Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/GOKTWscjqf1u2g5pt53F8Zc46ck.roa
File: GOKTWscjqf1u2g5pt53F8Zc46ck.roa (raw, json)
Hash identifier: 2iQ9v5wj4F6DrBYqinizoZkYoVsNzACs1w3cQuGoVTc=
Subject key identifier: 18:E2:93:5A:C7:23:A9:FD:6E:DA:0E:69:B7:9D:C5:F1:97:38:E9:C9
Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954
Certificate serial: 0410F023
Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/GOKTWscjqf1u2g5pt53F8Zc46ck.roa
Signing time: Thu 03 Feb 2022 08:34:30 +0000
ROA not before: Thu 03 Feb 2022 08:34:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203061
IP address blocks: 193.84.183.0/24 maxlen: 24
185.145.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68218915 (0x410f023)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954
Validity
Not Before: Feb 3 08:34:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18e2935ac723a9fd6eda0e69b79dc5f19738e9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:db:9d:be:04:19:f8:f6:c9:15:24:bd:65:6d:
10:0b:ce:70:c3:39:a6:1f:7c:62:9e:c3:fa:57:eb:
9d:26:ed:b3:75:9d:bc:7c:d7:ab:4e:f7:cd:35:94:
26:69:da:f4:6e:68:a3:18:99:f5:c3:15:93:aa:ec:
03:08:82:7e:92:82:ea:ae:4f:d4:7b:d5:52:05:51:
20:66:62:98:c0:9d:79:5b:63:af:8c:8e:53:cc:82:
29:70:29:ef:31:21:4e:17:98:25:f8:e7:d8:6b:d0:
87:ca:54:77:9f:c1:08:9e:40:36:21:64:8f:47:9d:
d1:65:c6:be:1a:15:c1:6f:22:45:ff:d2:97:fe:c6:
8f:03:2a:7e:6d:15:60:5c:fa:f2:50:69:fe:eb:7a:
7f:04:02:77:b6:d6:c2:f8:0c:11:b7:21:ba:b2:5b:
1e:bc:ab:be:f1:fc:8f:00:94:96:95:38:cd:cd:3f:
d1:0d:06:09:a9:73:50:68:cc:67:8f:75:fc:a8:2c:
3d:b6:24:51:f9:fa:3b:6a:ae:d2:ee:d7:4f:f2:ae:
75:87:47:1c:84:22:d4:67:05:55:94:14:d1:dc:92:
04:bb:e7:bb:f2:7d:82:a2:77:88:e6:d4:8d:ea:08:
92:cf:b5:9a:50:25:60:2b:c7:e0:48:29:52:f8:d3:
16:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E2:93:5A:C7:23:A9:FD:6E:DA:0E:69:B7:9D:C5:F1:97:38:E9:C9
X509v3 Authority Key Identifier:
keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/GOKTWscjqf1u2g5pt53F8Zc46ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.216.0/22
193.84.183.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c5:19:af:1a:f8:44:77:e0:3a:2b:f9:39:d8:50:94:6a:4b:
cd:bc:d9:fb:e0:0c:97:81:fc:00:89:d8:aa:0f:dc:42:0b:c2:
74:8a:c5:1e:2e:d8:66:7b:9e:48:bd:8b:a9:93:24:b1:b6:74:
92:8c:39:8b:9a:7c:b7:2c:3a:6a:02:97:a9:42:6c:b8:6d:3e:
2c:f3:89:4e:7e:de:90:b4:47:19:2f:20:4b:c9:ff:4a:38:9d:
39:7d:f6:f1:be:f9:2d:c7:9d:9f:bc:35:1e:fe:ee:b2:eb:b5:
46:18:88:dd:f1:b3:b0:d1:b2:04:38:62:2a:81:c0:3b:14:b5:
8a:3d:6b:12:b0:0e:84:6e:bc:10:58:46:40:4d:db:99:a2:e0:
26:4b:8b:bc:2b:e8:80:f3:38:8d:6d:d5:1d:7c:4f:39:97:1c:
03:58:d6:db:31:ed:3a:6e:b4:c5:1b:0d:75:79:85:2f:30:89:
45:16:20:a0:c8:fc:d8:f6:36:1a:0f:1a:4a:a4:72:1e:b5:95:
4a:94:95:0a:9a:ba:91:a1:df:38:24:66:0d:35:f1:e2:91:ed:
6c:40:14:c5:97:cc:94:1b:8a:d3:cf:d4:3a:3b:36:a8:af:b6:
f5:6c:d1:c7:bd:ed:48:a6:a8:b2:4f:7e:ff:63:f3:ee:6f:61:
ea:ee:b5:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:16:50 2025 by rpki-client