Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/GPBe1TwK523j02ZZ2pCmks3P6zo.roa
File: GPBe1TwK523j02ZZ2pCmks3P6zo.roa (raw, json)
Hash identifier: 2l7rEy4z6rP4xuLKMacKvNaPjWz1nCvWedhrySj2msE=
Subject key identifier: 18:F0:5E:D5:3C:0A:E7:6D:E3:D3:66:59:DA:90:A6:92:CD:CF:EB:3A
Certificate issuer: /CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Certificate serial: 35279556
Authority key identifier: 32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/GPBe1TwK523j02ZZ2pCmks3P6zo.roa
Signing time: Sat 01 Jan 2022 11:57:37 +0000
ROA not before: Sat 01 Jan 2022 11:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51941
IP address blocks: 46.183.72.0/21 maxlen: 24
185.128.252.0/22 maxlen: 24
2a02:2380::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891786582 (0x35279556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Validity
Not Before: Jan 1 11:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18f05ed53c0ae76de3d36659da90a692cdcfeb3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:64:42:aa:7c:bf:a9:83:34:da:72:bc:4c:a7:
49:7b:1a:c0:94:df:dd:d2:ec:b9:01:53:d0:d6:50:
4e:60:a2:c6:d5:70:f0:90:fe:dc:05:36:c5:4c:07:
63:83:68:08:34:2a:45:42:4c:f6:3b:d1:04:b8:22:
fa:13:32:ad:b2:05:e9:f2:3a:d8:31:89:3a:6c:13:
cb:b0:cb:c2:fc:d4:9d:63:87:e3:da:5d:ac:41:76:
12:ab:38:f2:fd:68:aa:99:d1:38:e4:e4:cd:96:35:
d7:5c:f5:ad:69:31:02:17:31:04:16:34:45:89:98:
87:94:bc:15:7f:5c:51:cd:e6:4c:11:69:ca:7c:cb:
8d:5e:a9:79:cd:3d:8f:85:c8:23:24:0c:a8:98:61:
de:23:fb:5f:78:18:83:05:73:42:b6:c4:9d:c0:1b:
87:c2:2a:0e:51:2d:59:0d:96:82:6e:ca:51:2e:5c:
e7:07:ce:59:81:1c:8f:2c:00:cf:c5:52:5c:07:69:
b9:97:ee:3a:6c:59:f4:fe:12:17:50:27:f3:84:41:
b7:bf:65:8c:6b:7f:ea:b9:f6:cb:6e:5a:05:5a:02:
84:35:78:01:f5:fb:15:bc:d5:44:44:b9:31:77:7a:
69:3b:01:53:51:86:fd:38:1d:16:b7:4d:c7:39:02:
e3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F0:5E:D5:3C:0A:E7:6D:E3:D3:66:59:DA:90:A6:92:CD:CF:EB:3A
X509v3 Authority Key Identifier:
keyid:32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/GPBe1TwK523j02ZZ2pCmks3P6zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.72.0/21
185.128.252.0/22
IPv6:
2a02:2380::/32
Signature Algorithm: sha256WithRSAEncryption
43:85:bb:64:f7:03:45:f0:63:91:96:0c:c9:d6:33:f6:59:40:
c6:3e:06:9b:39:89:d4:f8:d2:8f:7b:13:07:88:e6:4a:81:e0:
95:5f:98:c0:d3:26:c8:89:6f:69:78:9e:b3:a2:84:ee:a3:96:
7f:f2:65:23:13:19:3e:95:c4:2e:14:a1:22:44:0e:4b:c3:91:
56:fb:53:d4:a4:89:19:55:e5:b3:8b:1b:e1:0f:fc:ea:6d:05:
1d:cb:05:3c:9b:b2:6c:93:d1:fe:11:75:a2:6b:ab:9f:f9:64:
31:75:8a:79:07:3d:78:b6:e8:a7:db:62:21:3f:fc:6d:71:f5:
81:12:01:da:9c:b1:0f:31:59:20:89:c9:e7:ea:cb:63:72:d7:
56:95:af:86:b9:06:48:95:41:76:fe:a5:bb:af:cf:35:8f:97:
0a:8a:7a:cb:1d:1a:0b:2a:fb:d7:52:e4:59:18:cc:d8:52:bd:
6c:80:1f:d1:31:0a:79:d6:a6:17:47:44:39:69:d4:ce:58:c2:
71:3d:af:06:2a:7a:53:cb:12:34:63:ee:8f:56:09:60:ed:ff:
0a:8f:e5:d8:87:33:c6:70:a7:26:dd:87:46:51:07:b0:3a:75:
5f:25:04:66:fb:32:c2:12:73:d6:79:51:8d:82:05:27:12:b2:
b6:c8:08:88
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIENSeVVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MmMyYmU0ODNmZjI3YmI4ZjBkYzA5Y2UwZjcxZjJhODhlYWY3ZTA3MB4XDTIyMDEw
MTExNTczN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMThmMDVlZDUzYzBh
ZTc2ZGUzZDM2NjU5ZGE5MGE2OTJjZGNmZWIzYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKlkQqp8v6mDNNpyvEynSXsawJTf3dLsuQFT0NZQTmCixtVw
8JD+3AU2xUwHY4NoCDQqRUJM9jvRBLgi+hMyrbIF6fI62DGJOmwTy7DLwvzUnWOH
49pdrEF2Eqs48v1oqpnROOTkzZY111z1rWkxAhcxBBY0RYmYh5S8FX9cUc3mTBFp
ynzLjV6pec09j4XIIyQMqJhh3iP7X3gYgwVzQrbEncAbh8IqDlEtWQ2Wgm7KUS5c
5wfOWYEcjywAz8VSXAdpuZfuOmxZ9P4SF1An84RBt79ljGt/6rn2y25aBVoChDV4
AfX7FbzVRES5MXd6aTsBU1GG/TgdFrdNxzkC4xUCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQY8F7VPArnbePTZlnakKaSzc/rOjAfBgNVHSMEGDAWgBQywr5IP/J7uPDc
Cc4PcfKojq9+BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01zSy1TRF95ZTdqdzNBbk9EM0h5cUk2dmZnYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvZmYwMGM0LWI3MjgtNDRhMC05NjJkLTk3M2RiOWNlNjhiNS8x
L0dQQmUxVHdLNTIzajAyWloycENta3MzUDZ6by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
ZmYwMGM0LWI3MjgtNDRhMC05NjJkLTk3M2RiOWNlNjhiNS8xL01zSy1TRF95ZTdq
dzNBbk9EM0h5cUk2dmZnYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAy63SAMEArmA/DANBAIAAjAHAwUA
KgIjgDANBgkqhkiG9w0BAQsFAAOCAQEAQ4W7ZPcDRfBjkZYMydYz9llAxj4GmzmJ
1PjSj3sTB4jmSoHglV+YwNMmyIlvaXies6KE7qOWf/JlIxMZPpXELhShIkQOS8OR
VvtT1KSJGVXls4sb4Q/86m0FHcsFPJuybJPR/hF1omurn/lkMXWKeQc9eLbop9ti
IT/8bXH1gRIB2pyxDzFZIInJ5+rLY3LXVpWvhrkGSJVBdv6lu6/PNY+XCop6yx0a
Cyr711LkWRjM2FK9bIAf0TEKedamF0dEOWnUzljCcT2vBip6U8sSNGPuj1YJYO3/
Co/l2IczxnCnJt2HRlEHsDp1XyUEZvsywhJz1nlRjYIFJxKytsgIiA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:09 2024 by rpki-client on console-ams.rpki-client.org