Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/fa4256-8415-4ab2-96ce-62d2754f288b/1/GJN1JznFP6kDHoQL2LFBfu9TCo8.roa
File: GJN1JznFP6kDHoQL2LFBfu9TCo8.roa (raw, json)
Hash identifier: rq839K+M75x3UMK9gqnETE38pl7ldLZ2TlKKwyxSL34=
Subject key identifier: 18:93:75:27:39:C5:3F:A9:03:1E:84:0B:D8:B1:41:7E:EF:53:0A:8F
Certificate issuer: /CN=911c4c76ec755658d45fd0d3f5ca3cc8ebd374b7
Certificate serial: 0140BADA
Authority key identifier: 91:1C:4C:76:EC:75:56:58:D4:5F:D0:D3:F5:CA:3C:C8:EB:D3:74:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRxMdux1VljUX9DT9co8yOvTdLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/fa4256-8415-4ab2-96ce-62d2754f288b/1/GJN1JznFP6kDHoQL2LFBfu9TCo8.roa
Signing time: Sat 01 Jan 2022 12:01:51 +0000
ROA not before: Sat 01 Jan 2022 12:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15946
IP address blocks: 193.41.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21019354 (0x140bada)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=911c4c76ec755658d45fd0d3f5ca3cc8ebd374b7
Validity
Not Before: Jan 1 12:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1893752739c53fa9031e840bd8b1417eef530a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3d:7d:a5:27:b4:d7:32:45:d3:eb:18:da:89:
f6:c9:ce:4d:c1:19:d4:aa:b8:f0:9d:35:7d:81:d8:
99:2e:99:09:5d:54:4e:b6:35:f2:ce:f8:3f:b4:65:
50:3b:6a:b9:b9:1a:aa:70:a4:e6:4c:4c:5f:18:5e:
d9:24:e2:e5:25:47:de:1d:85:3b:89:ca:95:e9:57:
6c:65:11:4b:36:8c:20:80:06:69:a4:29:9f:84:64:
48:8c:2f:67:f9:f0:24:08:94:b3:5d:e3:71:3a:76:
fc:d6:81:50:08:1e:7f:75:a0:16:0a:51:79:cc:90:
ac:bc:89:ca:5d:c6:4c:4c:34:4b:fe:c1:77:fb:b7:
3a:e4:6b:15:58:87:e8:eb:f0:e3:78:bd:ab:ec:88:
8a:68:4c:9b:b8:e5:9d:ad:be:31:1f:34:ed:f5:ba:
38:56:1d:5c:0c:09:c1:ed:50:7d:50:92:6e:99:73:
0a:1f:c1:2b:53:40:56:90:b1:4d:0b:ca:1f:be:4d:
b7:a3:7c:1f:2a:a4:31:8d:7f:37:11:91:2b:a4:2c:
52:bc:3e:e4:38:ec:90:9d:a1:cb:6b:fa:d4:9f:49:
15:ea:fa:7b:92:20:5b:e9:25:a8:0a:8e:3e:7a:1a:
87:23:77:96:39:6a:cc:1d:92:9f:d9:af:44:04:a6:
36:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:93:75:27:39:C5:3F:A9:03:1E:84:0B:D8:B1:41:7E:EF:53:0A:8F
X509v3 Authority Key Identifier:
keyid:91:1C:4C:76:EC:75:56:58:D4:5F:D0:D3:F5:CA:3C:C8:EB:D3:74:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRxMdux1VljUX9DT9co8yOvTdLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fa4256-8415-4ab2-96ce-62d2754f288b/1/GJN1JznFP6kDHoQL2LFBfu9TCo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fa4256-8415-4ab2-96ce-62d2754f288b/1/kRxMdux1VljUX9DT9co8yOvTdLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.35.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:84:a5:56:0f:3d:c1:85:e3:51:0d:4e:5b:40:72:b6:98:da:
8d:9b:a5:3e:ff:5a:84:b3:7c:b7:1b:3e:df:fe:09:91:25:6a:
81:e8:0f:be:9f:c4:48:e4:b1:7f:24:22:26:2b:7b:85:9c:81:
c6:87:39:0c:a2:32:00:37:c6:ba:a8:c2:f7:7e:39:9d:58:ff:
0b:9e:51:9a:c8:32:08:01:9e:ea:96:62:86:ec:f4:e5:f1:7c:
11:78:61:a9:e1:af:41:d4:a9:db:5e:06:44:f1:12:9f:06:98:
0f:3a:4d:32:6f:ad:76:82:ac:3c:41:83:87:7f:cd:d1:bd:a2:
fa:30:1b:59:70:32:80:e3:69:6b:54:6a:0d:8b:a2:8e:5f:24:
ea:01:cf:87:98:b8:eb:8b:0b:ae:3e:4d:7a:65:04:6d:68:73:
ae:bb:61:9e:77:09:8c:da:f6:c1:8b:f5:52:65:89:85:c1:fb:
69:37:4f:bf:a3:2a:cb:45:7f:c7:76:d6:70:63:80:0c:c3:65:
56:cd:3d:00:a0:4c:ed:c1:3c:5b:e3:c5:d7:6f:13:f9:7f:ea:
1d:05:8d:21:52:20:b4:90:b9:e6:84:26:e7:4c:48:27:68:98:
e1:95:bc:36:58:4e:9e:e4:af:8b:68:ae:9c:27:8c:6a:24:e7:
b3:51:cd:4a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAUC62jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MTFjNGM3NmVjNzU1NjU4ZDQ1ZmQwZDNmNWNhM2NjOGViZDM3NGI3MB4XDTIyMDEw
MTEyMDE1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTg5Mzc1MjczOWM1
M2ZhOTAzMWU4NDBiZDhiMTQxN2VlZjUzMGE4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKQ9faUntNcyRdPrGNqJ9snOTcEZ1Kq48J01fYHYmS6ZCV1U
TrY18s74P7RlUDtqubkaqnCk5kxMXxhe2STi5SVH3h2FO4nKlelXbGURSzaMIIAG
aaQpn4RkSIwvZ/nwJAiUs13jcTp2/NaBUAgef3WgFgpRecyQrLyJyl3GTEw0S/7B
d/u3OuRrFViH6Ovw43i9q+yIimhMm7jlna2+MR807fW6OFYdXAwJwe1QfVCSbplz
Ch/BK1NAVpCxTQvKH75Nt6N8HyqkMY1/NxGRK6QsUrw+5DjskJ2hy2v61J9JFer6
e5IgW+klqAqOPnoahyN3ljlqzB2Sn9mvRASmNikCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQYk3UnOcU/qQMehAvYsUF+71MKjzAfBgNVHSMEGDAWgBSRHEx27HVWWNRf
0NP1yjzI69N0tzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tSeE1kdXgxVmxqVVg5RFQ5Y284eU92VGRMYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGEvZmE0MjU2LTg0MTUtNGFiMi05NmNlLTYyZDI3NTRmMjg4Yi8x
L0dKTjFKem5GUDZrREhvUUwyTEZCZnU5VENvOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEv
ZmE0MjU2LTg0MTUtNGFiMi05NmNlLTYyZDI3NTRmMjg4Yi8xL2tSeE1kdXgxVmxq
VVg5RFQ5Y284eU92VGRMYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEpIzANBgkqhkiG9w0BAQsFAAOC
AQEAj4SlVg89wYXjUQ1OW0BytpjajZulPv9ahLN8txs+3/4JkSVqgegPvp/ESOSx
fyQiJit7hZyBxoc5DKIyADfGuqjC9345nVj/C55RmsgyCAGe6pZihuz05fF8EXhh
qeGvQdSp214GRPESnwaYDzpNMm+tdoKsPEGDh3/N0b2i+jAbWXAygONpa1RqDYui
jl8k6gHPh5i464sLrj5NemUEbWhzrrthnncJjNr2wYv1UmWJhcH7aTdPv6Mqy0V/
x3bWcGOADMNlVs09AKBM7cE8W+PF128T+X/qHQWNIVIgtJC55oQm50xIJ2iY4ZW8
NlhOnuSvi2iunCeMaiTns1HNSg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:24 2024 by rpki-client on console-fra.rpki-client.org