Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/gg5eoANF7rWeUCE81mBBTnuGcMg.roa
File: gg5eoANF7rWeUCE81mBBTnuGcMg.roa (raw, json)
Hash identifier: 5jBbyeiIp84ab7uJv5CcQKv2d8gvql+eb1MqKfdS1T0=
Subject key identifier: 82:0E:5E:A0:03:45:EE:B5:9E:50:21:3C:D6:60:41:4E:7B:86:70:C8
Certificate issuer: /CN=0ecc8ca4bed1955b5155bc090c560efba3f5a9ad
Certificate serial: 089B9752
Authority key identifier: 0E:CC:8C:A4:BE:D1:95:5B:51:55:BC:09:0C:56:0E:FB:A3:F5:A9:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DsyMpL7RlVtRVbwJDFYO-6P1qa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/gg5eoANF7rWeUCE81mBBTnuGcMg.roa
Signing time: Thu 14 Apr 2022 09:41:39 +0000
ROA not before: Thu 14 Apr 2022 09:41:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20900
IP address blocks: 91.238.150.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144414546 (0x89b9752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecc8ca4bed1955b5155bc090c560efba3f5a9ad
Validity
Not Before: Apr 14 09:41:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=820e5ea00345eeb59e50213cd660414e7b8670c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:36:9a:7e:3a:40:8f:67:3c:5e:a5:c8:08:8f:
60:e1:65:9a:62:10:49:4d:42:3f:eb:00:83:11:8a:
f3:cd:de:04:19:2c:ab:da:59:48:e4:5a:e3:97:ae:
88:c1:8c:26:1f:4b:73:3f:b9:c1:e1:00:78:61:2e:
01:e3:40:78:98:f8:ba:31:d1:1a:a8:ce:e4:f2:3c:
5c:4f:9c:89:f8:da:74:a9:b6:1f:09:d5:ec:a2:2a:
b4:da:30:bd:b1:65:fc:62:34:51:9a:30:34:71:f3:
9f:82:6a:ce:a5:85:a8:b1:b3:1b:79:26:4e:fd:75:
dd:1d:d7:71:18:ba:79:53:ae:cc:36:5c:28:6e:d8:
60:8e:aa:85:4d:e7:d1:7e:85:2c:76:28:e5:d5:a7:
fe:fc:d0:47:5f:47:7e:1f:68:8e:fd:56:62:07:27:
2c:24:36:06:d3:0e:d1:16:a3:da:6e:0d:f5:05:8b:
bd:2c:53:68:55:26:7e:2f:5e:d8:ab:cd:d4:ac:d1:
b5:41:e5:06:55:8c:dc:1f:04:07:e6:a1:b6:2d:03:
bb:e2:de:02:ef:70:2d:5e:ac:aa:59:05:c3:c3:0a:
a0:eb:ea:9b:82:41:c0:ce:73:18:ae:c2:d5:15:70:
fa:96:e4:2c:f7:4b:4e:c7:ac:74:56:61:dc:99:ca:
6a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0E:5E:A0:03:45:EE:B5:9E:50:21:3C:D6:60:41:4E:7B:86:70:C8
X509v3 Authority Key Identifier:
keyid:0E:CC:8C:A4:BE:D1:95:5B:51:55:BC:09:0C:56:0E:FB:A3:F5:A9:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DsyMpL7RlVtRVbwJDFYO-6P1qa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/gg5eoANF7rWeUCE81mBBTnuGcMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/810ceb-dc1f-43bd-a6a6-77d0b23ef36e/1/DsyMpL7RlVtRVbwJDFYO-6P1qa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.150.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:87:86:bb:cd:bc:01:31:18:e5:b2:c6:4e:7d:7c:ab:58:6c:
04:40:64:d0:c2:cb:3f:6c:9e:ee:e3:f9:26:71:1c:80:a1:d4:
50:e4:72:b2:3b:55:d3:58:65:4d:22:b7:1b:f0:64:9e:27:88:
d9:57:ca:61:1a:86:71:d7:00:90:12:08:8f:3c:72:7d:c3:14:
06:57:35:64:0e:6b:00:2c:6e:4b:d8:83:4c:2e:95:90:d4:bb:
c3:2c:83:1d:1b:16:00:e5:fc:d6:9e:e2:65:b3:69:92:07:7a:
ca:ee:33:e2:fe:39:fb:4d:5b:d9:10:67:06:0d:3e:a5:01:d9:
eb:ab:31:f3:75:03:36:3c:34:69:98:49:02:9f:70:cb:d2:f3:
82:79:c7:1b:21:e1:9a:a3:b7:87:ed:7b:b6:89:43:3d:6b:6c:
40:85:29:1f:29:9c:ec:8e:e7:2e:00:9a:8d:93:70:65:6a:32:
70:8b:3f:07:47:85:c3:52:c2:94:c8:1f:aa:ea:44:2b:8c:8f:
3f:88:8d:55:80:2a:76:b4:cd:6a:85:82:cb:fc:4e:52:b7:b0:
a5:2a:5f:0e:dc:03:3a:c5:f8:37:fc:67:05:a1:cd:c9:6b:78:
34:83:5a:59:42:2b:77:24:e5:04:79:56:ef:0a:37:e5:e4:55:
06:a2:2c:b9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECJuXUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZWNjOGNhNGJlZDE5NTViNTE1NWJjMDkwYzU2MGVmYmEzZjVhOWFkMB4XDTIyMDQx
NDA5NDEzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODIwZTVlYTAwMzQ1
ZWViNTllNTAyMTNjZDY2MDQxNGU3Yjg2NzBjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALs2mn46QI9nPF6lyAiPYOFlmmIQSU1CP+sAgxGK883eBBks
q9pZSORa45euiMGMJh9Lcz+5weEAeGEuAeNAeJj4ujHRGqjO5PI8XE+cifjadKm2
HwnV7KIqtNowvbFl/GI0UZowNHHzn4JqzqWFqLGzG3kmTv113R3XcRi6eVOuzDZc
KG7YYI6qhU3n0X6FLHYo5dWn/vzQR19Hfh9ojv1WYgcnLCQ2BtMO0Raj2m4N9QWL
vSxTaFUmfi9e2KvN1KzRtUHlBlWM3B8EB+ahti0Du+LeAu9wLV6sqlkFw8MKoOvq
m4JBwM5zGK7C1RVw+pbkLPdLTsesdFZh3JnKav8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCDl6gA0XutZ5QITzWYEFOe4ZwyDAfBgNVHSMEGDAWgBQOzIykvtGVW1FV
vAkMVg77o/WprTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RzeU1wTDdSbFZ0UlZid0pERllPLTZQMXFhMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvODEwY2ViLWRjMWYtNDNiZC1hNmE2LTc3ZDBiMjNlZjM2ZS8x
L2dnNWVvQU5GN3JXZVVDRTgxbUJCVG51R2NNZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
ODEwY2ViLWRjMWYtNDNiZC1hNmE2LTc3ZDBiMjNlZjM2ZS8xL0RzeU1wTDdSbFZ0
UlZid0pERllPLTZQMXFhMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvuljANBgkqhkiG9w0BAQsFAAOC
AQEAjoeGu828ATEY5bLGTn18q1hsBEBk0MLLP2ye7uP5JnEcgKHUUORysjtV01hl
TSK3G/BknieI2VfKYRqGcdcAkBIIjzxyfcMUBlc1ZA5rACxuS9iDTC6VkNS7wyyD
HRsWAOX81p7iZbNpkgd6yu4z4v45+01b2RBnBg0+pQHZ66sx83UDNjw0aZhJAp9w
y9LzgnnHGyHhmqO3h+17tolDPWtsQIUpHymc7I7nLgCajZNwZWoycIs/B0eFw1LC
lMgfqupEK4yPP4iNVYAqdrTNaoWCy/xOUrewpSpfDtwDOsX4N/xnBaHNyWt4NINa
WUIrdyTlBHlW7wo35eRVBqIsuQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:20:09 2025 by rpki-client