Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/GqowCR2rT1Bcut3bQJX_C4Di_kg.roa
File: GqowCR2rT1Bcut3bQJX_C4Di_kg.roa (raw, json)
Hash identifier: /xYhpNSW1TjlHb5ETWdCNqtO740MTDgePy9JPGOFfto=
Subject key identifier: 1A:AA:30:09:1D:AB:4F:50:5C:BA:DD:DB:40:95:FF:0B:80:E2:FE:48
Certificate issuer: /CN=8600aaf13d4de9c95b63759ad18636abc8e26376
Certificate serial: 01856BCA1CDC429E030B99BCC843505FCD84
Authority key identifier: 86:00:AA:F1:3D:4D:E9:C9:5B:63:75:9A:D1:86:36:AB:C8:E2:63:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgCq8T1N6clbY3Wa0YY2q8jiY3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/GqowCR2rT1Bcut3bQJX_C4Di_kg.roa
Signing time: Sun 01 Jan 2023 05:24:45 +0000
ROA not before: Sun 01 Jan 2023 05:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48740
IP address blocks: 91.212.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:1c:dc:42:9e:03:0b:99:bc:c8:43:50:5f:cd:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8600aaf13d4de9c95b63759ad18636abc8e26376
Validity
Not Before: Jan 1 05:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1aaa30091dab4f505cbadddb4095ff0b80e2fe48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:35:89:e8:44:32:d8:cf:9a:e1:80:ec:2c:40:
58:2c:0f:44:39:5c:ad:16:92:6f:e1:2d:c6:9e:23:
9f:3a:5f:5c:ab:84:ef:bf:9c:05:07:38:62:f7:2a:
14:8a:e4:f0:d4:65:6d:a2:22:cc:1b:12:70:be:15:
64:92:aa:8c:ee:40:f3:1d:95:6c:80:9b:43:85:cc:
37:71:89:09:1e:c1:4d:99:4d:5c:4d:de:8f:cd:ce:
99:af:84:29:47:51:8f:73:a6:b6:d8:7a:20:2f:eb:
2b:b5:81:d4:73:ae:d9:80:1b:56:6d:82:14:6d:4a:
6e:eb:eb:22:37:ab:c7:46:12:9a:52:eb:79:ed:16:
76:56:d7:a0:67:d4:49:1c:a9:e5:87:1b:33:5b:33:
e4:fc:46:50:2e:76:04:f1:f2:aa:9e:ba:71:22:e2:
15:ec:ac:bc:fe:7e:04:28:c3:5f:3d:08:99:14:b0:
62:40:8b:b3:a7:47:37:09:40:08:c5:86:b4:09:d7:
67:b4:83:74:32:59:db:b7:8c:fd:13:dc:4e:e1:a5:
69:b7:5f:07:ac:a9:26:6e:97:de:6c:d6:a8:5b:27:
90:6e:06:ee:1f:c7:b3:6e:43:c9:5d:d3:b8:94:87:
f5:48:bd:67:2e:11:12:9f:71:11:7c:2f:b3:fe:ce:
4f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AA:30:09:1D:AB:4F:50:5C:BA:DD:DB:40:95:FF:0B:80:E2:FE:48
X509v3 Authority Key Identifier:
keyid:86:00:AA:F1:3D:4D:E9:C9:5B:63:75:9A:D1:86:36:AB:C8:E2:63:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgCq8T1N6clbY3Wa0YY2q8jiY3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/GqowCR2rT1Bcut3bQJX_C4Di_kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/hgCq8T1N6clbY3Wa0YY2q8jiY3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.1.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c9:c1:cb:e3:dc:3b:ea:3a:3e:09:af:66:ce:4f:9b:cc:3a:
aa:18:99:f2:5d:92:2e:f4:44:79:ca:8b:87:fb:06:de:df:99:
1a:b9:c4:07:b6:27:cd:fa:70:48:08:80:26:00:be:2a:2f:14:
a6:cd:83:b5:ad:44:8f:28:1c:68:53:10:71:58:99:bf:af:31:
19:61:ec:32:44:ce:b4:0b:a4:da:05:85:89:a5:14:93:7a:bd:
62:0f:e5:23:d1:5a:74:f0:87:37:d5:66:46:ce:c3:74:f0:bc:
42:3e:ee:60:b3:f1:a3:11:9b:44:8a:43:f7:e7:ec:23:e3:e8:
a3:a9:11:4b:80:50:5f:2e:60:f1:a1:4b:36:1d:43:94:d3:df:
31:68:a1:b6:d3:06:01:f9:c6:63:6f:3a:d5:0c:f6:6a:e0:07:
40:5a:39:4c:4c:50:3d:65:18:1f:eb:7d:54:ba:55:26:34:69:
f2:31:d1:1a:f0:ce:5c:6f:45:92:4c:a6:50:7e:31:a9:bd:1d:
e2:08:f5:59:b6:58:e9:78:9c:a3:fc:50:22:0c:12:88:8c:5b:
d9:69:2d:77:04:47:04:fa:3f:2f:f5:d1:a8:dc:a2:36:05:79:
e6:0c:0f:3f:59:d4:31:cf:b0:99:a4:f8:8e:9e:82:ef:e6:c5:
ce:46:49:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVryhzcQp4DC5m8yENQX82EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2MDBhYWYxM2Q0ZGU5Yzk1YjYzNzU5YWQxODYzNmFiYzhl
MjYzNzYwHhcNMjMwMTAxMDUyNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYWFhMzAwOTFkYWI0ZjUwNWNiYWRkZGI0MDk1ZmYwYjgwZTJmZTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAijWJ6EQy2M+a4YDsLEBYLA9EOVyt
FpJv4S3GniOfOl9cq4Tvv5wFBzhi9yoUiuTw1GVtoiLMGxJwvhVkkqqM7kDzHZVs
gJtDhcw3cYkJHsFNmU1cTd6Pzc6Zr4QpR1GPc6a22HogL+srtYHUc67ZgBtWbYIU
bUpu6+siN6vHRhKaUut57RZ2VtegZ9RJHKnlhxszWzPk/EZQLnYE8fKqnrpxIuIV
7Ky8/n4EKMNfPQiZFLBiQIuzp0c3CUAIxYa0CddntIN0Mlnbt4z9E9xO4aVpt18H
rKkmbpfebNaoWyeQbgbuH8ezbkPJXdO4lIf1SL1nLhESn3ERfC+z/s5PHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBqqMAkdq09QXLrd20CV/wuA4v5IMB8GA1UdIwQY
MBaAFIYAqvE9TenJW2N1mtGGNqvI4mN2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGdDcThUMU42Y2xiWTNXYTBZWTJxOGppWTNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iN2QyMGUtMzNiYy00YjIzLWExOTgt
MjI0NGZkNjE4NWQzLzEvR3Fvd0NSMnJUMUJjdXQzYlFKWF9DNERpX2tnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9iN2QyMGUtMzNiYy00YjIzLWExOTgtMjI0NGZkNjE4NWQz
LzEvaGdDcThUMU42Y2xiWTNXYTBZWTJxOGppWTNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9QBMA0G
CSqGSIb3DQEBCwUAA4IBAQBAycHL49w76jo+Ca9mzk+bzDqqGJnyXZIu9ER5youH
+wbe35kaucQHtifN+nBICIAmAL4qLxSmzYO1rUSPKBxoUxBxWJm/rzEZYewyRM60
C6TaBYWJpRSTer1iD+Uj0Vp08Ic31WZGzsN08LxCPu5gs/GjEZtEikP35+wj4+ij
qRFLgFBfLmDxoUs2HUOU098xaKG20wYB+cZjbzrVDPZq4AdAWjlMTFA9ZRgf631U
ulUmNGnyMdEa8M5cb0WSTKZQfjGpvR3iCPVZtljpeJyj/FAiDBKIjFvZaS13BEcE
+j8v9dGo3KI2BXnmDA8/WdQxz7CZpPiOnoLv5sXORkkq
-----END CERTIFICATE-----
Generated at Tue Apr 22 04:15:35 2025 by rpki-client