jIkWPgIC3Kvvr9l7VzHeLYcOpG
vQtHiVSuQMmH162Aiz38YYAGqtQFyJmY3GTFZ2fjbef3/6A+6CFnBCKcjUZpRPMs
Txuj0jtyn7zKtmbmxQyn3xby+So+MfFdj0zlQEsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQYabi1LI+5p2+q0zjiZ6nGMb7zrDAfBgNVHSMEGDAWgBReQArCOWriKNKy
5W9LBnOZaTeeRDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hrQUt3amxxNGlqU3N1VnZTd1p6bVdrM25rUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvZDY3YTk1LWNiMzYtNDkzNy05MjI2LWRmZWQxMmYxYTAxZS8x
L0dHbTR0U3lQdWFkdnF0TTQ0bWVweGpHLTg2dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
ZDY3YTk1LWNiMzYtNDkzNy05MjI2LWRmZWQxMmYxYTAxZS8xL1hrQUt3amxxNGlq
U3N1VnZTd1p6bVdrM25rUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFkebDANBgkqhkiG9w0BAQsFAAOC
AQEAc2DIB3/32GNEHbBgLbw20v2toai+4zEfpQOGiMso28cmdvjOjrOEkbO32x1a
XHXtzQ2CSQOmB1O+R/7un0+90CkQ5l4g4Fq44QDbmO2KAXwzQNlh/pz+EFTHrycw
YE+YS/zgPUoU8QidDPCzgnq0tmnjxNFRft78WSfGhUvWR3ERS12Ud6y1v9TXGL7A
U9Dtyu+oGO+XIKH23Ewis2jVEi6osVeqfWH4+geOyD16An7deeNQGrDPWeQ6fr7j
9gQGE4BWImqiBSMXrVuxleaKru1HtzXYfcaB1kv9ULOyj2MgOdk0uAO0/cZUkk7p
95DFtY8jojQntsISrweZBgbbUA==
-----END CERTIFICATE-----
Generated at Fri Apr 18 09:58:16 2025 by rpki-client