Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Gc651ZJmQqbr7K-AtBLrFddK5SY.roa
File: Gc651ZJmQqbr7K-AtBLrFddK5SY.roa (raw, json)
Hash identifier: YObbC6OUaIkxkRk4JC3Jx7RwF0EVsIQ4R4Yu0tb0kGo=
Subject key identifier: 19:CE:B9:D5:92:66:42:A6:EB:EC:AF:80:B4:12:EB:15:D7:4A:E5:26
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 045F08F9
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Gc651ZJmQqbr7K-AtBLrFddK5SY.roa
Signing time: Sat 01 Jan 2022 00:54:02 +0000
ROA not before: Sat 01 Jan 2022 00:54:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210203
IP address blocks: 139.45.198.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73337081 (0x45f08f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: Jan 1 00:54:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19ceb9d5926642a6ebecaf80b412eb15d74ae526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:bf:53:30:7d:13:7b:1a:b0:4a:8d:05:a8:cc:
5f:88:59:e7:3e:78:12:2f:0e:2e:5e:61:d8:11:86:
47:e6:d6:32:a2:27:d4:e6:ea:22:22:24:f4:b6:e7:
a7:66:25:df:e8:39:49:0e:d3:70:0c:b9:c2:92:df:
e4:38:49:16:02:f9:08:6f:d7:d6:3b:c4:5a:7a:34:
35:03:c2:7b:c6:6c:55:33:43:af:59:a6:5c:f1:58:
fc:e8:c0:25:c2:fc:f7:04:19:3c:a9:44:a6:f2:6c:
8f:29:24:bb:ba:7e:84:ef:c2:ee:d5:db:9c:26:a2:
dc:75:e3:77:0c:6b:92:6b:ef:88:66:12:5f:28:cd:
3d:59:5f:31:9b:cd:98:19:f6:f9:3e:cd:16:ec:1f:
f0:41:32:50:b1:63:da:64:2b:7b:44:c1:63:37:0d:
a6:cf:d7:b8:bf:d4:66:b5:83:d6:f5:11:0f:ac:5e:
e6:95:1f:3b:7e:78:4d:02:72:bb:9b:5f:f5:b3:73:
a8:9d:29:02:5e:de:e6:db:76:7e:8f:13:bf:c5:53:
1e:d8:04:90:0c:a4:43:26:e0:06:94:85:97:72:a8:
78:22:30:73:32:a3:0f:cc:11:f3:28:7a:b8:81:f6:
75:7c:d6:ea:19:7e:57:e2:07:34:7b:62:4d:f5:0b:
dc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CE:B9:D5:92:66:42:A6:EB:EC:AF:80:B4:12:EB:15:D7:4A:E5:26
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Gc651ZJmQqbr7K-AtBLrFddK5SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.45.198.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:38:0e:23:19:10:91:7e:1c:8d:09:7d:4f:cb:c4:04:04:96:
f1:bf:2f:59:27:f4:6d:6a:d2:0f:aa:d3:45:31:da:2a:4e:b1:
9b:cb:48:3c:8a:0e:cf:de:aa:4d:e6:5d:68:e3:f0:a1:b6:89:
d7:b0:64:48:e6:4b:ac:88:00:34:f7:75:c3:d2:53:9b:ab:17:
81:90:eb:b9:39:b8:d4:20:46:2a:dc:42:a0:e5:5f:75:98:b1:
78:b2:a7:5f:38:6d:a7:74:9a:19:2d:c9:f0:08:32:d4:4b:bd:
45:82:35:f8:17:46:6d:ca:0c:17:cf:6c:64:49:03:fa:d9:cc:
70:fa:55:0c:93:b8:5d:8b:31:dd:86:35:3c:06:a6:9f:b8:c1:
e7:9e:f6:17:39:e2:cb:2b:25:28:09:1a:7b:f2:04:eb:fd:d5:
9d:64:be:14:2a:a7:4a:61:3d:2b:02:69:3b:f9:a9:ee:16:39:
3f:55:97:15:42:5d:37:4d:2b:e5:72:eb:d5:39:2e:1d:8f:ff:
53:c2:0b:16:81:0e:fd:90:da:7d:7c:d4:5c:fa:75:6f:ab:f9:
29:4c:21:1f:68:bf:a1:ae:e4:79:a4:8d:78:ed:b9:7d:ba:65:
82:4a:72:9d:4f:20:09:94:bc:0b:19:e4:12:e5:8e:f3:de:bf:
50:92:5a:2d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBF8I+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OWJlMDJkZWEwYTA4NmU5ODgwZjU2NGM4Njg3MmJiYzU5N2NjNjcyMB4XDTIyMDEw
MTAwNTQwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTljZWI5ZDU5MjY2
NDJhNmViZWNhZjgwYjQxMmViMTVkNzRhZTUyNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOi/UzB9E3sasEqNBajMX4hZ5z54Ei8OLl5h2BGGR+bWMqIn
1ObqIiIk9Lbnp2Yl3+g5SQ7TcAy5wpLf5DhJFgL5CG/X1jvEWno0NQPCe8ZsVTND
r1mmXPFY/OjAJcL89wQZPKlEpvJsjykku7p+hO/C7tXbnCai3HXjdwxrkmvviGYS
XyjNPVlfMZvNmBn2+T7NFuwf8EEyULFj2mQre0TBYzcNps/XuL/UZrWD1vURD6xe
5pUfO354TQJyu5tf9bNzqJ0pAl7e5tt2fo8Tv8VTHtgEkAykQybgBpSFl3KoeCIw
czKjD8wR8yh6uIH2dXzW6hl+V+IHNHtiTfUL3O0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQZzrnVkmZCpuvsr4C0EusV10rlJjAfBgNVHSMEGDAWgBQpvgLeoKCG6YgP
VkyGhyu8WXzGcjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tiNEMzcUNnaHVtSUQxWk1ob2NydkZsOHhuSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvZWExY2ZmLWFlOGYtNDcxOS04OWIzLTAwM2ExNTY4YmYzZi8x
L0djNjUxWkptUXFicjdLLUF0QkxyRmRkSzVTWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
ZWExY2ZmLWFlOGYtNDcxOS04OWIzLTAwM2ExNTY4YmYzZi8xL0tiNEMzcUNnaHVt
SUQxWk1ob2NydkZsOHhuSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAYstxjANBgkqhkiG9w0BAQsFAAOC
AQEAXjgOIxkQkX4cjQl9T8vEBASW8b8vWSf0bWrSD6rTRTHaKk6xm8tIPIoOz96q
TeZdaOPwobaJ17BkSOZLrIgANPd1w9JTm6sXgZDruTm41CBGKtxCoOVfdZixeLKn
Xzhtp3SaGS3J8Agy1Eu9RYI1+BdGbcoMF89sZEkD+tnMcPpVDJO4XYsx3YY1PAam
n7jB5572FzniyyslKAkae/IE6/3VnWS+FCqnSmE9KwJpO/mp7hY5P1WXFUJdN00r
5XLr1TkuHY//U8ILFoEO/ZDafXzUXPp1b6v5KUwhH2i/oa7keaSNeO25fbplgkpy
nU8gCZS8CxnkEuWO896/UJJaLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:09 2024 by rpki-client on console-ams.rpki-client.org