Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/gzaNgjxe6qqWJ5Y0k_M8LisPnlU.roa
File: gzaNgjxe6qqWJ5Y0k_M8LisPnlU.roa (raw, json)
Hash identifier: KTmSau/WX+X2geAAQBdhUyx3SEaarq4sq/pT1S3PojM=
Subject key identifier: 83:36:8D:82:3C:5E:EA:AA:96:27:96:34:93:F3:3C:2E:2B:0F:9E:55
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 01838DDFA9D825023530304B1485B949507B
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/gzaNgjxe6qqWJ5Y0k_M8LisPnlU.roa
Signing time: Fri 30 Sep 2022 10:09:48 +0000
ROA not before: Fri 30 Sep 2022 10:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210756
IP address blocks: 2a03:90c0:b0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8d:df:a9:d8:25:02:35:30:30:4b:14:85:b9:49:50:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: Sep 30 10:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83368d823c5eeaaa9627963493f33c2e2b0f9e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:08:4a:3b:a3:54:b5:c4:fa:0e:9c:a3:02:8b:
d4:40:b3:6a:82:08:9f:9c:3f:c6:a5:75:0c:b0:63:
a3:5a:a7:6f:e6:4e:6e:a3:c0:1a:2a:1a:c2:c2:32:
cb:bd:b5:cb:79:22:b3:8a:56:9c:c9:1a:a5:0a:68:
b0:51:84:d0:6b:74:10:82:60:be:bd:54:e4:0d:3e:
71:1d:62:9a:b6:a6:9a:2a:c2:c8:56:ff:04:de:e4:
50:a8:82:de:83:67:a2:d2:36:f7:11:61:0d:0c:64:
26:3c:8a:7e:15:0d:55:1f:b9:d4:fc:08:bc:b6:80:
f2:71:b8:20:88:b8:4f:a4:bc:22:17:33:75:7d:0c:
cf:6c:7c:ef:03:da:f9:f3:2e:a5:aa:cb:9c:5c:88:
c8:e1:2b:6a:45:28:70:6a:59:92:7b:9c:be:d7:ea:
96:d3:9f:f1:2b:53:25:1e:0c:e4:04:b3:51:e2:32:
95:ed:1b:b2:b3:b5:81:43:f8:04:35:bf:70:82:b3:
2e:c8:bc:58:de:c6:89:8d:1e:6c:f1:7c:a9:02:d1:
f4:37:4f:e5:e3:37:0a:0c:d1:c0:c2:f9:84:c3:33:
77:ad:bc:8f:02:1c:b4:68:50:ae:c4:fb:b4:e2:cf:
cb:0f:74:d2:89:74:5f:8c:ef:ab:e8:f4:46:7b:cd:
a1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:36:8D:82:3C:5E:EA:AA:96:27:96:34:93:F3:3C:2E:2B:0F:9E:55
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/gzaNgjxe6qqWJ5Y0k_M8LisPnlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:90c0:b0::/44
Signature Algorithm: sha256WithRSAEncryption
67:42:14:4b:d7:39:0a:97:47:a1:1f:34:10:99:31:a1:bb:38:
76:46:0e:47:fd:16:23:fb:9b:11:09:da:1a:64:67:d0:34:89:
89:a0:18:14:56:0a:36:c8:4a:97:fa:bb:a8:10:65:3d:fc:dd:
cc:e1:4f:19:c0:2a:91:7a:cf:56:de:ac:f8:20:6e:37:48:a1:
4b:f3:0a:f2:ba:18:1d:ce:03:3d:49:54:6a:07:65:44:55:1b:
69:bb:4b:57:91:52:37:b4:76:37:76:b7:70:83:58:75:4f:6c:
d1:13:d8:04:09:9a:62:83:6a:1a:bb:70:bb:f0:dd:72:8b:17:
f0:be:f9:1e:28:29:a5:3c:a5:c3:24:5d:4c:27:e5:65:9e:4c:
41:d7:39:3c:77:bf:b9:c6:59:8f:f8:19:1c:0b:da:07:1c:93:
34:80:f7:81:f3:72:e5:0a:2c:16:38:19:46:83:34:ac:cf:1d:
45:d1:60:f7:16:19:6f:07:fe:ec:cc:0a:00:15:dc:c2:80:1a:
60:37:39:40:6f:69:75:4c:3d:ca:ea:67:7b:44:1b:6c:d1:a3:
34:57:f0:ad:07:18:62:f0:68:b8:43:4b:aa:a4:66:ff:cf:9d:
76:f0:ea:70:dc:f3:ef:78:d8:26:c9:59:cc:24:bb:6b:8e:89:
f9:69:17:7f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYON36nYJQI1MDBLFIW5SVB7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw
MDhhZWMwHhcNMjIwOTMwMTAwOTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzM2OGQ4MjNjNWVlYWFhOTYyNzk2MzQ5M2YzM2MyZTJiMGY5ZTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQhKO6NUtcT6DpyjAovUQLNqggif
nD/GpXUMsGOjWqdv5k5uo8AaKhrCwjLLvbXLeSKzilacyRqlCmiwUYTQa3QQgmC+
vVTkDT5xHWKatqaaKsLIVv8E3uRQqILeg2ei0jb3EWENDGQmPIp+FQ1VH7nU/Ai8
toDycbggiLhPpLwiFzN1fQzPbHzvA9r58y6lqsucXIjI4StqRShwalmSe5y+1+qW
05/xK1MlHgzkBLNR4jKV7Ruys7WBQ/gENb9wgrMuyLxY3saJjR5s8XypAtH0N0/l
4zcKDNHAwvmEwzN3rbyPAhy0aFCuxPu04s/LD3TSiXRfjO+r6PRGe82hQwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIM2jYI8XuqqlieWNJPzPC4rD55VMB8GA1UdIwQY
MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt
YjA3ZDg0MTZhZTRhLzEvZ3phTmdqeGU2cXFXSjVZMGtfTThMaXNQbmxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh
LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgOQwACw
MA0GCSqGSIb3DQEBCwUAA4IBAQBnQhRL1zkKl0ehHzQQmTGhuzh2Rg5H/RYj+5sR
CdoaZGfQNImJoBgUVgo2yEqX+ruoEGU9/N3M4U8ZwCqRes9W3qz4IG43SKFL8wry
uhgdzgM9SVRqB2VEVRtpu0tXkVI3tHY3drdwg1h1T2zRE9gECZpig2oau3C78N1y
ixfwvvkeKCmlPKXDJF1MJ+VlnkxB1zk8d7+5xlmP+BkcC9oHHJM0gPeB83LlCiwW
OBlGgzSszx1F0WD3FhlvB/7szAoAFdzCgBpgNzlAb2l1TD3K6md7RBts0aM0V/Ct
Bxhi8Gi4Q0uqpGb/z5128Opw3PPveNgmyVnMJLtrjon5aRd/
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org