Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/gs_01P6aibvJDA9jep1u2D-03Cw.roa
File: gs_01P6aibvJDA9jep1u2D-03Cw.roa (raw, json)
Hash identifier: Q7z87SivfZgpt12XasO+mj/yWrfbnavu5Yc7xXjmfmo=
Subject key identifier: 82:CF:F4:D4:FE:9A:89:BB:C9:0C:0F:63:7A:9D:6E:D8:3F:B4:DC:2C
Certificate issuer: /CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Certificate serial: 16BEF5D9
Authority key identifier: 0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/gs_01P6aibvJDA9jep1u2D-03Cw.roa
Signing time: Fri 18 Feb 2022 13:23:45 +0000
ROA not before: Fri 18 Feb 2022 13:23:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208043
IP address blocks: 83.209.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381613529 (0x16bef5d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Validity
Not Before: Feb 18 13:23:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82cff4d4fe9a89bbc90c0f637a9d6ed83fb4dc2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a5:ef:84:6d:9c:30:8e:21:f3:6b:cd:19:be:
3a:ca:eb:54:6e:c9:d3:a8:98:62:13:2c:97:fe:b3:
61:66:79:1c:48:8b:de:32:a3:c8:7c:e3:f2:82:d5:
00:a6:e5:ad:16:ab:f3:b9:c1:81:0c:60:04:f2:14:
d4:bf:b6:d7:ee:d6:53:69:93:05:b5:25:79:c4:b3:
96:9d:da:92:90:6a:3f:a4:84:3b:b8:2d:f5:97:26:
6a:c4:4b:f9:c0:55:75:d7:54:cf:28:07:3c:58:29:
18:ae:ef:86:15:e4:2d:4b:2d:ae:bd:0b:5e:d8:45:
6c:e1:eb:22:32:5d:50:74:09:6b:dd:d9:2f:20:e4:
c5:52:16:95:39:36:16:58:76:d0:e7:8b:01:a8:ba:
e8:76:f1:4c:1d:65:00:86:d0:39:87:7b:18:89:9f:
db:6e:6f:ca:ee:82:a7:b0:7a:61:4b:82:fd:31:a5:
e0:b7:ee:17:9b:46:0a:03:e4:4c:74:ca:00:a3:62:
11:81:18:a6:fe:ab:33:11:bc:e1:61:77:e4:fd:d7:
b9:66:10:e3:0f:75:39:b3:44:48:fd:48:09:7d:25:
c1:98:17:bb:8e:72:ce:0e:e1:40:99:0c:8c:da:a9:
77:1f:bb:99:fd:a2:98:9d:fb:0d:a0:44:4a:dc:eb:
9e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CF:F4:D4:FE:9A:89:BB:C9:0C:0F:63:7A:9D:6E:D8:3F:B4:DC:2C
X509v3 Authority Key Identifier:
keyid:0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/gs_01P6aibvJDA9jep1u2D-03Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.209.153.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:c6:54:b1:9b:87:3f:d1:56:69:7b:f3:f8:9d:b8:ee:19:8c:
b7:4b:eb:d2:4a:66:5c:64:52:e5:25:78:0b:88:15:43:2b:a3:
16:27:6e:3b:d9:05:5f:5b:ca:79:55:8a:44:b7:a1:bf:3e:a3:
21:10:72:08:72:b9:39:7e:1a:be:cb:26:33:69:8e:96:be:0b:
29:f4:4b:2f:6f:01:75:5c:8c:f8:62:56:7c:7f:aa:39:5a:e6:
66:14:d5:00:d7:f8:32:ee:9d:c2:b0:59:1d:e7:37:b6:1d:f5:
9d:a8:b7:e6:bd:e4:72:94:49:75:57:a2:a9:79:c9:fc:38:fc:
8b:98:40:0b:05:6a:ce:cb:f3:c1:f5:2d:38:6b:3f:ed:90:42:
a5:d5:81:78:25:2b:89:c7:fd:09:9e:c6:73:78:b3:47:26:fb:
68:10:98:26:22:a4:7c:9f:dd:cf:2e:51:69:b9:8c:65:0d:86:
31:66:a4:6a:57:bb:af:78:50:2c:cf:27:41:af:14:12:e5:7c:
f9:80:de:87:89:af:ea:15:ec:d6:88:b8:a6:1d:19:fe:af:0c:
27:6a:a1:a1:ff:0a:f1:b8:c9:08:a0:ad:b4:06:81:8a:68:9e:
a2:69:b9:d4:f3:5c:07:3c:9f:22:4b:25:92:b9:c7:d1:05:92:
d5:6a:31:fd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFr712TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
Y2UxMzA4ZWFkNmFkYjFkMDg1ZTdlNTkxMGEwY2IyZGU1NmFhMzJlMB4XDTIyMDIx
ODEzMjM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODJjZmY0ZDRmZTlh
ODliYmM5MGMwZjYzN2E5ZDZlZDgzZmI0ZGMyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKWl74RtnDCOIfNrzRm+OsrrVG7J06iYYhMsl/6zYWZ5HEiL
3jKjyHzj8oLVAKblrRar87nBgQxgBPIU1L+21+7WU2mTBbUlecSzlp3akpBqP6SE
O7gt9ZcmasRL+cBVdddUzygHPFgpGK7vhhXkLUstrr0LXthFbOHrIjJdUHQJa93Z
LyDkxVIWlTk2Flh20OeLAai66HbxTB1lAIbQOYd7GImf225vyu6Cp7B6YUuC/TGl
4LfuF5tGCgPkTHTKAKNiEYEYpv6rMxG84WF35P3XuWYQ4w91ObNESP1ICX0lwZgX
u45yzg7hQJkMjNqpdx+7mf2imJ37DaBEStzrnlUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCz/TU/pqJu8kMD2N6nW7YP7TcLDAfBgNVHSMEGDAWgBQM4TCOrWrbHQhe
flkQoMst5WqjLjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RPRXdqcTFxMngwSVhuNVpFS0RMTGVWcW95NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDEvODk5MzgwLWFkMjctNDRlYi04YzJlLWIwYmFkMThmMDJkMC8x
L2dzXzAxUDZhaWJ2SkRBOWplcDF1MkQtMDNDdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEv
ODk5MzgwLWFkMjctNDRlYi04YzJlLWIwYmFkMThmMDJkMC8xL0RPRXdqcTFxMngw
SVhuNVpFS0RMTGVWcW95NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFPRmTANBgkqhkiG9w0BAQsFAAOC
AQEAbsZUsZuHP9FWaXvz+J247hmMt0vr0kpmXGRS5SV4C4gVQyujFiduO9kFX1vK
eVWKRLehvz6jIRByCHK5OX4avssmM2mOlr4LKfRLL28BdVyM+GJWfH+qOVrmZhTV
ANf4Mu6dwrBZHec3th31nai35r3kcpRJdVeiqXnJ/Dj8i5hACwVqzsvzwfUtOGs/
7ZBCpdWBeCUricf9CZ7Gc3izRyb7aBCYJiKkfJ/dzy5RabmMZQ2GMWakale7r3hQ
LM8nQa8UEuV8+YDeh4mv6hXs1oi4ph0Z/q8MJ2qhof8K8bjJCKCttAaBimieomm5
1PNcBzyfIkslkrnH0QWS1Wox/Q==
-----END CERTIFICATE-----
Generated at Sat Apr 19 07:11:18 2025 by rpki-client