Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/gK3rNYJD_rLtBAzK2EyQa22OSwQ.roa
File: gK3rNYJD_rLtBAzK2EyQa22OSwQ.roa (raw, json)
Hash identifier: aTx8Vc5ROlZt4K8nBROH4hdNCKqGlXJl/LtfBHnccBI=
Subject key identifier: 80:AD:EB:35:82:43:FE:B2:ED:04:0C:CA:D8:4C:90:6B:6D:8E:4B:04
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 0A14C792
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/gK3rNYJD_rLtBAzK2EyQa22OSwQ.roa
Signing time: Sat 01 Jan 2022 07:58:34 +0000
ROA not before: Sat 01 Jan 2022 07:58:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203489
IP address blocks: 185.191.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169133970 (0xa14c792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Jan 1 07:58:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80adeb358243feb2ed040ccad84c906b6d8e4b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:17:36:4b:cd:5d:ed:60:fa:17:6d:3c:76:90:
8e:a6:db:ef:f7:17:e4:ee:7b:de:e5:0c:6a:af:0d:
c5:e1:4b:b5:3a:31:92:45:c3:c1:11:53:c8:76:f6:
77:76:df:8d:38:e2:8e:b2:30:2d:e9:41:9a:bb:d7:
44:a8:f3:42:3b:44:a2:04:4d:d6:b1:7c:07:c4:70:
d5:7b:6d:0a:34:54:b1:8b:79:4b:2f:e4:98:43:28:
17:f6:a9:53:6b:ce:92:dd:bf:d3:50:7a:0d:fb:26:
65:ea:52:24:3d:e9:26:7e:23:f4:65:f8:cc:6e:40:
03:84:de:c6:a0:ba:e4:9f:38:b3:c6:00:c1:1a:e5:
bb:30:4a:23:33:b7:bc:6d:0e:e8:bc:2e:58:a2:48:
1b:1e:23:ac:a1:da:c8:4b:ea:02:10:15:38:91:bb:
b0:0e:b8:81:87:84:e7:ff:15:cd:a4:43:fe:6f:dc:
38:9c:50:6e:5a:47:1a:3d:94:d2:d0:30:f2:f1:f1:
3e:8b:67:a0:5f:a0:11:d3:30:7d:a5:30:cb:79:31:
1c:7e:4c:f9:27:8f:a5:1e:55:b3:26:c8:92:89:93:
93:60:40:82:27:37:86:5c:39:07:3c:23:bf:a6:15:
83:0f:1e:f2:d8:24:f7:a4:b0:75:5b:4e:f9:c5:69:
e2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AD:EB:35:82:43:FE:B2:ED:04:0C:CA:D8:4C:90:6B:6D:8E:4B:04
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/gK3rNYJD_rLtBAzK2EyQa22OSwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.99.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:7f:e2:3e:98:79:cb:73:69:82:3e:16:17:ee:87:07:f2:64:
aa:96:35:08:94:7e:82:58:b3:f0:20:98:0e:21:9c:10:d3:68:
d4:35:eb:bd:58:97:73:a2:63:83:db:89:e9:53:a8:61:44:5b:
e3:6f:89:e3:e3:c0:a1:af:6b:f1:41:f0:50:ab:96:d0:34:8f:
14:71:c2:65:ba:ef:11:f8:9f:2f:3f:af:e8:13:28:7c:7a:5c:
74:89:1e:4d:c1:38:b9:61:af:ff:40:a9:21:6d:2f:a4:2d:b0:
57:0e:00:ad:75:4d:e4:9f:08:07:b7:20:23:2c:07:9e:51:ce:
80:fb:43:17:28:8f:e9:da:03:28:8d:37:69:a4:8a:74:cd:13:
62:17:5e:6e:48:80:bb:3b:c4:c0:cd:16:4c:d7:9e:7b:10:88:
e3:ae:f1:a0:fa:3e:8b:8d:c2:ce:60:78:db:05:03:27:65:64:
5c:e9:88:77:85:68:38:09:0f:39:82:92:fb:02:eb:ea:9e:2e:
e0:4f:6d:b5:b8:9c:42:1f:1c:d4:99:55:90:59:c4:ca:10:f8:
2c:11:f8:d2:b3:1c:a1:b3:bc:73:37:48:96:ee:0f:24:cf:08:
91:f3:f7:55:3b:40:a6:43:df:66:1c:9d:c1:b6:44:1f:0e:fb:
ec:f0:23:1c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEChTHkjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MzRkNGEzYjc0N2ZjYTcwMTAzYjE3ZjNkYmRjNTA0NWNhY2UzMmRmMB4XDTIyMDEw
MTA3NTgzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODBhZGViMzU4MjQz
ZmViMmVkMDQwY2NhZDg0YzkwNmI2ZDhlNGIwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPEXNkvNXe1g+hdtPHaQjqbb7/cX5O573uUMaq8NxeFLtTox
kkXDwRFTyHb2d3bfjTjijrIwLelBmrvXRKjzQjtEogRN1rF8B8Rw1XttCjRUsYt5
Sy/kmEMoF/apU2vOkt2/01B6DfsmZepSJD3pJn4j9GX4zG5AA4TexqC65J84s8YA
wRrluzBKIzO3vG0O6LwuWKJIGx4jrKHayEvqAhAVOJG7sA64gYeE5/8VzaRD/m/c
OJxQblpHGj2U0tAw8vHxPotnoF+gEdMwfaUwy3kxHH5M+SePpR5VsybIkomTk2BA
gic3hlw5Bzwjv6YVgw8e8tgk96SwdVtO+cVp4rkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSAres1gkP+su0EDMrYTJBrbY5LBDAfBgNVHSMEGDAWgBTTTUo7dH/KcBA7
F/Pb3FBFys4y3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzAwMUtPM1JfeW5BUU94ZnoyOXhRUmNyT010OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDIvOGQ4MzcyLWUwNzktNDgzMS1hZmQyLTQzNzkzNGM1ODQ1My8x
L2dLM3JOWUpEX3JMdEJBeksyRXlRYTIyT1N3US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDIv
OGQ4MzcyLWUwNzktNDgzMS1hZmQyLTQzNzkzNGM1ODQ1My8xLzAwMUtPM1JfeW5B
UU94ZnoyOXhRUmNyT010OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALm/YzANBgkqhkiG9w0BAQsFAAOC
AQEACn/iPph5y3Npgj4WF+6HB/JkqpY1CJR+gliz8CCYDiGcENNo1DXrvViXc6Jj
g9uJ6VOoYURb42+J4+PAoa9r8UHwUKuW0DSPFHHCZbrvEfifLz+v6BMofHpcdIke
TcE4uWGv/0CpIW0vpC2wVw4ArXVN5J8IB7cgIywHnlHOgPtDFyiP6doDKI03aaSK
dM0TYhdebkiAuzvEwM0WTNeeexCI467xoPo+i43CzmB42wUDJ2VkXOmId4VoOAkP
OYKS+wLr6p4u4E9ttbicQh8c1JlVkFnEyhD4LBH40rMcobO8czdIlu4PJM8IkfP3
VTtApkPfZhydwbZEHw777PAjHA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:26 2024 by rpki-client on console-ams.rpki-client.org