Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/Gvn9HN544NzGzpPEb63yN_x4G-Q.roa
File: Gvn9HN544NzGzpPEb63yN_x4G-Q.roa (raw, json)
Hash identifier: tEreA0KsJtA0/L0OCbDC1V9inCu4gwOdu/Fc0+huiAE=
Subject key identifier: 1A:F9:FD:1C:DE:78:E0:DC:C6:CE:93:C4:6F:AD:F2:37:FC:78:1B:E4
Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954
Certificate serial: 03BDE4D8
Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/Gvn9HN544NzGzpPEb63yN_x4G-Q.roa
Signing time: Sat 01 Jan 2022 14:08:26 +0000
ROA not before: Sat 01 Jan 2022 14:08:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205659
IP address blocks: 64.190.252.0/22 maxlen: 22
216.246.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62776536 (0x3bde4d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954
Validity
Not Before: Jan 1 14:08:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1af9fd1cde78e0dcc6ce93c46fadf237fc781be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2b:92:d7:c3:dd:11:8d:d0:63:e5:2d:35:0e:
26:d8:24:05:e2:8a:c6:3d:34:e3:8d:fc:9d:6a:19:
17:21:99:ea:da:a5:0a:74:02:07:d0:94:0b:73:c8:
6c:b7:a3:3e:2e:f0:06:06:29:5a:60:c0:c8:96:d4:
a0:c5:86:68:7e:67:f9:f3:72:96:0b:0d:06:89:13:
df:13:8b:25:bd:e4:ee:78:5e:8f:0c:23:ec:96:6b:
91:2c:78:f2:84:b4:48:98:a7:94:89:44:eb:6a:f4:
cf:93:c7:f1:4e:d8:47:c2:43:0d:ce:c5:b5:e2:c4:
5c:55:7d:aa:ac:36:94:29:c1:78:c9:08:45:c0:1b:
f8:bb:6a:37:49:88:76:1c:55:f2:22:f7:f1:f8:9a:
b3:d8:a5:15:97:b2:47:a7:96:c3:e2:65:63:69:28:
70:5d:dd:53:03:cb:0b:8f:8d:99:bd:b3:24:67:93:
7b:86:2d:98:2e:1f:8e:b9:0b:0f:b9:88:4c:2a:6b:
db:1c:9e:8a:06:3b:f9:72:e6:4e:93:8f:94:97:93:
61:e5:6f:92:c4:24:bd:50:25:f2:c5:ea:2c:d7:58:
ca:97:3d:63:9b:7f:76:1a:67:e7:2d:da:d5:48:fd:
77:d6:b2:22:4d:23:32:9e:72:42:03:43:fd:af:e8:
05:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F9:FD:1C:DE:78:E0:DC:C6:CE:93:C4:6F:AD:F2:37:FC:78:1B:E4
X509v3 Authority Key Identifier:
keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/Gvn9HN544NzGzpPEb63yN_x4G-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.190.252.0/22
216.246.212.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:81:fb:7e:61:fe:cb:13:ed:af:72:ac:b0:af:07:b3:33:39:
35:4e:7f:b5:b6:8f:2d:56:9d:79:8b:ee:cc:8a:87:6b:ec:a7:
6c:45:63:fe:20:6a:d2:a8:b4:9e:1c:f9:28:95:ba:19:be:60:
7a:11:9f:53:49:fa:40:9a:9e:ef:c3:0a:d0:b7:d4:49:e2:91:
a8:20:c7:49:15:62:59:23:83:d0:34:37:ac:a9:94:6c:76:5a:
26:d8:c7:33:ee:77:cb:1f:0c:a7:87:b0:21:03:9e:e6:34:6a:
98:9b:55:96:7a:02:89:0b:72:5a:a0:6c:fc:a0:cf:1d:ca:a5:
8c:8c:bd:e7:8c:69:03:1d:f7:71:bd:73:c7:2b:73:cb:11:36:
e5:f9:b6:70:21:15:29:00:71:65:75:cb:e2:0a:10:c6:39:40:
7e:ab:a9:7c:be:64:6e:20:06:50:24:12:46:7b:41:be:95:fd:
e5:4c:8e:52:04:db:be:e4:fa:34:37:4c:3e:87:bd:57:06:26:
5a:df:1a:9a:d5:5d:ce:28:c9:2a:13:de:cf:78:b1:bb:39:17:
cd:15:c7:e6:db:62:35:de:32:ba:9d:c9:10:b4:11:7f:c6:15:
f8:ed:3b:b7:dd:aa:e2:f4:fc:74:e8:ef:fc:05:b5:19:48:a8:
2c:49:05:15
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA73k2DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTAyMWIyNTIyMjI5OTdiZmUzM2I3ZTRiMzE1YWM4ZDVlMDY3OTU0MB4XDTIyMDEw
MTE0MDgyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWFmOWZkMWNkZTc4
ZTBkY2M2Y2U5M2M0NmZhZGYyMzdmYzc4MWJlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKArktfD3RGN0GPlLTUOJtgkBeKKxj004438nWoZFyGZ6tql
CnQCB9CUC3PIbLejPi7wBgYpWmDAyJbUoMWGaH5n+fNylgsNBokT3xOLJb3k7nhe
jwwj7JZrkSx48oS0SJinlIlE62r0z5PH8U7YR8JDDc7FteLEXFV9qqw2lCnBeMkI
RcAb+LtqN0mIdhxV8iL38fias9ilFZeyR6eWw+JlY2kocF3dUwPLC4+Nmb2zJGeT
e4YtmC4fjrkLD7mITCpr2xyeigY7+XLmTpOPlJeTYeVvksQkvVAl8sXqLNdYypc9
Y5t/dhpn5y3a1Uj9d9ayIk0jMp5yQgND/a/oBWcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQa+f0c3njg3MbOk8RvrfI3/Hgb5DAfBgNVHSMEGDAWgBQhAhslIiKZe/4z
t+SzFayNXgZ5VDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lRSWJKU0lpbVh2LU03ZmtzeFdzalY0R2VWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvNTkyOTRjLTBmMjQtNDBjNS1iNWMzLTZlYWM2MmU2MGRmNy8x
L0d2bjlITjU0NE56R3pwUEViNjN5Tl94NEctUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
NTkyOTRjLTBmMjQtNDBjNS1iNWMzLTZlYWM2MmU2MGRmNy8xL0lRSWJKU0lpbVh2
LU03ZmtzeFdzalY0R2VWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAkC+/AMEAtj21DANBgkqhkiG9w0B
AQsFAAOCAQEApIH7fmH+yxPtr3KssK8HszM5NU5/tbaPLVadeYvuzIqHa+ynbEVj
/iBq0qi0nhz5KJW6Gb5gehGfU0n6QJqe78MK0LfUSeKRqCDHSRViWSOD0DQ3rKmU
bHZaJtjHM+53yx8Mp4ewIQOe5jRqmJtVlnoCiQtyWqBs/KDPHcqljIy954xpAx33
cb1zxytzyxE25fm2cCEVKQBxZXXL4goQxjlAfqupfL5kbiAGUCQSRntBvpX95UyO
UgTbvuT6NDdMPoe9VwYmWt8amtVdzijJKhPez3ixuzkXzRXH5ttiNd4yup3JELQR
f8YV+O07t92q4vT8dOjv/AW1GUioLEkFFQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:26:05 2025 by rpki-client