Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8020d8-0684-44f6-84d1-d1d0f96cad1e/1/g9rhhJFXiENPZfdODkES1cOIv_4.roa
File: g9rhhJFXiENPZfdODkES1cOIv_4.roa (raw, json)
Hash identifier: Fk00OENibMIvEb7tLY5JDNRMjk+MFh7PSRrhf9OaUfo=
Subject key identifier: 83:DA:E1:84:91:57:88:43:4F:65:F7:4E:0E:41:12:D5:C3:88:BF:FE
Certificate issuer: /CN=134bc7e6fdfbf738d23fc5ee5e5acb52befbc051
Certificate serial: 0563429C
Authority key identifier: 13:4B:C7:E6:FD:FB:F7:38:D2:3F:C5:EE:5E:5A:CB:52:BE:FB:C0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E0vH5v379zjSP8XuXlrLUr77wFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8020d8-0684-44f6-84d1-d1d0f96cad1e/1/g9rhhJFXiENPZfdODkES1cOIv_4.roa
Signing time: Sat 01 Jan 2022 14:58:49 +0000
ROA not before: Sat 01 Jan 2022 14:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35368
IP address blocks: 185.36.136.0/22 maxlen: 22
2a04:6440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90391196 (0x563429c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=134bc7e6fdfbf738d23fc5ee5e5acb52befbc051
Validity
Not Before: Jan 1 14:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83dae184915788434f65f74e0e4112d5c388bffe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:92:55:d1:92:eb:05:0f:68:6c:bb:8a:4e:
93:d9:c0:db:4b:14:77:48:c6:94:9c:97:a5:b8:21:
8f:41:cb:29:ae:26:28:cd:20:05:4d:f5:4f:db:81:
70:9d:6d:ca:81:cc:91:2a:d2:8b:31:95:3b:ce:03:
f7:35:85:19:08:5a:d7:48:23:c6:4f:d4:5d:40:73:
4b:4f:cd:ff:7d:62:53:eb:9d:d0:41:a6:63:00:37:
13:f0:bd:3d:ed:e8:a6:c5:5e:32:b4:8b:4d:6e:32:
6a:69:5c:3b:e7:69:f4:ad:04:de:8e:7d:b1:78:e1:
a9:09:fd:25:aa:aa:41:84:95:f5:70:30:12:b4:26:
5e:97:ae:06:6e:14:ab:38:e9:3d:3a:08:4f:b9:36:
e0:2c:08:11:b0:33:fd:7e:fc:16:10:11:2a:42:89:
63:e7:de:f4:94:df:43:e1:4b:91:cd:06:a6:fa:00:
2e:0d:ee:91:a4:92:5b:3e:8a:63:f2:b9:c6:9f:4d:
c9:bc:28:94:21:c4:78:1a:24:0d:7a:ca:3b:19:24:
24:e7:38:a2:58:09:1f:73:56:38:4f:05:1f:44:06:
b7:34:12:8b:b1:03:6e:8a:7c:93:cd:4d:03:fe:08:
88:95:44:d4:0a:7a:76:1e:28:38:e5:54:ef:80:43:
b6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:DA:E1:84:91:57:88:43:4F:65:F7:4E:0E:41:12:D5:C3:88:BF:FE
X509v3 Authority Key Identifier:
keyid:13:4B:C7:E6:FD:FB:F7:38:D2:3F:C5:EE:5E:5A:CB:52:BE:FB:C0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E0vH5v379zjSP8XuXlrLUr77wFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8020d8-0684-44f6-84d1-d1d0f96cad1e/1/g9rhhJFXiENPZfdODkES1cOIv_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8020d8-0684-44f6-84d1-d1d0f96cad1e/1/E0vH5v379zjSP8XuXlrLUr77wFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.136.0/22
IPv6:
2a04:6440::/29
Signature Algorithm: sha256WithRSAEncryption
1f:58:9b:17:76:d0:a1:72:22:96:39:a0:8b:0b:68:d4:38:e1:
e6:55:e1:58:ad:a8:a4:8b:61:fa:66:c7:ed:6c:14:42:25:3e:
b6:6d:71:cc:49:44:65:36:24:32:d7:f7:09:04:1d:6e:f5:88:
10:79:81:03:6e:72:43:fc:a2:d9:ec:2a:d1:bc:9b:40:f7:ec:
77:1a:53:93:3d:2c:e1:64:51:fb:cb:ec:06:9d:4f:a2:b8:b3:
b5:15:ab:7d:20:65:f4:73:4a:8e:87:41:3b:70:84:d0:b4:c3:
b2:c9:88:90:6b:54:20:16:dd:a9:33:e0:6e:7c:f0:28:ae:8f:
91:d4:fe:03:4b:89:cf:97:30:37:a5:18:10:a9:84:dc:14:b7:
18:3b:41:6f:79:27:a2:67:0c:15:9e:7b:d9:f0:ad:97:41:c9:
43:95:b1:6e:5e:f2:9b:92:24:9d:3d:d9:58:e9:d2:a5:9d:a4:
a1:b1:6f:44:70:d3:77:56:df:13:1e:b9:07:39:8e:f0:28:37:
0e:29:4e:6a:63:30:40:65:d3:58:f4:e3:40:b3:3d:de:94:3e:
5b:63:77:c8:55:cd:3c:16:e3:2a:0f:a1:8c:4b:97:f3:94:ad:
2d:2a:83:38:46:b5:1e:2a:52:f0:ca:73:7b:2b:8a:21:7b:bd:
33:87:64:db
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBWNCnDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MzRiYzdlNmZkZmJmNzM4ZDIzZmM1ZWU1ZTVhY2I1MmJlZmJjMDUxMB4XDTIyMDEw
MTE0NTg0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODNkYWUxODQ5MTU3
ODg0MzRmNjVmNzRlMGU0MTEyZDVjMzg4YmZmZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL6+klXRkusFD2hsu4pOk9nA20sUd0jGlJyXpbghj0HLKa4m
KM0gBU31T9uBcJ1tyoHMkSrSizGVO84D9zWFGQha10gjxk/UXUBzS0/N/31iU+ud
0EGmYwA3E/C9Pe3opsVeMrSLTW4yamlcO+dp9K0E3o59sXjhqQn9JaqqQYSV9XAw
ErQmXpeuBm4UqzjpPToIT7k24CwIEbAz/X78FhARKkKJY+fe9JTfQ+FLkc0GpvoA
Lg3ukaSSWz6KY/K5xp9NybwolCHEeBokDXrKOxkkJOc4olgJH3NWOE8FH0QGtzQS
i7EDbop8k81NA/4IiJVE1Ap6dh4oOOVU74BDts8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSD2uGEkVeIQ09l904OQRLVw4i//jAfBgNVHSMEGDAWgBQTS8fm/fv3ONI/
xe5eWstSvvvAUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Uwdkg1djM3OXpqU1A4WHVYbHJMVXI3N3dGRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2QvODAyMGQ4LTA2ODQtNDRmNi04NGQxLWQxZDBmOTZjYWQxZS8x
L2c5cmhoSkZYaUVOUFpmZE9Ea0VTMWNPSXZfNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Qv
ODAyMGQ4LTA2ODQtNDRmNi04NGQxLWQxZDBmOTZjYWQxZS8xL0Uwdkg1djM3OXpq
U1A4WHVYbHJMVXI3N3dGRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkkiDANBAIAAjAHAwUDKgRkQDAN
BgkqhkiG9w0BAQsFAAOCAQEAH1ibF3bQoXIiljmgiwto1Djh5lXhWK2opIth+mbH
7WwUQiU+tm1xzElEZTYkMtf3CQQdbvWIEHmBA25yQ/yi2ewq0bybQPfsdxpTkz0s
4WRR+8vsBp1PoriztRWrfSBl9HNKjodBO3CE0LTDssmIkGtUIBbdqTPgbnzwKK6P
kdT+A0uJz5cwN6UYEKmE3BS3GDtBb3knomcMFZ572fCtl0HJQ5Wxbl7ym5IknT3Z
WOnSpZ2kobFvRHDTd1bfEx65BzmO8Cg3DilOamMwQGXTWPTjQLM93pQ+W2N3yFXN
PBbjKg+hjEuX85StLSqDOEa1HipS8MpzeyuKIXu9M4dk2w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:38 2023 by rpki-client on console-ams.rpki-client.org