Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/GmESvqr6UOmCRSpSoAU_wE9c31Q.roa
File: GmESvqr6UOmCRSpSoAU_wE9c31Q.roa (raw, json)
Hash identifier: mG6D/5rDelHM/ya7qOXUq6hQ4BiwAlxNT/WXRTJFUIE=
Subject key identifier: 1A:61:12:BE:AA:FA:50:E9:82:45:2A:52:A0:05:3F:C0:4F:5C:DF:54
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 8DBFA1
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/GmESvqr6UOmCRSpSoAU_wE9c31Q.roa
Signing time: Tue 29 Mar 2022 14:00:02 +0000
ROA not before: Tue 29 Mar 2022 14:00:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.143.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9289633 (0x8dbfa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Mar 29 14:00:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a6112beaafa50e982452a52a0053fc04f5cdf54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6e:da:a2:7a:ff:28:93:7f:41:a8:09:bc:4e:
df:ee:c6:a5:7d:13:f9:66:14:19:05:13:ab:66:b3:
68:75:c2:f2:94:2c:4b:e1:8b:49:50:a4:7f:60:22:
ea:04:5b:11:f5:7d:2a:50:d4:a7:9d:0f:29:b8:b7:
d8:96:08:c7:a7:fd:9d:87:11:df:43:a2:66:51:b7:
ea:5a:42:57:f0:48:03:25:e3:f0:14:db:59:f7:58:
3a:8e:1f:f4:cc:c6:84:12:78:e3:b0:e2:db:53:d9:
4a:52:22:cd:4a:bb:41:1b:59:ba:53:05:ea:a0:43:
1e:0d:4b:dc:e7:55:25:cd:45:9e:f6:38:bf:54:6f:
25:01:b6:d1:ca:fa:07:fe:5a:1d:61:e8:61:fa:9b:
6c:32:45:c0:8e:96:a6:8b:46:4a:6c:ee:48:8d:7d:
60:a3:3c:3c:a7:ad:fc:ed:d9:9f:98:da:71:a1:87:
2e:37:06:e2:59:37:9b:3b:cc:82:b0:a7:a8:13:e1:
b4:82:4b:b5:b0:d7:ba:25:13:9d:06:fa:b1:fb:9d:
74:33:8a:9e:43:89:51:8a:d3:0c:63:82:f3:b0:5f:
38:ba:53:b8:2b:ac:d6:52:ab:da:e9:5a:81:68:b6:
d6:9b:6d:c6:70:fa:e0:63:ee:9d:a2:2a:ed:9c:92:
fb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:61:12:BE:AA:FA:50:E9:82:45:2A:52:A0:05:3F:C0:4F:5C:DF:54
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/GmESvqr6UOmCRSpSoAU_wE9c31Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.11.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:47:98:a4:95:02:25:37:f1:d9:09:50:4d:76:75:01:3e:cf:
49:c1:94:e7:2e:09:55:d6:83:06:a0:19:2f:0f:49:4e:80:ab:
69:4f:e9:2d:78:c9:72:dd:67:8a:e9:09:90:e5:28:5b:f7:d1:
e1:16:2e:34:4f:cf:02:a9:96:09:ca:51:c2:02:ff:de:3b:65:
62:87:19:0d:0c:bf:ad:b4:2a:80:74:f7:33:e6:fd:67:ed:09:
15:07:dd:f9:52:26:71:fe:d0:78:09:55:17:06:e9:08:c9:81:
52:3f:21:ce:18:5b:aa:f7:f5:54:8b:01:01:f2:9d:5e:14:0e:
cc:69:a8:d8:93:95:8b:ce:0b:43:43:25:65:7c:c0:a1:43:e1:
5e:3e:91:f1:75:ff:74:c9:70:9b:53:48:73:6e:2b:56:1f:f6:
ab:d1:0c:80:7d:da:dc:5a:92:92:71:62:75:00:5e:60:88:e2:
3c:6f:3c:b0:a2:9b:f3:f3:d4:66:db:93:c2:9a:c3:6f:dc:68:
55:e4:e4:75:ab:91:c2:d2:fb:74:71:48:22:11:a1:74:e6:47:
07:8c:83:2f:9b:e2:a9:58:a0:09:c9:b8:05:7b:06:1b:83:19:
ca:47:9c:fc:6d:9e:1a:65:f9:8d:80:5d:91:eb:43:a4:0e:f6:
fd:c5:7b:75
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAI2/oTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZjQ0ZGJhY2E1NmRhYzMxOTQwMWY2OGE1MGQ5MTdmNTQyNDYxMWFkMB4XDTIyMDMy
OTE0MDAwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWE2MTEyYmVhYWZh
NTBlOTgyNDUyYTUyYTAwNTNmYzA0ZjVjZGY1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKlu2qJ6/yiTf0GoCbxO3+7GpX0T+WYUGQUTq2azaHXC8pQs
S+GLSVCkf2Ai6gRbEfV9KlDUp50PKbi32JYIx6f9nYcR30OiZlG36lpCV/BIAyXj
8BTbWfdYOo4f9MzGhBJ447Di21PZSlIizUq7QRtZulMF6qBDHg1L3OdVJc1FnvY4
v1RvJQG20cr6B/5aHWHoYfqbbDJFwI6WpotGSmzuSI19YKM8PKet/O3Zn5jacaGH
LjcG4lk3mzvMgrCnqBPhtIJLtbDXuiUTnQb6sfuddDOKnkOJUYrTDGOC87BfOLpT
uCus1lKr2ulagWi21pttxnD64GPunaIq7ZyS+8MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQaYRK+qvpQ6YJFKlKgBT/AT1zfVDAfBgNVHSMEGDAWgBT/RNuspW2sMZQB
9opQ2Rf1QkYRrTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L18wVGJyS1Z0ckRHVUFmYUtVTmtYOVVKR0VhMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGYvNTNhOTQ3LWZkMDMtNDAxNC05ODI3LWM1ZDg5NTA4MThlYy8x
L0dtRVN2cXI2VU9tQ1JTcFNvQVVfd0U5YzMxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYv
NTNhOTQ3LWZkMDMtNDAxNC05ODI3LWM1ZDg5NTA4MThlYy8xL18wVGJyS1Z0ckRH
VUFmYUtVTmtYOVVKR0VhMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2PCzANBgkqhkiG9w0BAQsFAAOC
AQEAD0eYpJUCJTfx2QlQTXZ1AT7PScGU5y4JVdaDBqAZLw9JToCraU/pLXjJct1n
iukJkOUoW/fR4RYuNE/PAqmWCcpRwgL/3jtlYocZDQy/rbQqgHT3M+b9Z+0JFQfd
+VImcf7QeAlVFwbpCMmBUj8hzhhbqvf1VIsBAfKdXhQOzGmo2JOVi84LQ0MlZXzA
oUPhXj6R8XX/dMlwm1NIc24rVh/2q9EMgH3a3FqSknFidQBeYIjiPG88sKKb8/PU
ZtuTwprDb9xoVeTkdauRwtL7dHFIIhGhdOZHB4yDL5viqVigCcm4BXsGG4MZykec
/G2eGmX5jYBdketDpA72/cV7dQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org