Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/Gj6adgsc8C3a5SJJuPFRcMH5WbQ.roa
File: Gj6adgsc8C3a5SJJuPFRcMH5WbQ.roa (raw, json)
Hash identifier: lUWUYEtoAg2r6F9rz9S/yJUnGFpB7Ffa+mF/hK5/OBQ=
Subject key identifier: 1A:3E:9A:76:0B:1C:F0:2D:DA:E5:22:49:B8:F1:51:70:C1:F9:59:B4
Certificate issuer: /CN=78167dd9603b9fb7af501559cb3737d47a2d5437
Certificate serial: 01872CD80D1560D6A45D5BF0880C50A5A37E
Authority key identifier: 78:16:7D:D9:60:3B:9F:B7:AF:50:15:59:CB:37:37:D4:7A:2D:54:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eBZ92WA7n7evUBVZyzc31HotVDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/Gj6adgsc8C3a5SJJuPFRcMH5WbQ.roa
Signing time: Wed 29 Mar 2023 10:09:29 +0000
ROA not before: Wed 29 Mar 2023 10:09:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9044
IP address blocks: 185.110.100.0/22 maxlen: 22
2a01:bf00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:d8:0d:15:60:d6:a4:5d:5b:f0:88:0c:50:a5:a3:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78167dd9603b9fb7af501559cb3737d47a2d5437
Validity
Not Before: Mar 29 10:09:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a3e9a760b1cf02ddae52249b8f15170c1f959b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d8:76:4f:95:ea:64:c1:96:d6:69:8e:b6:7d:
fc:0e:07:4c:ed:f3:e7:3e:bf:45:1b:7b:46:a9:36:
62:2e:db:d4:46:b0:34:be:d7:f8:f9:f7:d3:55:0e:
c6:83:08:7b:87:3d:60:0a:49:69:e8:31:64:b1:e0:
d5:73:c3:2b:19:57:69:03:d1:35:20:d2:1d:35:5a:
34:d5:bf:37:b0:b8:05:ff:9d:8f:67:bf:4e:f0:de:
8d:28:0c:ac:18:5f:86:ed:e7:d6:44:ee:d0:78:f0:
0b:3b:29:d5:fc:80:88:f6:bf:c4:7a:2d:fc:65:57:
76:e1:49:ae:88:95:7f:3a:74:d0:4f:5c:77:ca:3b:
fb:0f:4c:66:27:ef:3f:65:67:3b:a8:f4:48:48:0f:
58:6b:c7:ac:b0:55:bb:17:82:3c:b2:7f:40:ea:4d:
a6:88:f8:4d:d7:55:c6:a9:1c:3a:77:e5:84:f4:16:
e8:53:3a:f0:7b:49:5e:4a:56:9a:6f:fe:b3:bb:5f:
44:b6:5f:fb:49:6b:ff:c1:bd:d7:73:bb:96:7c:1b:
76:55:68:a3:2e:35:16:a0:cb:cd:66:ca:46:71:83:
81:7c:e1:03:4c:9c:96:f6:28:c6:4a:05:70:fd:05:
41:1d:d4:1d:ee:26:e6:99:d6:2d:e7:a8:ab:22:4b:
2a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3E:9A:76:0B:1C:F0:2D:DA:E5:22:49:B8:F1:51:70:C1:F9:59:B4
X509v3 Authority Key Identifier:
keyid:78:16:7D:D9:60:3B:9F:B7:AF:50:15:59:CB:37:37:D4:7A:2D:54:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eBZ92WA7n7evUBVZyzc31HotVDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/Gj6adgsc8C3a5SJJuPFRcMH5WbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/eBZ92WA7n7evUBVZyzc31HotVDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.100.0/22
IPv6:
2a01:bf00::/32
Signature Algorithm: sha256WithRSAEncryption
ae:b6:73:26:33:d7:64:bf:f6:4c:ee:02:b9:74:30:0f:e4:c1:
af:c9:d7:e6:24:60:e5:78:93:13:2e:4c:1d:1c:fb:9e:a1:a1:
fe:72:9b:fe:03:bd:18:88:05:dd:b4:00:71:31:fb:62:91:54:
a7:6c:3f:cd:95:43:ac:79:5a:39:1f:14:3f:7e:65:42:0b:22:
e0:88:e8:d9:45:fd:68:2d:1d:7f:c3:b3:a7:34:16:d2:91:01:
0e:64:da:53:ed:56:df:20:70:b4:0e:c6:70:d0:1d:9c:5f:8b:
b3:b3:99:f0:99:39:5d:68:9a:6c:06:00:ae:c1:a4:ab:08:5c:
8c:a3:a1:30:64:fe:c6:14:8b:3c:e7:e8:a3:16:91:01:ac:f0:
99:d9:da:12:b7:4d:32:5a:06:b7:54:17:02:6d:e0:34:66:b5:
82:bc:78:9e:2d:ef:ca:9e:ab:af:6b:0e:33:24:f7:1e:02:0c:
a2:62:c2:74:61:7c:a3:64:7b:93:d8:54:7c:21:96:e7:00:67:
b0:f9:16:fb:1e:40:53:b8:c8:1d:75:9a:2d:2a:7b:ec:e1:e6:
4c:5f:4c:1f:37:f4:24:b7:0e:5f:28:98:c0:51:56:95:96:34:
3b:08:52:5b:c6:37:14:23:90:54:60:08:52:28:cb:00:a8:e0:
f8:0d:d0:d3
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYcs2A0VYNakXVvwiAxQpaN+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4MTY3ZGQ5NjAzYjlmYjdhZjUwMTU1OWNiMzczN2Q0N2Ey
ZDU0MzcwHhcNMjMwMzI5MTAwOTI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTNlOWE3NjBiMWNmMDJkZGFlNTIyNDliOGYxNTE3MGMxZjk1OWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgNh2T5XqZMGW1mmOtn38DgdM7fPn
Pr9FG3tGqTZiLtvURrA0vtf4+ffTVQ7Ggwh7hz1gCklp6DFkseDVc8MrGVdpA9E1
INIdNVo01b83sLgF/52PZ79O8N6NKAysGF+G7efWRO7QePALOynV/ICI9r/Eei38
ZVd24UmuiJV/OnTQT1x3yjv7D0xmJ+8/ZWc7qPRISA9Ya8essFW7F4I8sn9A6k2m
iPhN11XGqRw6d+WE9BboUzrwe0leSlaab/6zu19Etl/7SWv/wb3Xc7uWfBt2VWij
LjUWoMvNZspGcYOBfOEDTJyW9ijGSgVw/QVBHdQd7ibmmdYt56irIksqMQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBo+mnYLHPAt2uUiSbjxUXDB+Vm0MB8GA1UdIwQY
MBaAFHgWfdlgO5+3r1AVWcs3N9R6LVQ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUJaOTJXQTduN2V2VUJWWnl6YzMxSG90VkRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zMGY2OWMtNDEwZS00NmQ0LWI2ZGIt
ZmY4NjU4ZTEzNTZjLzEvR2o2YWRnc2M4QzNhNVNKSnVQRlJjTUg1V2JRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8zMGY2OWMtNDEwZS00NmQ0LWI2ZGItZmY4NjU4ZTEzNTZj
LzEvZUJaOTJXQTduN2V2VUJWWnl6YzMxSG90VkRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuW5kMA0E
AgACMAcDBQAqAb8AMA0GCSqGSIb3DQEBCwUAA4IBAQCutnMmM9dkv/ZM7gK5dDAP
5MGvydfmJGDleJMTLkwdHPueoaH+cpv+A70YiAXdtABxMftikVSnbD/NlUOseVo5
HxQ/fmVCCyLgiOjZRf1oLR1/w7OnNBbSkQEOZNpT7VbfIHC0DsZw0B2cX4uzs5nw
mTldaJpsBgCuwaSrCFyMo6EwZP7GFIs85+ijFpEBrPCZ2doSt00yWga3VBcCbeA0
ZrWCvHieLe/Knquvaw4zJPceAgyiYsJ0YXyjZHuT2FR8IZbnAGew+Rb7HkBTuMgd
dZotKnvs4eZMX0wfN/Qktw5fKJjAUVaVljQ7CFJbxjcUI5BUYAhSKMsAqOD4DdDT
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:13:58 2025 by rpki-client