Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1gUBFMHpCSqKKRyLFoIp-q4-YVc.roa
File: 1gUBFMHpCSqKKRyLFoIp-q4-YVc.roa (raw, json)
Hash identifier: 5GWsnm4vlNFH/RZ+ey/xLidS1971OLckhW+ayh1pim8=
Subject key identifier: D6:05:01:14:C1:E9:09:2A:8A:29:1C:8B:16:82:29:FA:AE:3E:61:57
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 09337E89
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1gUBFMHpCSqKKRyLFoIp-q4-YVc.roa
Signing time: Sat 01 Jan 2022 06:00:25 +0000
ROA not before: Sat 01 Jan 2022 06:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 5.253.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154369673 (0x9337e89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6050114c1e9092a8a291c8b168229faae3e6157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:99:60:d6:f6:b8:41:9c:45:20:be:ec:17:94:
db:51:4e:99:ab:5b:30:1f:a3:11:10:e1:66:73:65:
6c:b0:11:fc:66:4e:82:11:37:9c:1d:d3:57:72:9b:
0e:aa:1d:0b:17:dd:ee:15:b3:38:28:17:74:61:f5:
98:d5:de:34:64:c5:b6:e8:15:20:b9:70:84:3c:3b:
f4:ad:10:06:80:3a:38:11:91:93:cf:3c:97:bf:2e:
20:b2:6d:ef:24:e3:23:7b:ef:a6:a8:19:b7:b1:f6:
4f:da:b3:52:af:d1:2c:11:df:e3:15:8f:52:19:86:
44:09:77:75:6e:cf:83:1b:a5:c6:13:e5:e3:3a:2d:
68:c9:de:f5:7f:17:68:30:b0:66:b8:6f:55:5b:2e:
d9:33:69:f5:2c:0d:6f:d5:22:8e:43:b7:9f:23:34:
1e:24:a3:18:dc:e1:51:56:c3:39:bc:31:93:7a:56:
64:db:3e:e3:52:18:63:48:2d:d3:6a:bf:8a:b6:e5:
3e:40:90:ca:f4:fe:d7:1e:6e:df:cc:b0:b0:54:1f:
c3:80:fb:13:da:1a:ca:10:bb:63:b8:c6:50:c1:df:
b4:ef:15:49:de:30:40:81:30:6b:3b:8e:b0:13:f6:
e4:62:2d:2f:b6:c4:44:e9:d7:87:9e:f6:6e:af:f5:
b1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:05:01:14:C1:E9:09:2A:8A:29:1C:8B:16:82:29:FA:AE:3E:61:57
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1gUBFMHpCSqKKRyLFoIp-q4-YVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.247.0/24
Signature Algorithm: sha256WithRSAEncryption
28:18:c9:e8:5f:81:af:19:07:78:d0:25:e8:68:cd:24:c1:90:
54:82:b2:82:5e:99:37:3b:00:cf:82:9e:ac:63:e6:5d:27:33:
c2:c0:75:75:27:98:35:be:f9:f3:35:b0:3a:fb:30:3d:89:99:
90:70:4d:64:2d:b3:bd:2b:ef:fd:b0:57:94:94:1b:93:cf:dd:
22:d6:11:c3:11:3a:8a:b5:64:df:0d:88:f8:2d:e8:5b:01:03:
74:9d:1a:c9:f0:18:74:95:3e:af:cc:b8:f9:bd:07:10:ec:b4:
ea:98:38:21:91:34:79:0c:3e:bd:5d:92:ad:c3:86:c4:90:92:
9a:05:8a:2c:eb:ed:17:ac:44:e1:fb:5d:97:bf:7b:42:a5:37:
46:2b:46:fa:97:2b:fa:dd:3a:a2:55:52:12:08:4e:f9:a2:77:
f9:05:b4:32:4f:ed:5f:f9:c7:89:0b:20:e0:21:4e:82:09:e0:
4f:e7:be:93:a9:19:1e:d2:13:5c:49:e2:f6:ad:08:43:9a:64:
b4:91:91:78:21:1c:08:aa:54:84:0e:b1:1e:cc:5d:ef:27:2a:
fc:d4:ae:f7:e9:04:96:a9:24:a1:89:29:66:43:42:7a:2f:b1:
31:43:22:84:c6:b5:b7:7f:a4:82:8b:9e:39:00:75:33:84:7f:
6b:42:b5:ff
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECTN+iTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YjA0MTViZmM0M2IzOGU5Y2ZkMWExMjk5NTIwMmU4NzYzNzUyZmRlMB4XDTIyMDEw
MTA2MDAyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDYwNTAxMTRjMWU5
MDkyYThhMjkxYzhiMTY4MjI5ZmFhZTNlNjE1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMeZYNb2uEGcRSC+7BeU21FOmatbMB+jERDhZnNlbLAR/GZO
ghE3nB3TV3KbDqodCxfd7hWzOCgXdGH1mNXeNGTFtugVILlwhDw79K0QBoA6OBGR
k888l78uILJt7yTjI3vvpqgZt7H2T9qzUq/RLBHf4xWPUhmGRAl3dW7PgxulxhPl
4zotaMne9X8XaDCwZrhvVVsu2TNp9SwNb9UijkO3nyM0HiSjGNzhUVbDObwxk3pW
ZNs+41IYY0gt02q/irblPkCQyvT+1x5u38ywsFQfw4D7E9oayhC7Y7jGUMHftO8V
Sd4wQIEwazuOsBP25GItL7bEROnXh572bq/1sR0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTWBQEUwekJKoopHIsWgin6rj5hVzAfBgNVHSMEGDAWgBQbBBW/xDs46c/R
oSmVIC6HY3Uv3jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0d3UVZ2OFE3T09uUDBhRXBsU0F1aDJOMUw5NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvMDk0MDgxLThhZWItNDJiZi1hNTc4LWEzY2EwZGI4MzI1NC8x
LzFnVUJGTUhwQ1NxS0tSeUxGb0lwLXE0LVlWYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
MDk0MDgxLThhZWItNDJiZi1hNTc4LWEzY2EwZGI4MzI1NC8xL0d3UVZ2OFE3T09u
UDBhRXBsU0F1aDJOMUw5NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAX99zANBgkqhkiG9w0BAQsFAAOC
AQEAKBjJ6F+BrxkHeNAl6GjNJMGQVIKygl6ZNzsAz4KerGPmXSczwsB1dSeYNb75
8zWwOvswPYmZkHBNZC2zvSvv/bBXlJQbk8/dItYRwxE6irVk3w2I+C3oWwEDdJ0a
yfAYdJU+r8y4+b0HEOy06pg4IZE0eQw+vV2SrcOGxJCSmgWKLOvtF6xE4ftdl797
QqU3RitG+pcr+t06olVSEghO+aJ3+QW0Mk/tX/nHiQsg4CFOggngT+e+k6kZHtIT
XEni9q0IQ5pktJGReCEcCKpUhA6xHsxd7ycq/NSu9+kElqkkoYkpZkNCei+xMUMi
hMa1t3+kgoueOQB1M4R/a0K1/w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org