Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/GunM4iDXKi9HxJHurIi3cxLeGbg.roa
File: GunM4iDXKi9HxJHurIi3cxLeGbg.roa (raw, json)
Hash identifier: jC/3gzuUbUIS2Q6aaiF5PDlqGvI68cee/YWT0mZzne0=
Subject key identifier: 1A:E9:CC:E2:20:D7:2A:2F:47:C4:91:EE:AC:88:B7:73:12:DE:19:B8
Certificate issuer: /CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Certificate serial: 01856D5CF0A2E02C96EC31A59C990B185B70
Authority key identifier: 62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/GunM4iDXKi9HxJHurIi3cxLeGbg.roa
Signing time: Sun 01 Jan 2023 12:44:45 +0000
ROA not before: Sun 01 Jan 2023 12:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198371
IP address blocks: 185.47.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5c:f0:a2:e0:2c:96:ec:31:a5:9c:99:0b:18:5b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Validity
Not Before: Jan 1 12:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ae9cce220d72a2f47c491eeac88b77312de19b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cb:8b:77:93:85:74:e5:01:9a:4d:04:7d:a5:
a5:06:b7:e8:0a:eb:5e:d3:b6:d1:bb:a5:0a:3e:44:
77:5b:5f:68:77:2a:b4:2f:7d:3e:2a:07:e5:f0:2b:
d8:a7:92:16:1c:9b:d4:61:cb:1e:04:1c:ae:56:af:
6f:73:b3:b1:f4:93:44:7f:57:ea:2f:d5:87:87:2d:
f0:9f:18:c4:f0:7c:53:99:00:03:62:dc:36:35:5b:
07:af:23:f7:33:58:b5:98:75:98:a2:dd:07:ad:f0:
17:6d:6c:b7:93:e2:6b:c7:e6:d8:0c:56:de:ac:ef:
db:64:5a:c8:3d:a2:88:6c:94:7b:d3:45:a5:fb:11:
83:5a:8a:48:50:87:84:0a:eb:0d:1c:21:d9:7f:f2:
44:4f:79:39:35:38:ce:91:83:e9:57:9c:33:d5:f1:
a3:56:61:68:69:f0:55:83:b2:39:55:ea:1d:32:0d:
71:33:89:a7:1d:1a:d6:31:c0:59:b7:0f:c1:52:84:
90:bd:49:6c:7f:fe:de:97:c8:31:09:32:d8:4b:5a:
f1:70:bb:18:66:dc:f1:49:7a:d3:75:14:96:b7:5a:
f6:05:c7:a2:2f:dc:c7:61:79:44:40:45:84:0e:99:
72:42:74:2a:88:6f:39:cb:cc:e7:f3:b6:fa:52:2b:
bb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E9:CC:E2:20:D7:2A:2F:47:C4:91:EE:AC:88:B7:73:12:DE:19:B8
X509v3 Authority Key Identifier:
keyid:62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/GunM4iDXKi9HxJHurIi3cxLeGbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.211.0/24
Signature Algorithm: sha256WithRSAEncryption
97:f7:b1:a2:68:88:32:36:72:99:cf:52:ea:75:5a:3d:f8:7c:
c7:41:84:cd:b6:6e:a3:55:be:3f:bf:22:9c:69:a6:db:31:99:
51:0f:fc:13:0c:a5:8c:a7:6c:2d:20:c4:fc:0e:89:ea:b2:7c:
d1:9b:d9:6a:e2:aa:45:5a:de:bf:ae:eb:d6:f7:05:69:22:ae:
73:7f:66:7f:53:9d:ce:9e:de:06:8f:b3:5c:c9:06:88:5d:47:
9b:3d:ad:ee:53:26:07:7b:e5:be:0e:44:b6:37:1e:a7:1b:bf:
ca:da:a0:a9:e0:42:23:d2:b9:d5:f9:7c:fb:6b:0a:e0:3f:73:
a9:44:cf:8a:89:0c:46:98:a4:3f:2d:d8:89:85:cd:f7:a8:5e:
f3:cd:27:eb:86:d2:6c:da:e7:71:cb:9f:ca:4d:fd:e9:e2:c0:
06:12:96:6d:3e:7a:c9:b1:7d:7e:bd:73:cd:30:45:ef:a3:84:
f3:e4:21:c5:e1:0a:df:25:32:2a:4f:ab:48:ff:7a:ec:27:ae:
3a:bd:2a:5b:c3:54:96:fc:55:45:00:ab:f4:bf:61:1e:75:58:
f0:20:72:ad:4b:52:89:41:9c:a3:93:92:93:58:d9:5d:f1:f1:
53:33:20:66:15:c1:1c:b7:c5:3c:91:c4:be:de:03:5b:16:07:
2d:a8:5d:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtXPCi4CyW7DGlnJkLGFtwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNzhhNzY4YzkxMGJhZGNkNWM0YWVmN2MxNzJhOWYwNjE1
NDdlOGMwHhcNMjMwMTAxMTI0NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYWU5Y2NlMjIwZDcyYTJmNDdjNDkxZWVhYzg4Yjc3MzEyZGUxOWI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMuLd5OFdOUBmk0EfaWlBrfoCute
07bRu6UKPkR3W19odyq0L30+Kgfl8CvYp5IWHJvUYcseBByuVq9vc7Ox9JNEf1fq
L9WHhy3wnxjE8HxTmQADYtw2NVsHryP3M1i1mHWYot0HrfAXbWy3k+Jrx+bYDFbe
rO/bZFrIPaKIbJR700Wl+xGDWopIUIeECusNHCHZf/JET3k5NTjOkYPpV5wz1fGj
VmFoafBVg7I5VeodMg1xM4mnHRrWMcBZtw/BUoSQvUlsf/7el8gxCTLYS1rxcLsY
ZtzxSXrTdRSWt1r2BceiL9zHYXlEQEWEDplyQnQqiG85y8zn87b6Uiu7lwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBrpzOIg1yovR8SR7qyIt3MS3hm4MB8GA1UdIwQY
MBaAFGJ4p2jJELrc1cSu98FyqfBhVH6MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW5pbmFNa1F1dHpWeEs3M3dYS3A4R0ZVZm93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80MmRmYzAtYTc2NC00ZDVkLWE2MzQt
MzQ1NGY0OTBmZDk2LzEvR3VuTTRpRFhLaTlIeEpIdXJJaTNjeExlR2JnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi80MmRmYzAtYTc2NC00ZDVkLWE2MzQtMzQ1NGY0OTBmZDk2
LzEvWW5pbmFNa1F1dHpWeEs3M3dYS3A4R0ZVZm93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuS/TMA0G
CSqGSIb3DQEBCwUAA4IBAQCX97GiaIgyNnKZz1LqdVo9+HzHQYTNtm6jVb4/vyKc
aabbMZlRD/wTDKWMp2wtIMT8DonqsnzRm9lq4qpFWt6/ruvW9wVpIq5zf2Z/U53O
nt4Gj7NcyQaIXUebPa3uUyYHe+W+DkS2Nx6nG7/K2qCp4EIj0rnV+Xz7awrgP3Op
RM+KiQxGmKQ/LdiJhc33qF7zzSfrhtJs2udxy5/KTf3p4sAGEpZtPnrJsX1+vXPN
MEXvo4Tz5CHF4QrfJTIqT6tI/3rsJ646vSpbw1SW/FVFAKv0v2EedVjwIHKtS1KJ
QZyjk5KTWNld8fFTMyBmFcEct8U8kcS+3gNbFgctqF29
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:50 2025 by rpki-client