Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gV-Y0gRWQQJPaf93XllDeAl_gag.roa
File: gV-Y0gRWQQJPaf93XllDeAl_gag.roa (raw, json)
Hash identifier: BE74aCZ5ypPFWyavEnlozpY1zesAQloYoq/2y8NVt8M=
Subject key identifier: 81:5F:98:D2:04:56:41:02:4F:69:FF:77:5E:59:43:78:09:7F:81:A8
Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Certificate serial: 0AAB88FB
Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gV-Y0gRWQQJPaf93XllDeAl_gag.roa
Signing time: Sat 01 Jan 2022 02:57:53 +0000
ROA not before: Sat 01 Jan 2022 02:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 65725
IP address blocks: 160.218.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179013883 (0xaab88fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Validity
Not Before: Jan 1 02:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=815f98d2045641024f69ff775e594378097f81a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7f:66:d6:2c:a5:64:e9:ac:66:a4:38:b2:7d:
ee:aa:2f:12:74:02:b1:a0:56:a2:ef:ac:51:a4:3a:
5d:e2:4c:fc:c6:42:94:b7:d6:d1:6f:88:8c:e6:79:
a5:92:88:36:e1:84:43:a5:27:21:b5:f1:6e:8a:8e:
ec:f4:a4:28:2c:a9:d4:53:a1:59:a6:df:8b:c6:87:
78:f2:d7:fd:35:62:cf:3c:20:42:3a:8f:d4:de:33:
5e:7c:0a:11:d3:67:8c:f0:6c:ff:85:38:c3:b1:a9:
ea:3c:6a:45:21:9f:12:66:03:f2:5c:ce:f4:41:66:
79:cd:82:e4:af:f5:78:f3:c4:ce:62:e4:e9:04:d8:
3f:93:0f:47:7b:fe:74:79:6d:00:80:b8:5f:b4:4c:
43:cc:2d:70:3a:16:dc:d8:1d:01:63:b0:16:c0:4f:
27:cd:c5:36:80:64:21:f5:2e:78:d9:ba:8f:61:e7:
0f:fa:d3:ac:ec:d7:7f:91:71:dc:f6:af:6e:64:f0:
8b:70:dc:e0:11:4d:95:cb:aa:e9:0f:c3:ca:6a:4b:
e1:3c:1b:99:de:cf:00:e5:78:7d:56:62:08:c0:cd:
28:b6:db:ac:85:9c:71:b5:75:40:3d:8e:08:02:56:
c5:87:99:b5:9f:0f:17:95:56:4e:45:49:f8:dd:6f:
8e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5F:98:D2:04:56:41:02:4F:69:FF:77:5E:59:43:78:09:7F:81:A8
X509v3 Authority Key Identifier:
keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gV-Y0gRWQQJPaf93XllDeAl_gag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.218.212.0/22
Signature Algorithm: sha256WithRSAEncryption
84:8a:3e:92:3a:89:16:65:48:71:27:22:c6:d7:62:a5:09:e5:
db:e4:db:9e:da:56:3e:5e:22:7d:ad:37:aa:f0:51:9e:d8:c5:
fb:01:0d:6a:27:79:b8:f7:2e:3c:5a:fc:4c:75:53:4a:2d:d8:
1e:52:b7:65:73:96:42:51:af:c2:1e:c8:69:8e:fb:c1:e3:b9:
38:d0:6a:bc:4e:a5:9e:22:31:b1:ee:a4:6d:38:fd:e4:f5:5e:
6f:b0:eb:23:16:15:4c:36:94:25:de:d6:44:ef:fb:16:20:30:
4f:02:38:4b:59:90:d9:d9:b5:a0:ef:55:cf:42:3b:e0:fc:5e:
ed:d0:e0:b5:91:34:2e:a2:d0:f9:22:20:44:cf:ef:33:bb:ec:
a2:1d:b8:cd:f6:77:b9:22:00:26:e6:4b:0f:11:84:46:71:f5:
13:fb:78:66:6a:f6:1d:6d:e0:65:22:cc:86:20:8a:27:16:95:
ee:af:be:b3:f0:b5:b8:f4:e7:7f:af:da:af:34:95:73:ca:5b:
63:ee:3d:ea:cc:d9:d1:3c:0d:5b:85:c6:c1:7c:90:42:ee:32:
9c:88:bf:30:47:f6:f9:d4:56:e1:96:f1:99:eb:0b:1d:8c:6c:
d6:b9:e5:aa:d4:de:9f:67:0f:7e:3f:47:fa:44:59:80:cd:70:
9f:5d:9f:b8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECquI+zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NWQ2YzZlOGJjZWQ0MGJkMDMyZDE3NzE4YzFiMWUzOWFlODQxYWU4MB4XDTIyMDEw
MTAyNTc1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODE1Zjk4ZDIwNDU2
NDEwMjRmNjlmZjc3NWU1OTQzNzgwOTdmODFhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI9/ZtYspWTprGakOLJ97qovEnQCsaBWou+sUaQ6XeJM/MZC
lLfW0W+IjOZ5pZKINuGEQ6UnIbXxboqO7PSkKCyp1FOhWabfi8aHePLX/TVizzwg
QjqP1N4zXnwKEdNnjPBs/4U4w7Gp6jxqRSGfEmYD8lzO9EFmec2C5K/1ePPEzmLk
6QTYP5MPR3v+dHltAIC4X7RMQ8wtcDoW3NgdAWOwFsBPJ83FNoBkIfUueNm6j2Hn
D/rTrOzXf5Fx3PavbmTwi3Dc4BFNlcuq6Q/DympL4Twbmd7PAOV4fVZiCMDNKLbb
rIWccbV1QD2OCAJWxYeZtZ8PF5VWTkVJ+N1vjskCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSBX5jSBFZBAk9p/3deWUN4CX+BqDAfBgNVHSMEGDAWgBTl1sbovO1AvQMt
F3GMGx45roQa6DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVkYkc2THp0UUwwRExSZHhqQnNlT2E2RUd1Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvMDg5NGY3LWUyNGQtNDcyOC04Y2FkLWJkMjQ5YjYyNTc5Ny8x
L2dWLVkwZ1JXUVFKUGFmOTNYbGxEZUFsX2dhZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
MDg5NGY3LWUyNGQtNDcyOC04Y2FkLWJkMjQ5YjYyNTc5Ny8xLzVkYkc2THp0UUww
RExSZHhqQnNlT2E2RUd1Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqDa1DANBgkqhkiG9w0BAQsFAAOC
AQEAhIo+kjqJFmVIcScixtdipQnl2+TbntpWPl4ifa03qvBRntjF+wENaid5uPcu
PFr8THVTSi3YHlK3ZXOWQlGvwh7IaY77weO5ONBqvE6lniIxse6kbTj95PVeb7Dr
IxYVTDaUJd7WRO/7FiAwTwI4S1mQ2dm1oO9Vz0I74Pxe7dDgtZE0LqLQ+SIgRM/v
M7vsoh24zfZ3uSIAJuZLDxGERnH1E/t4Zmr2HW3gZSLMhiCKJxaV7q++s/C1uPTn
f6/arzSVc8pbY+496szZ0TwNW4XGwXyQQu4ynIi/MEf2+dRW4ZbxmesLHYxs1rnl
qtTen2cPfj9H+kRZgM1wn12fuA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org