Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/GdvPKsJOnuL8Y1r0EXLb2bhdL2o.roa
File: GdvPKsJOnuL8Y1r0EXLb2bhdL2o.roa (raw, json)
Hash identifier: e+mb6rpYHk8iI/48Nicr1aLJylLKQFIXpyQpzKbP/bo=
Subject key identifier: 19:DB:CF:2A:C2:4E:9E:E2:FC:63:5A:F4:11:72:DB:D9:B8:5D:2F:6A
Certificate issuer: /CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Certificate serial: 01834025B80B8BD35410F98DDC477D1FDB06
Authority key identifier: 12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/GdvPKsJOnuL8Y1r0EXLb2bhdL2o.roa
Signing time: Thu 15 Sep 2022 07:55:57 +0000
ROA not before: Thu 15 Sep 2022 07:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60064
IP address blocks: 185.114.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:25:b8:0b:8b:d3:54:10:f9:8d:dc:47:7d:1f:db:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Validity
Not Before: Sep 15 07:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19dbcf2ac24e9ee2fc635af41172dbd9b85d2f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ef:36:f7:66:d6:b4:cc:11:f0:80:28:74:90:
5e:f1:30:a1:c7:c1:06:20:3b:e5:cc:f1:64:09:0b:
e2:17:4f:20:21:47:43:52:37:67:76:87:3d:d1:8e:
c8:98:fc:95:ee:0d:10:13:54:d3:af:c9:e8:01:33:
3a:a7:e8:df:d0:76:9e:8a:08:9b:cf:7a:f8:82:62:
59:f9:88:0d:60:39:eb:e3:d8:43:36:7a:4f:67:7d:
81:57:60:a7:9b:68:23:4b:3f:48:f3:05:e7:d6:57:
7a:4c:99:ae:bc:8b:62:e7:ac:24:52:05:27:38:3b:
fd:23:49:c1:76:cf:76:93:45:f7:aa:47:a6:c6:42:
7e:a9:3b:ca:99:b2:72:e3:b8:3f:36:a8:1e:18:93:
cf:87:32:b7:33:67:d3:e7:c3:37:18:fd:14:12:2f:
52:55:05:b1:37:b6:a2:c4:3f:a3:e2:64:69:4b:ce:
8a:02:94:b9:ba:14:de:3d:e1:30:8e:bc:11:01:42:
d2:3f:91:74:81:95:f8:f9:b6:94:9d:1b:d9:af:ec:
ac:3a:c5:bb:9e:38:b8:37:2e:25:b6:c0:1e:46:66:
bf:bb:35:df:e2:ec:da:d1:21:f0:7a:94:72:56:6a:
ee:43:dd:7f:98:b1:8a:0f:95:b4:c1:ef:dc:f7:bf:
ad:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:DB:CF:2A:C2:4E:9E:E2:FC:63:5A:F4:11:72:DB:D9:B8:5D:2F:6A
X509v3 Authority Key Identifier:
keyid:12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/GdvPKsJOnuL8Y1r0EXLb2bhdL2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/EhSn4qjHASMlrpc-0aK7oFsrucE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.35.0/24
Signature Algorithm: sha256WithRSAEncryption
14:29:1a:c3:c6:87:f9:ff:90:5e:db:a6:83:9c:f6:ad:2f:38:
af:5c:d9:2a:9d:5c:5e:8b:3d:72:5f:a2:b3:0b:1e:b9:8a:ba:
09:0e:ac:41:e6:18:ba:10:f2:87:b1:30:35:47:21:83:8c:50:
86:f4:6e:70:71:69:22:53:17:0f:2e:3d:46:9d:79:5c:37:ed:
48:25:55:86:52:52:a1:91:6e:d7:4e:55:3b:98:04:5a:81:28:
78:ba:15:36:21:28:76:33:2b:45:19:a1:c3:2f:4f:21:45:df:
e4:cd:ec:21:09:ae:0b:64:2f:0f:31:b0:7e:15:96:df:7a:5a:
2d:e1:f7:ad:4a:fe:7e:46:86:c1:02:9e:a9:2a:2f:2b:40:3c:
cd:97:db:55:b2:de:47:32:74:36:a6:6b:b8:4c:4d:60:77:09:
f4:b3:1f:8f:f1:69:2c:d6:2d:0a:c8:00:cb:d1:11:37:fc:9f:
ba:42:0e:7d:6d:5c:ac:ad:62:1a:2f:8d:d5:ef:aa:20:4d:6b:
92:c4:97:3d:a8:8e:6c:2b:0d:01:ac:7a:0f:74:58:fd:19:7a:
85:28:48:7f:b1:53:52:3b:1d:0d:cf:33:59:13:fb:cd:0c:1e:
cb:1d:1f:ad:38:18:69:ce:88:0c:ec:81:84:17:70:38:24:27:
db:91:98:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNAJbgLi9NUEPmN3Ed9H9sGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyMTRhN2UyYThjNzAxMjMyNWFlOTczZWQxYTJiYmEwNWIy
YmI5YzEwHhcNMjIwOTE1MDc1NTU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWRiY2YyYWMyNGU5ZWUyZmM2MzVhZjQxMTcyZGJkOWI4NWQyZjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiO8292bWtMwR8IAodJBe8TChx8EG
IDvlzPFkCQviF08gIUdDUjdndoc90Y7ImPyV7g0QE1TTr8noATM6p+jf0Haeigib
z3r4gmJZ+YgNYDnr49hDNnpPZ32BV2Cnm2gjSz9I8wXn1ld6TJmuvIti56wkUgUn
ODv9I0nBds92k0X3qkemxkJ+qTvKmbJy47g/NqgeGJPPhzK3M2fT58M3GP0UEi9S
VQWxN7aixD+j4mRpS86KApS5uhTePeEwjrwRAULSP5F0gZX4+baUnRvZr+ysOsW7
nji4Ny4ltsAeRma/uzXf4uza0SHwepRyVmruQ91/mLGKD5W0we/c97+tMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBnbzyrCTp7i/GNa9BFy29m4XS9qMB8GA1UdIwQY
MBaAFBIUp+KoxwEjJa6XPtGiu6BbK7nBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWhTbjRxakhBU01scnBjLTBhSzdvRnNydWNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9hNjhkYmMtM2Y5NC00ZmVkLThkOWQt
ZTljMzY0OWMxMjE4LzEvR2R2UEtzSk9udUw4WTFyMEVYTGIyYmhkTDJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9hNjhkYmMtM2Y5NC00ZmVkLThkOWQtZTljMzY0OWMxMjE4
LzEvRWhTbjRxakhBU01scnBjLTBhSzdvRnNydWNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXIjMA0G
CSqGSIb3DQEBCwUAA4IBAQAUKRrDxof5/5Be26aDnPatLzivXNkqnVxeiz1yX6Kz
Cx65iroJDqxB5hi6EPKHsTA1RyGDjFCG9G5wcWkiUxcPLj1GnXlcN+1IJVWGUlKh
kW7XTlU7mARagSh4uhU2ISh2MytFGaHDL08hRd/kzewhCa4LZC8PMbB+FZbfelot
4fetSv5+RobBAp6pKi8rQDzNl9tVst5HMnQ2pmu4TE1gdwn0sx+P8Wks1i0KyADL
0RE3/J+6Qg59bVysrWIaL43V76ogTWuSxJc9qI5sKw0BrHoPdFj9GXqFKEh/sVNS
Ox0NzzNZE/vNDB7LHR+tOBhpzogM7IGEF3A4JCfbkZgN
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:54 2023 by rpki-client on console-fra.rpki-client.org