Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/396e31-3b14-4e14-b2ec-1684b2f08e72/1/uY4SQVwIX0RLEtUlPlOwWVRNWZc.roa
File: uY4SQVwIX0RLEtUlPlOwWVRNWZc.roa (raw, json)
Hash identifier: vt9VkgMg0nnFtO19qMaAHftHwRmrAE4OxM0H4jw3Zo8=
Subject key identifier: B9:8E:12:41:5C:08:5F:44:4B:12:D5:25:3E:53:B0:59:54:4D:59:97
Certificate issuer: /CN=826f8bc1ec4e4dfc02eecc2de4a9edcc4697a3bd
Certificate serial: 07390EF4
Authority key identifier: 82:6F:8B:C1:EC:4E:4D:FC:02:EE:CC:2D:E4:A9:ED:CC:46:97:A3:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gm-LwexOTfwC7swt5KntzEaXo70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/396e31-3b14-4e14-b2ec-1684b2f08e72/1/uY4SQVwIX0RLEtUlPlOwWVRNWZc.roa
Signing time: Sat 01 Jan 2022 06:59:21 +0000
ROA not before: Sat 01 Jan 2022 06:59:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208162
IP address blocks: 45.149.236.0/22 maxlen: 22
2a0f:7e00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121179892 (0x7390ef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826f8bc1ec4e4dfc02eecc2de4a9edcc4697a3bd
Validity
Not Before: Jan 1 06:59:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b98e12415c085f444b12d5253e53b059544d5997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b3:c0:2d:38:49:3f:36:0c:4c:ce:c4:52:03:
24:1e:11:6a:6b:fb:85:32:1a:60:24:80:5c:0a:6a:
84:37:4a:a8:b0:ff:94:55:1b:aa:bf:61:83:92:67:
d9:29:4a:fa:de:75:e0:47:71:56:26:93:98:d6:32:
bc:9f:ba:5e:5c:63:e0:1b:61:9b:ce:e1:1c:e4:25:
f2:a1:74:45:6e:39:a5:65:bd:d1:0e:9c:18:53:ff:
6e:5e:1c:b0:98:c1:24:28:bb:fb:6d:b4:4c:f6:c6:
ca:da:ca:ee:0f:ac:6c:e5:35:c3:45:53:6f:92:59:
15:7f:f1:c5:7c:50:7b:fb:c6:b0:4b:e5:c0:1b:37:
c6:90:89:ec:a4:13:76:7f:c8:99:95:ae:78:64:50:
63:4b:1d:de:ba:50:cb:69:36:26:04:cc:e3:37:0c:
b5:06:f0:30:c8:52:42:68:b3:ff:64:cc:99:61:d8:
e2:03:d4:98:95:ee:aa:5f:51:d1:eb:4d:bc:9e:6f:
66:cc:b3:6b:0f:7e:9b:57:75:39:9c:2c:28:1b:8e:
bc:26:f6:29:2b:c7:b6:3f:e5:2d:c6:8e:29:4e:f9:
62:64:0c:78:98:e2:c1:6e:6b:50:52:a8:83:ae:2f:
67:30:d4:ad:99:1e:9b:81:dd:3b:8b:a5:5c:5d:a0:
82:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8E:12:41:5C:08:5F:44:4B:12:D5:25:3E:53:B0:59:54:4D:59:97
X509v3 Authority Key Identifier:
keyid:82:6F:8B:C1:EC:4E:4D:FC:02:EE:CC:2D:E4:A9:ED:CC:46:97:A3:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gm-LwexOTfwC7swt5KntzEaXo70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/396e31-3b14-4e14-b2ec-1684b2f08e72/1/uY4SQVwIX0RLEtUlPlOwWVRNWZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/396e31-3b14-4e14-b2ec-1684b2f08e72/1/gm-LwexOTfwC7swt5KntzEaXo70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.236.0/22
IPv6:
2a0f:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
8b:26:31:f4:3c:f4:4a:49:e2:42:75:fb:10:aa:99:43:81:c3:
7c:3c:80:fc:0f:d7:f9:21:79:b7:b7:e7:b9:00:51:af:d6:3b:
d9:73:f1:1e:cb:e8:2f:23:4e:4d:8e:d3:01:77:d4:08:e3:1d:
4b:d8:31:8a:96:ca:80:e8:46:9e:eb:1f:89:b2:32:6e:a5:96:
13:0e:97:9f:0b:aa:7a:5f:2a:cb:73:3b:31:74:79:c4:37:13:
bb:a8:38:45:b8:5b:96:de:5c:e2:8a:b8:79:65:87:d8:cf:ac:
d1:88:4d:ec:1c:58:82:86:3a:ca:b5:f1:30:3e:49:a6:62:1e:
11:bf:d1:2e:af:b4:73:d3:25:df:b0:e9:9f:11:56:68:6b:aa:
0e:30:77:30:b1:6b:3d:80:2f:ac:ce:87:74:55:df:e4:1b:5a:
97:f3:38:97:8d:e4:33:34:69:1c:bf:ac:03:eb:35:3c:64:9e:
ce:86:dd:51:04:01:60:00:16:a3:54:b6:b7:05:73:b5:95:c2:
b2:68:87:b0:ea:3e:41:6f:fd:df:da:d8:32:be:9d:60:cd:08:
e8:24:e4:df:79:0a:04:a7:12:fb:ca:24:e3:73:73:95:cd:50:
b4:2c:3a:5e:dd:07:c9:be:f1:c9:b2:25:46:ed:3a:5f:60:2a:
d2:32:a0:39
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBzkO9DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MjZmOGJjMWVjNGU0ZGZjMDJlZWNjMmRlNGE5ZWRjYzQ2OTdhM2JkMB4XDTIyMDEw
MTA2NTkyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjk4ZTEyNDE1YzA4
NWY0NDRiMTJkNTI1M2U1M2IwNTk1NDRkNTk5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANmzwC04ST82DEzOxFIDJB4Ramv7hTIaYCSAXApqhDdKqLD/
lFUbqr9hg5Jn2SlK+t514EdxViaTmNYyvJ+6Xlxj4Bthm87hHOQl8qF0RW45pWW9
0Q6cGFP/bl4csJjBJCi7+220TPbGytrK7g+sbOU1w0VTb5JZFX/xxXxQe/vGsEvl
wBs3xpCJ7KQTdn/ImZWueGRQY0sd3rpQy2k2JgTM4zcMtQbwMMhSQmiz/2TMmWHY
4gPUmJXuql9R0etNvJ5vZsyzaw9+m1d1OZwsKBuOvCb2KSvHtj/lLcaOKU75YmQM
eJjiwW5rUFKog64vZzDUrZkem4HdO4ulXF2ggnUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBS5jhJBXAhfREsS1SU+U7BZVE1ZlzAfBgNVHSMEGDAWgBSCb4vB7E5N/ALu
zC3kqe3MRpejvTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dtLUx3ZXhPVGZ3Qzdzd3Q1S250ekVhWG83MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvMzk2ZTMxLTNiMTQtNGUxNC1iMmVjLTE2ODRiMmYwOGU3Mi8x
L3VZNFNRVndJWDBSTEV0VWxQbE93V1ZSTldaYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
Mzk2ZTMxLTNiMTQtNGUxNC1iMmVjLTE2ODRiMmYwOGU3Mi8xL2dtLUx3ZXhPVGZ3
Qzdzd3Q1S250ekVhWG83MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAi2V7DANBAIAAjAHAwUDKg9+ADAN
BgkqhkiG9w0BAQsFAAOCAQEAiyYx9Dz0SkniQnX7EKqZQ4HDfDyA/A/X+SF5t7fn
uQBRr9Y72XPxHsvoLyNOTY7TAXfUCOMdS9gxipbKgOhGnusfibIybqWWEw6Xnwuq
el8qy3M7MXR5xDcTu6g4Rbhblt5c4oq4eWWH2M+s0YhN7BxYgoY6yrXxMD5JpmIe
Eb/RLq+0c9Ml37DpnxFWaGuqDjB3MLFrPYAvrM6HdFXf5Btal/M4l43kMzRpHL+s
A+s1PGSezobdUQQBYAAWo1S2twVztZXCsmiHsOo+QW/939rYMr6dYM0I6CTk33kK
BKcS+8ok43Nzlc1QtCw6Xt0Hyb7xybIlRu06X2Aq0jKgOQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-ams.rpki-client.org