Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/gv00j2h9Cqh7teQY9nQu6y85fCw.roa
File: gv00j2h9Cqh7teQY9nQu6y85fCw.roa (raw, json)
Hash identifier: vJt6dxWd0yLEJ11ah+Caf3GKuZnMTQ54pdZYj3QZT6o=
Subject key identifier: 82:FD:34:8F:68:7D:0A:A8:7B:B5:E4:18:F6:74:2E:EB:2F:39:7C:2C
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 09056B03
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/gv00j2h9Cqh7teQY9nQu6y85fCw.roa
Signing time: Sat 01 Jan 2022 07:59:20 +0000
ROA not before: Sat 01 Jan 2022 07:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 150.217.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151350019 (0x9056b03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Jan 1 07:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82fd348f687d0aa87bb5e418f6742eeb2f397c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a3:f2:a5:eb:5e:1e:50:58:bf:d4:f0:24:0f:
ef:9c:61:5f:f4:9b:4f:b0:35:e4:1e:39:6f:8a:c7:
6e:ee:17:ca:fb:84:8f:b3:7a:79:82:a6:51:d3:54:
45:e3:f9:28:6c:bf:26:25:8a:bf:78:6d:47:7b:76:
c0:fe:7a:9f:72:c4:68:27:66:02:5e:51:1b:b4:8a:
c6:f4:9f:f1:c0:16:be:eb:19:40:8a:cf:6a:5c:e6:
06:d2:b3:39:1c:c7:5b:1b:bb:57:44:bb:83:24:5e:
25:2d:34:c4:2c:4f:75:9d:16:b6:29:e0:21:32:a8:
73:af:dd:a4:21:97:40:86:17:c5:53:00:e6:e7:1d:
68:37:7d:48:be:4c:53:d4:2a:be:c3:7f:ef:fe:e3:
e5:52:18:75:c4:f3:52:36:77:3c:f2:64:b6:9e:7f:
e9:9d:d7:8f:b8:71:f0:5a:e8:d8:5d:53:ab:05:67:
e9:53:2a:25:cd:90:c0:57:2f:58:f6:fc:a3:6b:ed:
e0:64:ff:84:81:9d:ed:bc:7e:ab:e2:f0:4f:02:11:
2b:bd:45:7d:df:00:1c:d0:ec:35:48:84:6e:34:af:
b3:00:e3:4a:6b:94:e6:b1:06:69:93:6f:05:97:d7:
ba:46:e7:89:cd:07:07:c4:a4:47:71:73:67:ce:c1:
46:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FD:34:8F:68:7D:0A:A8:7B:B5:E4:18:F6:74:2E:EB:2F:39:7C:2C
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/gv00j2h9Cqh7teQY9nQu6y85fCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.217.0.0/16
Signature Algorithm: sha256WithRSAEncryption
37:c6:09:68:ce:10:ce:e1:67:fe:e8:c0:eb:ab:aa:25:15:e2:
eb:66:95:f5:8c:53:38:0c:51:b1:a5:01:71:e3:70:f9:20:f2:
7a:8c:86:ef:04:cc:1c:9a:26:63:8c:0c:6a:d6:37:68:ea:36:
45:c9:02:c6:df:4b:a9:b8:a1:8c:a2:d9:e4:cb:3b:72:3a:e3:
9a:a4:7f:ff:7d:72:b6:a2:82:bd:a9:78:72:e8:2b:6b:f2:ad:
a6:f8:11:c9:e9:79:5f:b3:03:67:12:d0:49:a0:2f:ef:90:bc:
78:59:78:70:a0:28:ca:74:5c:44:e3:ba:53:15:ad:60:fc:0c:
2d:04:cb:09:12:b4:87:99:4e:83:f2:77:33:16:ae:e2:2d:0a:
f3:87:15:98:ff:17:87:ea:16:9e:41:2b:26:76:a3:ee:3f:4d:
09:9c:8a:6a:12:f0:99:9d:15:13:38:07:97:92:42:20:de:ce:
17:cf:ac:e7:ec:6d:b5:c9:f0:b7:e1:c8:12:a3:09:b4:bc:56:
52:79:a2:e0:d4:c4:3a:b8:1f:54:e0:83:b3:17:a5:6a:90:c9:
36:c9:ce:00:a6:36:1c:cd:76:6e:71:f0:c6:e9:40:47:c4:a0:
f2:4c:34:47:72:57:3f:b8:39:ea:21:41:d1:43:96:b2:0e:66:
19:4b:6f:07
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIECQVrAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
Y2E1MDliMzUwMTFlZDcxNjYzOTUyYmEwZTBjM2MzODQ1N2Y5ZDA3MB4XDTIyMDEw
MTA3NTkyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODJmZDM0OGY2ODdk
MGFhODdiYjVlNDE4ZjY3NDJlZWIyZjM5N2MyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOGj8qXrXh5QWL/U8CQP75xhX/SbT7A15B45b4rHbu4XyvuE
j7N6eYKmUdNUReP5KGy/JiWKv3htR3t2wP56n3LEaCdmAl5RG7SKxvSf8cAWvusZ
QIrPalzmBtKzORzHWxu7V0S7gyReJS00xCxPdZ0WtingITKoc6/dpCGXQIYXxVMA
5ucdaDd9SL5MU9QqvsN/7/7j5VIYdcTzUjZ3PPJktp5/6Z3Xj7hx8Fro2F1TqwVn
6VMqJc2QwFcvWPb8o2vt4GT/hIGd7bx+q+LwTwIRK71Ffd8AHNDsNUiEbjSvswDj
SmuU5rEGaZNvBZfXukbnic0HB8SkR3FzZ87BRqkCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBSC/TSPaH0KqHu15Bj2dC7rLzl8LDAfBgNVHSMEGDAWgBRMpQmzUBHtcWY5
UroODDw4RX+dBzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RLVUpzMUFSN1hGbU9WSzZEZ3c4T0VWX25RYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjEvMGExMzFlLTM3YzYtNDVjYi05NjgyLTBiMGMxMmIyMmJmOS8x
L2d2MDBqMmg5Q3FoN3RlUVk5blF1Nnk4NWZDdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjEv
MGExMzFlLTM3YzYtNDVjYi05NjgyLTBiMGMxMmIyMmJmOS8xL1RLVUpzMUFSN1hG
bU9WSzZEZ3c4T0VWX25RYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJbZMA0GCSqGSIb3DQEBCwUAA4IB
AQA3xglozhDO4Wf+6MDrq6olFeLrZpX1jFM4DFGxpQFx43D5IPJ6jIbvBMwcmiZj
jAxq1jdo6jZFyQLG30upuKGMotnkyztyOuOapH//fXK2ooK9qXhy6Ctr8q2m+BHJ
6XlfswNnEtBJoC/vkLx4WXhwoCjKdFxE47pTFa1g/AwtBMsJErSHmU6D8nczFq7i
LQrzhxWY/xeH6haeQSsmdqPuP00JnIpqEvCZnRUTOAeXkkIg3s4Xz6zn7G21yfC3
4cgSowm0vFZSeaLg1MQ6uB9U4IOzF6VqkMk2yc4ApjYczXZucfDG6UBHxKDyTDRH
clc/uDnqIUHRQ5ayDmYZS28H
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:08 2024 by rpki-client on console-fra.rpki-client.org