Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/gQl3xvMq2TuuVgAswYm-V2CxUxQ.roa
File: gQl3xvMq2TuuVgAswYm-V2CxUxQ.roa (raw, json)
Hash identifier: OpFIuep16EgQatPdmSfejgnyPvB5rQri8u4vFv6eXG4=
Subject key identifier: 81:09:77:C6:F3:2A:D9:3B:AE:56:00:2C:C1:89:BE:57:60:B1:53:14
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D351764
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/gQl3xvMq2TuuVgAswYm-V2CxUxQ.roa
Signing time: Sat 07 May 2022 18:11:06 +0000
ROA not before: Sat 07 May 2022 18:11:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38047
IP address blocks: 194.163.70.0/24 maxlen: 24
194.163.69.0/24 maxlen: 24
195.252.172.0/24 maxlen: 24
195.180.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221583204 (0xd351764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 7 18:11:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=810977c6f32ad93bae56002cc189be5760b15314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:25:71:c5:23:77:45:a6:30:4c:70:e6:ed:82:
71:08:16:5b:5e:da:4e:f4:ce:c0:e4:2d:55:13:c1:
b4:40:ee:6e:a4:02:e1:bc:75:b6:8d:fa:7e:4d:db:
83:58:2c:73:d7:51:ac:cf:16:23:24:f8:28:84:6e:
65:fb:a8:1c:24:01:e8:44:c8:c3:69:11:e2:8d:3b:
61:7f:3c:43:6c:db:02:ec:8a:34:5f:0d:cd:dd:6d:
7f:18:cc:b9:66:b1:b7:ff:81:0d:22:71:17:7f:dd:
47:e3:c2:8f:06:1e:d0:35:4a:38:59:17:fb:08:3d:
59:77:63:d6:25:87:fb:06:d2:07:65:4f:fa:c2:ac:
2e:5e:65:62:e5:aa:24:10:d2:00:eb:28:f2:6a:0c:
95:80:41:02:c7:aa:94:bb:44:ae:ca:34:19:fc:69:
7d:25:77:02:05:23:19:58:21:16:2c:23:50:34:d8:
a7:87:cc:60:85:5f:c8:a9:6c:7b:11:b1:be:66:81:
66:e0:3c:1f:4b:a9:50:7e:8d:4b:9a:f0:02:61:27:
e5:75:0a:8c:ae:df:ab:b6:b9:b3:bf:8a:ff:82:2d:
88:96:e2:17:9f:12:84:17:07:ca:58:0b:e5:e3:39:
e9:ec:59:99:a8:c8:2e:3e:56:1c:f2:f6:b6:d3:eb:
53:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:09:77:C6:F3:2A:D9:3B:AE:56:00:2C:C1:89:BE:57:60:B1:53:14
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/gQl3xvMq2TuuVgAswYm-V2CxUxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.69.0-194.163.70.255
195.180.179.0/24
195.252.172.0/24
Signature Algorithm: sha256WithRSAEncryption
69:6d:a8:9d:fe:46:30:d0:c5:df:cc:32:e0:40:82:9d:fe:19:
10:de:b3:e3:9d:a8:71:39:35:c0:d3:33:e2:20:08:47:3b:f9:
db:62:59:98:b1:da:57:64:0b:9b:3d:1a:88:20:8f:2d:ce:68:
ba:17:74:0e:a4:05:3d:a9:52:d1:f0:53:c7:79:0b:eb:f8:5a:
7d:43:9a:5b:89:01:7d:15:4a:9f:bf:8a:16:7e:60:01:94:21:
55:9b:d8:c3:4c:15:d3:78:73:c7:90:7d:8e:6a:5b:41:96:1b:
35:e5:eb:01:fa:41:73:b5:c3:ee:3d:fb:03:9c:fd:3e:53:62:
40:22:f4:aa:56:77:3a:4c:8b:ff:2b:81:6b:f6:ac:f5:1e:73:
66:d0:9b:19:ef:ec:ca:02:83:92:4e:57:e8:93:d6:7c:31:05:
a9:72:71:45:79:8d:21:1c:a1:5d:8a:4a:07:85:66:52:1a:e2:
27:3c:67:11:0f:a9:5f:6b:8e:03:19:56:0f:45:e6:bf:ae:a7:
61:6d:c3:99:5c:76:d4:40:ae:0d:67:4b:39:36:5b:1d:e9:82:
76:0c:d2:b6:72:78:24:81:1e:ce:cb:21:cf:61:39:9b:3a:b0:
00:87:71:d2:43:f7:33:63:39:c4:7d:ad:35:a1:21:c9:e7:a8:
9a:dc:ce:6f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEDTUXZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDUw
NzE4MTEwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODEwOTc3YzZmMzJh
ZDkzYmFlNTYwMDJjYzE4OWJlNTc2MGIxNTMxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL4lccUjd0WmMExw5u2CcQgWW17aTvTOwOQtVRPBtEDubqQC
4bx1to36fk3bg1gsc9dRrM8WIyT4KIRuZfuoHCQB6ETIw2kR4o07YX88Q2zbAuyK
NF8Nzd1tfxjMuWaxt/+BDSJxF3/dR+PCjwYe0DVKOFkX+wg9WXdj1iWH+wbSB2VP
+sKsLl5lYuWqJBDSAOso8moMlYBBAseqlLtErso0GfxpfSV3AgUjGVghFiwjUDTY
p4fMYIVfyKlsexGxvmaBZuA8H0upUH6NS5rwAmEn5XUKjK7fq7a5s7+K/4ItiJbi
F58ShBcHylgL5eM56exZmajILj5WHPL2ttPrU0kCAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBSBCXfG8yrZO65WACzBib5XYLFTFDAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L2dRbDN4dk1xMlR1dVZnQXN3WW0tVjJDeFV4US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGjAMAwQAwqNFAwQAwqNGAwQAw7SzAwQA
w/ysMA0GCSqGSIb3DQEBCwUAA4IBAQBpbaid/kYw0MXfzDLgQIKd/hkQ3rPjnahx
OTXA0zPiIAhHO/nbYlmYsdpXZAubPRqIII8tzmi6F3QOpAU9qVLR8FPHeQvr+Fp9
Q5pbiQF9FUqfv4oWfmABlCFVm9jDTBXTeHPHkH2OaltBlhs15esB+kFztcPuPfsD
nP0+U2JAIvSqVnc6TIv/K4Fr9qz1HnNm0JsZ7+zKAoOSTlfok9Z8MQWpcnFFeY0h
HKFdikoHhWZSGuInPGcRD6lfa44DGVYPRea/rqdhbcOZXHbUQK4NZ0s5Nlsd6YJ2
DNK2cngkgR7OyyHPYTmbOrAAh3HSQ/czYznEfa01oSHJ56ia3M5v
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org