Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GZnPBP273R67ne9bBir0PuJjbdE.roa
File: GZnPBP273R67ne9bBir0PuJjbdE.roa (raw, json)
Hash identifier: /L70tolUzVssv0EjafH8aTu1HmmygA6CEtaxfD7acSs=
Subject key identifier: 19:99:CF:04:FD:BB:DD:1E:BB:9D:EF:5B:06:2A:F4:3E:E2:63:6D:D1
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 07B8F9BE
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GZnPBP273R67ne9bBir0PuJjbdE.roa
Signing time: Mon 07 Mar 2022 07:32:15 +0000
ROA not before: Mon 07 Mar 2022 07:32:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49870
IP address blocks: 185.230.13.0/24 maxlen: 24
77.90.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129563070 (0x7b8f9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Mar 7 07:32:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1999cf04fdbbdd1ebb9def5b062af43ee2636dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:5b:13:d4:53:68:0a:17:5d:b5:fd:59:0e:4a:
ad:02:ff:7c:ab:e5:1c:94:27:c0:74:3d:41:c4:01:
18:c4:7c:8c:80:4f:9c:d2:e6:2d:9e:f8:5f:69:31:
f4:5c:28:dc:2e:09:36:56:82:d6:83:af:ce:75:a6:
97:96:97:6b:4b:a4:2d:20:72:e6:7b:48:83:de:e5:
5e:13:1b:d3:58:71:98:0f:8a:de:a7:73:8d:1b:e8:
ab:3e:3c:59:d3:ae:ca:7a:c9:7e:59:57:db:36:14:
5e:0c:25:ae:4f:e3:ea:6c:bb:0b:8d:84:61:ab:92:
4c:7f:3f:9d:59:5e:2d:58:fb:ef:1f:65:fa:3a:39:
89:39:2a:33:09:14:40:dd:f9:94:8c:8f:c8:13:40:
27:99:84:e7:6e:d0:f0:8e:f5:ec:31:df:44:4d:46:
96:50:07:69:5a:23:28:fe:3a:86:26:35:9d:cb:85:
ce:8c:90:b6:88:f2:93:85:49:13:b2:0c:a8:81:ab:
7e:28:bc:ef:1b:ec:8a:a3:e7:ae:c6:21:77:e0:7d:
99:34:a8:12:18:99:44:c0:ff:ee:35:a4:95:61:cc:
bd:01:60:b1:c5:1c:f5:f8:b3:31:4c:ac:74:ae:a2:
10:dd:da:96:16:95:43:1a:f2:40:e9:51:7f:38:46:
b2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:99:CF:04:FD:BB:DD:1E:BB:9D:EF:5B:06:2A:F4:3E:E2:63:6D:D1
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GZnPBP273R67ne9bBir0PuJjbdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.181.0/24
185.230.13.0/24
Signature Algorithm: sha256WithRSAEncryption
66:4b:28:51:30:aa:6e:b1:71:3c:a6:fb:60:30:2d:f9:6f:3d:
0f:eb:87:5a:5d:09:72:06:bd:e0:7d:ae:b4:cc:4b:4d:bd:04:
da:83:00:3b:46:a0:fd:7b:3b:0f:91:8c:77:a6:80:74:56:e5:
a0:22:a6:d9:65:7a:5a:db:5b:4c:51:dc:d5:89:e8:30:e2:8d:
0c:08:8e:07:bb:f7:e6:62:3a:c2:94:a8:03:93:19:91:3b:b4:
58:77:f2:4b:8a:8b:77:dc:fe:76:02:fe:f6:4e:f4:49:a3:c3:
a6:68:b0:05:20:a9:a9:a3:cb:71:f2:77:a0:ca:8b:49:71:6f:
48:71:74:0c:fb:40:52:5a:03:3a:a0:1e:e4:58:38:e4:0e:45:
74:4b:0c:d3:60:9a:57:c9:29:a1:55:04:2e:7f:79:93:46:65:
9b:a3:54:f6:d4:f4:32:bd:65:4a:14:11:14:13:8a:bb:77:88:
6e:d4:a4:f0:8e:20:9c:4d:c4:91:85:49:c7:f1:ea:8d:a8:07:
f3:9c:f1:17:7a:33:07:c5:9e:fa:6c:48:da:c4:b9:b4:2c:e3:
ea:12:83:61:40:3e:17:15:0e:d6:e6:bf:7e:13:3f:8a:5b:4e:
0d:80:46:5f:5b:ff:92:5b:83:bf:fb:50:05:8a:06:f3:f0:e6:
af:95:90:4f
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB7j5vjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDMw
NzA3MzIxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTk5OWNmMDRmZGJi
ZGQxZWJiOWRlZjViMDYyYWY0M2VlMjYzNmRkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPJbE9RTaAoXXbX9WQ5KrQL/fKvlHJQnwHQ9QcQBGMR8jIBP
nNLmLZ74X2kx9Fwo3C4JNlaC1oOvznWml5aXa0ukLSBy5ntIg97lXhMb01hxmA+K
3qdzjRvoqz48WdOuynrJfllX2zYUXgwlrk/j6my7C42EYauSTH8/nVleLVj77x9l
+jo5iTkqMwkUQN35lIyPyBNAJ5mE527Q8I717DHfRE1GllAHaVojKP46hiY1ncuF
zoyQtojyk4VJE7IMqIGrfii87xvsiqPnrsYhd+B9mTSoEhiZRMD/7jWklWHMvQFg
scUc9fizMUysdK6iEN3alhaVQxryQOlRfzhGsqkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQZmc8E/bvdHrud71sGKvQ+4mNt0TAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
L0dablBCUDI3M1I2N25lOWJCaXIwUHVKamJkRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAE1atQMEALnmDTANBgkqhkiG9w0B
AQsFAAOCAQEAZksoUTCqbrFxPKb7YDAt+W89D+uHWl0Jcga94H2utMxLTb0E2oMA
O0ag/Xs7D5GMd6aAdFbloCKm2WV6WttbTFHc1YnoMOKNDAiOB7v35mI6wpSoA5MZ
kTu0WHfyS4qLd9z+dgL+9k70SaPDpmiwBSCpqaPLcfJ3oMqLSXFvSHF0DPtAUloD
OqAe5Fg45A5FdEsM02CaV8kpoVUELn95k0Zlm6NU9tT0Mr1lShQRFBOKu3eIbtSk
8I4gnE3EkYVJx/HqjagH85zxF3ozB8We+mxI2sS5tCzj6hKDYUA+FxUO1ua/fhM/
iltODYBGX1v/kluDv/tQBYoG8/Dmr5WQTw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org