Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/G7xQP6KTOz0OWIxQqBLikTRJWBY.roa
File: G7xQP6KTOz0OWIxQqBLikTRJWBY.roa (raw, json)
Hash identifier: oi2K/4kYXOPaLd9CZIOfELj8zs9MoogZjc40pNDi0AU=
Subject key identifier: 1B:BC:50:3F:A2:93:3B:3D:0E:58:8C:50:A8:12:E2:91:34:49:58:16
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 14C91A3E
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/G7xQP6KTOz0OWIxQqBLikTRJWBY.roa
Signing time: Sat 01 Jan 2022 05:51:54 +0000
ROA not before: Sat 01 Jan 2022 05:51:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48870
IP address blocks: 194.213.100.0/23 maxlen: 23
62.122.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348723774 (0x14c91a3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 1 05:51:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bbc503fa2933b3d0e588c50a812e29134495816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:31:9d:83:01:0b:7e:9a:3e:d7:ab:43:a7:f3:
1d:dd:f1:fa:5a:73:5e:2c:42:1b:85:28:cf:3b:a5:
c4:45:7b:4a:10:ed:e1:8a:8a:04:70:ad:69:49:84:
19:9a:52:5c:1c:b0:d6:b4:01:a1:bf:9b:81:5b:d7:
c0:5b:b2:4a:e2:d3:9e:a8:de:4e:f0:5c:9a:87:b2:
62:1e:15:86:d1:1a:1c:87:77:df:e4:30:e9:ad:cf:
55:95:f7:0f:b6:2c:d2:41:97:9e:73:db:24:d4:95:
96:85:e7:74:24:57:69:ac:45:47:6d:e4:18:5c:ad:
64:be:2c:fd:c0:c7:e7:a4:94:a2:f0:2c:30:5d:3f:
3f:39:fd:53:54:bd:4e:53:e0:98:9f:89:73:e2:1b:
eb:96:ac:86:00:c0:e7:2c:7f:47:31:43:79:ca:7e:
c5:c8:c2:12:ca:db:8b:91:70:eb:01:eb:c6:07:85:
a4:2e:b3:e7:59:33:05:e5:51:0a:76:fd:54:90:2c:
9c:ed:56:14:55:9c:14:5e:06:0d:de:99:e5:0e:18:
57:3d:8f:82:bc:79:d4:db:b4:2c:09:42:04:df:66:
62:b7:b9:fe:cf:e2:89:2a:a3:b8:a1:68:ed:f8:e0:
6a:d0:61:18:38:b0:35:46:a1:24:cd:ed:54:6b:d0:
c1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BC:50:3F:A2:93:3B:3D:0E:58:8C:50:A8:12:E2:91:34:49:58:16
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/G7xQP6KTOz0OWIxQqBLikTRJWBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.16.0/21
194.213.100.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:1d:d2:f0:d3:f3:e7:4f:7b:01:79:07:ac:70:d0:e3:de:ac:
5d:f8:d9:c5:98:e9:19:20:79:b0:2f:7c:39:98:6e:13:56:0c:
f8:bb:9e:f1:b6:dd:44:85:1b:81:a0:51:06:d6:c8:05:e4:f7:
69:54:1a:d1:52:5b:87:e6:6b:8b:0f:71:4b:fb:30:3b:51:ea:
d2:71:c2:36:1a:79:27:2e:a8:d8:1b:03:40:19:d4:bd:c0:8f:
77:34:99:ef:29:1f:d2:39:a1:d9:59:2c:f8:bd:5d:1b:aa:fd:
7a:2d:ca:8b:e3:4a:3c:21:9e:f5:bc:75:f6:e4:f6:30:50:96:
53:23:ff:95:60:0a:f5:c6:de:41:d3:c1:31:1d:d9:69:83:20:
70:44:0f:80:dc:3f:36:5f:d1:d6:b3:81:96:c5:ca:2f:b9:73:
6d:ff:39:64:b8:26:18:74:3a:9e:3a:8a:48:7f:cf:98:fd:f0:
03:ff:4c:3a:0e:f1:d6:12:fb:93:02:82:c1:84:36:0c:30:a5:
15:8c:49:3b:b2:83:d1:37:47:b9:e8:80:e3:54:b0:58:d9:15:
10:c8:b0:64:97:b2:90:20:f6:7f:9d:be:94:b8:73:b0:9e:73:
1f:4b:9d:6d:df:55:d5:82:40:d6:47:0b:f6:e3:f9:e7:60:7b:
da:14:2e:d8
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEFMkaPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OGFkZDliNjcxZjdhMzZlYjIzNjdlMzRmZWU0YmNiMTNiOGY2NmNjMB4XDTIyMDEw
MTA1NTE1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWJiYzUwM2ZhMjkz
M2IzZDBlNTg4YzUwYTgxMmUyOTEzNDQ5NTgxNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4xnYMBC36aPterQ6fzHd3x+lpzXixCG4UozzulxEV7ShDt
4YqKBHCtaUmEGZpSXByw1rQBob+bgVvXwFuySuLTnqjeTvBcmoeyYh4VhtEaHId3
3+Qw6a3PVZX3D7Ys0kGXnnPbJNSVloXndCRXaaxFR23kGFytZL4s/cDH56SUovAs
MF0/Pzn9U1S9TlPgmJ+Jc+Ib65ashgDA5yx/RzFDecp+xcjCEsrbi5Fw6wHrxgeF
pC6z51kzBeVRCnb9VJAsnO1WFFWcFF4GDd6Z5Q4YVz2Pgrx51Nu0LAlCBN9mYre5
/s/iiSqjuKFo7fjgatBhGDiwNUahJM3tVGvQwdsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQbvFA/opM7PQ5YjFCoEuKRNElYFjAfBgNVHSMEGDAWgBSIrdm2cfejbrI2
fjT+5LyxO49mzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lLM1p0bkgzbzI2eU5uNDBfdVM4c1R1UFpzdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzMvM2VkMDBhLTE1ZWUtNDY2NC1hN2YxLWExYjk2YjliNzBmOC8x
L0c3eFFQNktUT3owT1dJeFFxQkxpa1RSSldCWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMv
M2VkMDBhLTE1ZWUtNDY2NC1hN2YxLWExYjk2YjliNzBmOC8xL2lLM1p0bkgzbzI2
eU5uNDBfdVM4c1R1UFpzdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAz56EAMEAcLVZDANBgkqhkiG9w0B
AQsFAAOCAQEALx3S8NPz5097AXkHrHDQ496sXfjZxZjpGSB5sC98OZhuE1YM+Lue
8bbdRIUbgaBRBtbIBeT3aVQa0VJbh+Zriw9xS/swO1Hq0nHCNhp5Jy6o2BsDQBnU
vcCPdzSZ7ykf0jmh2Vks+L1dG6r9ei3Ki+NKPCGe9bx19uT2MFCWUyP/lWAK9cbe
QdPBMR3ZaYMgcEQPgNw/Nl/R1rOBlsXKL7lzbf85ZLgmGHQ6njqKSH/PmP3wA/9M
Og7x1hL7kwKCwYQ2DDClFYxJO7KD0TdHueiA41SwWNkVEMiwZJeykCD2f52+lLhz
sJ5zH0udbd9V1YJA1kcL9uP552B72hQu2A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:16 2023 by rpki-client on console-fra.rpki-client.org