Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/jGZIALaek-TGaEQfKBEfUman92w.roa
File: jGZIALaek-TGaEQfKBEfUman92w.roa (raw, json)
Hash identifier: NwDcMEJpA9Ni3z3epC/1AkAzacVjsbKKTurdhb1pt1k=
Subject key identifier: 8C:66:48:00:B6:9E:93:E4:C6:68:44:1F:28:11:1F:52:66:A7:F7:6C
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 01839A1AC4177691F7FA1E0EBAF130CDDEF7
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/jGZIALaek-TGaEQfKBEfUman92w.roa
Signing time: Sun 02 Oct 2022 19:09:48 +0000
ROA not before: Sun 02 Oct 2022 19:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 91.199.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9a:1a:c4:17:76:91:f7:fa:1e:0e:ba:f1:30:cd:de:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Oct 2 19:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c664800b69e93e4c668441f28111f5266a7f76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:11:97:54:1b:0b:fb:85:62:fa:6e:43:41:14:
c7:2c:bf:2a:24:f7:a6:91:59:24:bd:f2:f3:8a:b1:
48:01:94:63:e5:3c:dd:af:8c:f9:6f:d4:2c:72:54:
43:bd:d4:de:b9:58:a3:79:2b:30:b6:89:4e:9e:50:
bb:47:4f:a0:cf:6f:d3:96:7c:11:e2:3f:a4:be:91:
50:02:3b:1f:63:80:07:85:10:20:83:5d:8d:ea:26:
04:63:65:98:cc:d6:e0:58:cc:b2:0d:35:9a:78:4d:
e1:11:cd:91:21:41:11:ee:7a:4b:db:9f:2f:3a:c0:
73:06:5a:b0:66:c7:c2:29:6c:49:f2:99:1a:b3:92:
7f:be:d1:20:64:9d:a2:10:0a:c9:92:9e:f3:98:77:
d6:6c:da:9e:57:b5:8a:eb:3f:cf:93:2c:88:ae:d9:
6b:05:62:c2:9d:b9:df:e4:16:0f:08:84:4b:20:1a:
29:f2:f0:0e:a5:b0:44:b5:32:66:ec:3a:56:d2:c7:
3f:77:30:fb:6d:1b:f1:c5:7d:19:2a:c7:48:61:e3:
39:56:63:f5:14:64:f1:f1:6b:0c:ad:11:1c:cc:7d:
16:09:bc:2c:8b:cf:25:56:e1:70:33:ba:cf:21:ae:
c9:07:1f:6e:76:dd:13:5e:d6:c8:2a:a9:f4:e8:72:
9d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:66:48:00:B6:9E:93:E4:C6:68:44:1F:28:11:1F:52:66:A7:F7:6C
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/jGZIALaek-TGaEQfKBEfUman92w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.44.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e3:07:e0:d4:9f:1b:ba:05:06:d3:f7:b1:7c:75:3b:a7:39:
7e:f9:00:f7:ae:72:5e:3f:a0:0b:09:c4:74:8a:28:e5:34:d7:
de:61:4e:7f:71:2e:b7:7b:31:86:4e:60:a5:86:35:41:15:eb:
c6:fc:41:a6:aa:26:d6:91:94:86:8b:37:98:42:53:9b:83:cb:
f1:84:55:59:5d:67:13:ba:da:ca:18:3d:b0:5d:8f:a5:6a:d8:
4e:24:a0:4c:c4:60:9d:3a:0d:34:fc:b2:90:96:c9:63:b0:0f:
4a:1b:66:69:fc:b3:d6:78:bb:04:7c:44:d6:d5:ec:65:bc:44:
c4:d5:f5:b9:bc:af:93:b0:9f:5d:61:5f:35:e7:89:c6:a1:8d:
7f:09:db:51:9a:ff:c3:fd:f1:5c:45:4f:98:91:c4:f6:65:d1:
a5:92:ee:00:8b:0c:01:3f:31:e4:3a:f1:8b:ef:10:5b:23:36:
7e:ce:1b:24:ca:a9:3b:81:67:04:11:1f:89:c6:18:7d:f7:b3:
e8:42:79:7a:11:ac:50:ac:ff:24:f8:7f:00:52:d5:54:93:80:
d3:24:c6:22:37:69:06:1f:9b:c9:00:17:fd:09:78:12:e8:4d:
78:9f:d5:9d:d6:a1:b5:aa:2c:2b:5c:7a:3c:ee:95:61:05:71:
81:f9:0b:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOaGsQXdpH3+h4OuvEwzd73MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZjIzMTM2NTk4NTgyOGQ1YTk2NjNlZDFiNDQwNjI0YjI0
ZmVjMTMwHhcNMjIxMDAyMTkwOTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzY2NDgwMGI2OWU5M2U0YzY2ODQ0MWYyODExMWY1MjY2YTdmNzZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBGXVBsL+4Vi+m5DQRTHLL8qJPem
kVkkvfLzirFIAZRj5Tzdr4z5b9QsclRDvdTeuVijeSswtolOnlC7R0+gz2/TlnwR
4j+kvpFQAjsfY4AHhRAgg12N6iYEY2WYzNbgWMyyDTWaeE3hEc2RIUER7npL258v
OsBzBlqwZsfCKWxJ8pkas5J/vtEgZJ2iEArJkp7zmHfWbNqeV7WK6z/PkyyIrtlr
BWLCnbnf5BYPCIRLIBop8vAOpbBEtTJm7DpW0sc/dzD7bRvxxX0ZKsdIYeM5VmP1
FGTx8WsMrREczH0WCbwsi88lVuFwM7rPIa7JBx9udt0TXtbIKqn06HKdyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIxmSAC2npPkxmhEHygRH1Jmp/dsMB8GA1UdIwQY
MBaAFAfyMTZZhYKNWpZj7RtEBiSyT+wTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzct
MDg1ZmEwYTU2MDUyLzEvakdaSUFMYWVrLVRHYUVRZktCRWZVbWFuOTJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzctMDg1ZmEwYTU2MDUy
LzEvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8csMA0G
CSqGSIb3DQEBCwUAA4IBAQBu4wfg1J8bugUG0/exfHU7pzl++QD3rnJeP6ALCcR0
iijlNNfeYU5/cS63ezGGTmClhjVBFevG/EGmqibWkZSGizeYQlObg8vxhFVZXWcT
utrKGD2wXY+lathOJKBMxGCdOg00/LKQlsljsA9KG2Zp/LPWeLsEfETW1exlvETE
1fW5vK+TsJ9dYV8154nGoY1/CdtRmv/D/fFcRU+YkcT2ZdGlku4AiwwBPzHkOvGL
7xBbIzZ+zhskyqk7gWcEER+Jxhh997PoQnl6EaxQrP8k+H8AUtVUk4DTJMYiN2kG
H5vJABf9CXgS6E14n9Wd1qG1qiwrXHo87pVhBXGB+QsF
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-fra.rpki-client.org