Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/GQEta062VrjvKtj2tdlAX7uHIWA.roa
File: GQEta062VrjvKtj2tdlAX7uHIWA.roa (raw, json)
Hash identifier: YrI2T5vRA8JgILEX+P4BeZ7ADl9XsJsxt0KvCZiXi3o=
Subject key identifier: 19:01:2D:6B:4E:B6:56:B8:EF:2A:D8:F6:B5:D9:40:5F:BB:87:21:60
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 0316C4ED
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/GQEta062VrjvKtj2tdlAX7uHIWA.roa
Signing time: Sat 01 Jan 2022 13:59:19 +0000
ROA not before: Sat 01 Jan 2022 13:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55000
IP address blocks: 45.132.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51823853 (0x316c4ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 13:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19012d6b4eb656b8ef2ad8f6b5d9405fbb872160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2a:df:cc:d5:43:65:a9:97:7a:23:21:02:67:
fc:5b:2d:a3:68:ca:7e:8e:94:54:56:db:bb:c6:a2:
c2:69:36:5c:2d:db:ad:90:dd:d9:3a:81:db:dd:9e:
84:ad:f7:25:c2:77:1c:29:6b:00:b3:11:1f:13:67:
d8:c4:33:70:9b:35:49:c5:df:53:10:cb:a8:43:7b:
ca:6d:99:96:0d:50:6a:ea:a6:67:c1:ac:61:fe:7d:
c6:37:13:aa:da:5f:04:e8:dc:4f:72:53:54:f6:81:
4c:37:49:2c:05:5a:1f:68:5e:4c:19:f8:3c:3f:ab:
7e:c5:2e:8d:d8:b3:26:bf:6a:db:5b:fc:7d:d2:03:
41:a6:7b:af:7e:07:e1:1a:88:37:2e:8e:96:44:9c:
85:ca:0a:f1:18:64:0c:fb:54:07:37:a5:37:62:8a:
9b:e5:90:d8:3f:2e:af:d7:a8:ff:23:39:39:20:e4:
2d:35:06:e3:66:09:1e:6f:2a:ce:eb:74:4c:6b:6a:
67:22:5e:7c:41:0f:07:81:b7:f6:2b:d7:7d:3b:69:
05:29:c1:d1:d1:03:b4:68:53:03:09:84:36:80:a7:
31:4f:b4:aa:87:0f:c0:47:5e:c0:49:c2:d5:5b:67:
69:90:90:14:6c:64:dc:9d:ad:19:c5:dc:35:98:41:
a8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:01:2D:6B:4E:B6:56:B8:EF:2A:D8:F6:B5:D9:40:5F:BB:87:21:60
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/GQEta062VrjvKtj2tdlAX7uHIWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.236.0/22
Signature Algorithm: sha256WithRSAEncryption
22:ca:6f:e1:d6:3d:d3:74:05:80:58:99:1e:55:ce:0a:85:62:
45:83:49:60:42:67:51:cc:56:66:a0:5d:a6:88:99:7d:d3:6e:
cc:14:ba:e8:09:bc:78:ad:e6:e9:2f:0f:5c:d8:0e:f7:df:8d:
fb:95:2b:2c:c0:b9:3e:53:92:74:46:e9:14:49:84:59:11:e7:
5b:16:ce:06:ba:9b:c6:42:c8:29:e7:f7:fc:50:37:db:e6:76:
39:7f:c5:61:87:2b:ff:77:34:67:19:c4:f7:90:ae:47:04:b7:
87:d6:3f:7b:f9:2e:60:25:f1:c4:da:c2:67:e4:27:55:c9:6f:
f4:11:7c:72:35:60:69:47:23:26:d6:a9:5b:39:d2:53:2d:0f:
3c:92:bb:e5:fd:ef:f9:69:fc:02:81:2f:1b:64:67:85:04:9a:
6d:4a:48:d9:a1:c5:b5:d3:b7:61:f6:77:3c:32:75:f5:91:db:
85:9d:52:f7:22:83:b3:af:f0:55:44:62:1d:bc:40:e2:e0:20:
b9:7e:8c:dd:c4:d3:0d:1f:25:df:e0:30:ca:f2:aa:a9:9b:d4:
73:62:18:90:43:18:ee:29:b4:4f:88:88:5a:fd:f5:be:40:79:
3e:64:0d:08:ae:8e:34:77:68:e6:93:0b:d8:91:28:87:37:e9:
df:5e:27:ee
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAxbE7TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDdiNDg3ODQ4ZmZmNjM1MzNkODdjMzI0ZWNjNTFjMmMzZWEyYWRiMB4XDTIyMDEw
MTEzNTkxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTkwMTJkNmI0ZWI2
NTZiOGVmMmFkOGY2YjVkOTQwNWZiYjg3MjE2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOcq38zVQ2Wpl3ojIQJn/Fsto2jKfo6UVFbbu8aiwmk2XC3b
rZDd2TqB292ehK33JcJ3HClrALMRHxNn2MQzcJs1ScXfUxDLqEN7ym2Zlg1Qauqm
Z8GsYf59xjcTqtpfBOjcT3JTVPaBTDdJLAVaH2heTBn4PD+rfsUujdizJr9q21v8
fdIDQaZ7r34H4RqINy6OlkSchcoK8RhkDPtUBzelN2KKm+WQ2D8ur9eo/yM5OSDk
LTUG42YJHm8qzut0TGtqZyJefEEPB4G39ivXfTtpBSnB0dEDtGhTAwmENoCnMU+0
qocPwEdewEnC1VtnaZCQFGxk3J2tGcXcNZhBqI8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQZAS1rTrZWuO8q2Pa12UBfu4chYDAfBgNVHSMEGDAWgBQ0e0h4SP/2NTPY
fDJOzFHCw+oq2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05IdEllRWpfOWpVejJId3lUc3hSd3NQcUt0cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8x
L0dRRXRhMDYyVnJqdkt0ajJ0ZGxBWDd1SElXQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8xL05IdEllRWpfOWpV
ejJId3lUc3hSd3NQcUt0cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2E7DANBgkqhkiG9w0BAQsFAAOC
AQEAIspv4dY903QFgFiZHlXOCoViRYNJYEJnUcxWZqBdpoiZfdNuzBS66Am8eK3m
6S8PXNgO99+N+5UrLMC5PlOSdEbpFEmEWRHnWxbOBrqbxkLIKef3/FA32+Z2OX/F
YYcr/3c0ZxnE95CuRwS3h9Y/e/kuYCXxxNrCZ+QnVclv9BF8cjVgaUcjJtapWznS
Uy0PPJK75f3v+Wn8AoEvG2RnhQSabUpI2aHFtdO3YfZ3PDJ19ZHbhZ1S9yKDs6/w
VURiHbxA4uAguX6M3cTTDR8l3+AwyvKqqZvUc2IYkEMY7im0T4iIWv31vkB5PmQN
CK6ONHdo5pML2JEohzfp314n7g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org