Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Gz7PU8d-o9OFP__PjrJOLbsxXdM.roa
File: Gz7PU8d-o9OFP__PjrJOLbsxXdM.roa (raw, json)
Hash identifier: pOzvczxzwfJQhfRkYQ9//3enVv9K++jJfoy3JXnYxE0=
Subject key identifier: 1B:3E:CF:53:C7:7E:A3:D3:85:3F:FF:CF:8E:B2:4E:2D:BB:31:5D:D3
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 03F0F086
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Gz7PU8d-o9OFP__PjrJOLbsxXdM.roa
Signing time: Sat 01 Jan 2022 03:01:58 +0000
ROA not before: Sat 01 Jan 2022 03:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210223
IP address blocks: 212.113.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66121862 (0x3f0f086)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Jan 1 03:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b3ecf53c77ea3d3853fffcf8eb24e2dbb315dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3a:83:3b:1d:aa:b4:5b:39:5f:57:ef:84:98:
db:a1:84:b4:51:bf:06:52:65:25:7e:72:ec:8d:16:
cd:ed:42:d9:bf:d6:eb:c5:3b:b1:9b:3b:70:ac:59:
5e:6b:98:ce:7c:3b:ca:1a:01:4c:00:4e:37:5e:6e:
00:45:94:1c:37:fd:a5:9d:49:b9:62:12:19:26:c3:
08:e9:07:0a:79:ff:4b:1b:95:61:87:b8:5b:6d:2c:
39:ee:11:32:e0:5c:88:36:e2:0b:cd:80:5e:ba:57:
0f:cf:30:0a:a9:23:f2:29:41:55:76:e0:7c:ce:90:
43:9b:66:f0:5b:6b:ac:a7:d2:94:1f:17:12:75:ea:
88:90:b6:02:f4:1b:9f:ba:d4:50:b4:ba:be:f0:92:
40:2f:6d:ba:5f:7d:6e:ed:15:61:1f:e9:2a:52:d9:
ff:16:c7:c9:35:3b:c1:d6:5f:55:6b:69:ef:ed:02:
62:2e:8b:94:fe:8b:18:53:e6:ba:d0:63:f6:28:2a:
06:f9:18:1f:1f:70:9f:fe:be:f4:3f:8c:9c:0c:ae:
b5:2c:d2:c0:e7:90:69:0f:be:9c:49:83:db:1f:c6:
f5:b8:db:4c:d2:fa:f4:33:84:09:4d:a9:88:c9:b6:
3b:18:2e:dc:69:0d:f1:b8:be:e8:ea:d2:0b:2e:d6:
77:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3E:CF:53:C7:7E:A3:D3:85:3F:FF:CF:8E:B2:4E:2D:BB:31:5D:D3
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Gz7PU8d-o9OFP__PjrJOLbsxXdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.111.0/24
Signature Algorithm: sha256WithRSAEncryption
64:51:03:5a:4a:ce:ba:4c:a1:64:4a:86:04:d9:43:20:05:3f:
b0:d3:52:2f:81:b7:6a:c0:dd:6b:7c:de:c4:26:3e:66:e4:19:
74:ad:f5:fc:7f:d4:6c:11:c3:18:c9:cd:04:10:a7:9b:de:cf:
a8:e5:5f:c7:96:0b:0f:fb:ed:bc:1b:14:09:e7:b0:cf:7e:9c:
bf:65:c7:57:3d:5e:c2:28:7b:91:e1:cb:33:f7:73:0e:14:9b:
e4:5f:87:c2:3f:86:08:1f:73:6b:46:21:04:6e:1a:f1:9d:fb:
ac:af:87:f4:b0:9a:fc:38:87:21:33:99:b4:19:93:cc:f7:26:
16:79:5f:e2:0d:a9:d6:f2:ac:79:21:0f:5d:c5:47:bb:3d:ee:
97:90:a4:89:60:4c:a2:4b:83:3a:c1:42:6f:ab:a1:d9:59:81:
3e:92:45:7f:b5:67:25:b1:7d:3c:4c:f2:58:4c:c8:89:b8:dc:
3b:34:e9:94:f0:16:eb:35:ee:2c:d3:1e:22:41:04:a6:8e:e9:
6f:0f:8e:c5:ba:f8:27:7d:5c:29:b4:7e:7a:21:69:74:60:ef:
72:94:56:99:45:83:7a:25:dc:e8:8f:02:60:09:75:e5:25:22:
8f:e3:96:2f:d5:e1:d0:63:e2:0d:2f:a8:6f:86:3c:a1:ce:c3:
e5:83:6d:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA/DwhjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NGNiZTViNDYyM2RhYjQyZjE1YTkwNTAwMmRiN2NlNjJlODU0ZjI5MB4XDTIyMDEw
MTAzMDE1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWIzZWNmNTNjNzdl
YTNkMzg1M2ZmZmNmOGViMjRlMmRiYjMxNWRkMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL46gzsdqrRbOV9X74SY26GEtFG/BlJlJX5y7I0Wze1C2b/W
68U7sZs7cKxZXmuYznw7yhoBTABON15uAEWUHDf9pZ1JuWISGSbDCOkHCnn/SxuV
YYe4W20sOe4RMuBciDbiC82AXrpXD88wCqkj8ilBVXbgfM6QQ5tm8FtrrKfSlB8X
EnXqiJC2AvQbn7rUULS6vvCSQC9tul99bu0VYR/pKlLZ/xbHyTU7wdZfVWtp7+0C
Yi6LlP6LGFPmutBj9igqBvkYHx9wn/6+9D+MnAyutSzSwOeQaQ++nEmD2x/G9bjb
TNL69DOECU2piMm2Oxgu3GkN8bi+6OrSCy7Wd/cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQbPs9Tx36j04U//8+Osk4tuzFd0zAfBgNVHSMEGDAWgBQEy+W0Yj2rQvFa
kFAC23zmLoVPKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JNdmx0R0k5cTBMeFdwQlFBdHQ4NWk2RlR5ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvM2QzYTJkLWEwMzktNDZmNC04Njg3LTA1NzgxN2JhOWZiNy8x
L0d6N1BVOGQtbzlPRlBfX1BqckpPTGJzeFhkTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
M2QzYTJkLWEwMzktNDZmNC04Njg3LTA1NzgxN2JhOWZiNy8xL0JNdmx0R0k5cTBM
eFdwQlFBdHQ4NWk2RlR5ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANRxbzANBgkqhkiG9w0BAQsFAAOC
AQEAZFEDWkrOukyhZEqGBNlDIAU/sNNSL4G3asDda3zexCY+ZuQZdK31/H/UbBHD
GMnNBBCnm97PqOVfx5YLD/vtvBsUCeewz36cv2XHVz1ewih7keHLM/dzDhSb5F+H
wj+GCB9za0YhBG4a8Z37rK+H9LCa/DiHITOZtBmTzPcmFnlf4g2p1vKseSEPXcVH
uz3ul5CkiWBMokuDOsFCb6uh2VmBPpJFf7VnJbF9PEzyWEzIibjcOzTplPAW6zXu
LNMeIkEEpo7pbw+Oxbr4J31cKbR+eiFpdGDvcpRWmUWDeiXc6I8CYAl15SUij+OW
L9Xh0GPiDS+ob4Y8oc7D5YNtwQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:26 2025 by rpki-client