Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/GbNAYq84e-vDrn28YCfPRrwaKEE.roa
File: GbNAYq84e-vDrn28YCfPRrwaKEE.roa (raw, json)
Hash identifier: tAIFCZy+6Y5kTZSS91OU7uwrTSjO8BOjGU25kA1uzc4=
Subject key identifier: 19:B3:40:62:AF:38:7B:EB:C3:AE:7D:BC:60:27:CF:46:BC:1A:28:41
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 301ACCB8
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/GbNAYq84e-vDrn28YCfPRrwaKEE.roa
Signing time: Sat 01 Jan 2022 04:57:42 +0000
ROA not before: Sat 01 Jan 2022 04:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44270
IP address blocks: 79.141.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 807062712 (0x301accb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Jan 1 04:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19b34062af387bebc3ae7dbc6027cf46bc1a2841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6e:7b:b8:d9:86:d0:01:e7:fd:1c:1b:07:b1:
7b:27:ee:9f:57:66:b3:3f:4a:de:10:b4:cd:04:b9:
86:90:17:b3:43:6d:fb:3c:3c:c7:94:f5:b2:b2:e4:
1d:db:bf:5e:49:87:ea:29:29:70:dc:8d:f7:98:0d:
12:7b:bd:17:2e:1e:6c:6d:b4:44:9b:46:7f:3f:bb:
9b:8f:91:20:63:e4:33:d6:9c:53:99:b5:c1:e8:31:
46:7e:11:ac:38:3f:e9:67:33:2b:b8:0a:20:e4:4b:
8c:9b:5e:25:45:47:75:e3:67:43:5c:14:f3:b1:cc:
ae:1b:47:55:a5:2c:02:ba:45:b3:7e:26:e7:9b:56:
11:e3:1c:c0:87:a9:73:70:62:b2:57:cc:04:2d:2c:
f3:90:b7:8f:7f:98:de:4c:99:63:76:43:76:52:c1:
91:48:4b:3f:1d:c7:96:1d:d1:0c:13:73:5d:b0:08:
75:5c:53:ae:c7:1b:23:50:70:98:85:0f:6a:27:9c:
13:6f:07:14:24:32:19:84:3d:95:a7:47:b9:44:ed:
d1:91:82:cf:1a:3e:97:5e:49:4a:63:f9:f8:54:d9:
97:ed:3c:b5:77:26:fa:e5:a1:a7:fe:e4:cb:a2:c7:
99:a5:d9:b4:b0:e6:0e:8a:ec:92:e9:69:39:b6:ab:
5e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B3:40:62:AF:38:7B:EB:C3:AE:7D:BC:60:27:CF:46:BC:1A:28:41
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/GbNAYq84e-vDrn28YCfPRrwaKEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.212.0/22
Signature Algorithm: sha256WithRSAEncryption
49:35:e6:85:d0:81:79:02:47:ad:25:04:23:f9:88:50:6e:ae:
eb:57:8c:d0:60:b8:62:71:59:7c:28:d1:5a:42:56:2d:d9:83:
31:c8:f8:dd:97:d6:bd:7e:c7:8e:1b:1b:2b:22:e9:c3:88:24:
e8:3b:90:f7:f8:39:b0:37:1f:2c:c9:24:2a:98:d6:29:28:0f:
1c:b5:ba:39:1d:42:44:fc:96:2c:06:37:ec:8a:3d:92:d4:81:
64:35:ef:9d:34:65:53:c0:cc:87:f7:b7:f5:e3:65:72:a0:86:
00:8e:63:0d:b7:b6:54:d2:b0:21:97:ac:50:b3:95:58:f8:b2:
0b:37:22:3b:a5:67:42:ce:0b:84:88:5d:d9:36:f1:4b:c1:5d:
f3:91:68:73:0c:92:db:0e:c9:f9:36:41:7f:b7:00:35:3a:56:
6c:35:79:49:93:7a:20:f6:aa:98:f3:80:21:62:23:eb:52:b8:
8c:85:bd:9d:2c:4b:de:9b:86:a8:a4:45:f2:1d:74:7d:98:36:
fe:49:41:d0:c7:be:b2:4e:a4:3d:e5:f9:20:ce:ff:ab:b0:fb:
72:ee:b3:bf:72:4e:ee:ce:80:f0:f0:5d:c3:67:4f:95:c4:8d:
0a:d4:19:58:ca:fa:b1:11:39:43:e8:73:26:5c:07:44:83:9c:
76:5a:2f:46
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMBrMuDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NjhhZTgwM2I5YmEzODg1NTQwMTgyN2IzZWVjZTE0NTA1YTljMGY2MB4XDTIyMDEw
MTA0NTc0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTliMzQwNjJhZjM4
N2JlYmMzYWU3ZGJjNjAyN2NmNDZiYzFhMjg0MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAORue7jZhtAB5/0cGwexeyfun1dmsz9K3hC0zQS5hpAXs0Nt
+zw8x5T1srLkHdu/XkmH6ikpcNyN95gNEnu9Fy4ebG20RJtGfz+7m4+RIGPkM9ac
U5m1wegxRn4RrDg/6WczK7gKIORLjJteJUVHdeNnQ1wU87HMrhtHVaUsArpFs34m
55tWEeMcwIepc3BislfMBC0s85C3j3+Y3kyZY3ZDdlLBkUhLPx3Hlh3RDBNzXbAI
dVxTrscbI1BwmIUPaiecE28HFCQyGYQ9ladHuUTt0ZGCzxo+l15JSmP5+FTZl+08
tXcm+uWhp/7ky6LHmaXZtLDmDorskulpObarXmsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQZs0Birzh768OufbxgJ89GvBooQTAfBgNVHSMEGDAWgBRWiugDubo4hVQB
gns+7OFFBanA9jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Zvcm9BN202T0lWVUFZSjdQdXpoUlFXcHdQWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvMjc4ZDVmLTllZTYtNDQ3Ny05ZmUwLThlYWU4Yjc1ZTljYS8x
L0diTkFZcTg0ZS12RHJuMjhZQ2ZQUnJ3YUtFRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
Mjc4ZDVmLTllZTYtNDQ3Ny05ZmUwLThlYWU4Yjc1ZTljYS8xL1Zvcm9BN202T0lW
VUFZSjdQdXpoUlFXcHdQWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAk+N1DANBgkqhkiG9w0BAQsFAAOC
AQEASTXmhdCBeQJHrSUEI/mIUG6u61eM0GC4YnFZfCjRWkJWLdmDMcj43ZfWvX7H
jhsbKyLpw4gk6DuQ9/g5sDcfLMkkKpjWKSgPHLW6OR1CRPyWLAY37Io9ktSBZDXv
nTRlU8DMh/e39eNlcqCGAI5jDbe2VNKwIZesULOVWPiyCzciO6VnQs4LhIhd2Tbx
S8Fd85FocwyS2w7J+TZBf7cANTpWbDV5SZN6IPaqmPOAIWIj61K4jIW9nSxL3puG
qKRF8h10fZg2/klB0Me+sk6kPeX5IM7/q7D7cu6zv3JO7s6A8PBdw2dPlcSNCtQZ
WMr6sRE5Q+hzJlwHRIOcdlovRg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:39:16 2025 by rpki-client