Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/s_GtD-OYEqlLZVZt7l-KFPsDA28.roa
File: s_GtD-OYEqlLZVZt7l-KFPsDA28.roa (raw, json)
Hash identifier: riJXIeJmfq5gGhGdBM3zs7kdBeTn/XOuf5MoyLxX/Tc=
Subject key identifier: B3:F1:AD:0F:E3:98:12:A9:4B:65:56:6D:EE:5F:8A:14:FB:03:03:6F
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CC9F141A454F0B25E48C86087C355
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/s_GtD-OYEqlLZVZt7l-KFPsDA28.roa
Signing time: Thu 11 Aug 2022 06:34:44 +0000
ROA not before: Thu 11 Aug 2022 06:34:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208465
IP address blocks: 147.234.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:c9:f1:41:a4:54:f0:b2:5e:48:c8:60:87:c3:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3f1ad0fe39812a94b65566dee5f8a14fb03036f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:63:71:72:27:8f:d9:b6:0c:1a:30:a5:2d:3f:
be:92:93:ab:78:f1:24:bf:12:a1:f8:4d:a8:59:e0:
01:36:90:67:30:71:4f:ce:df:d7:86:fe:e9:e6:40:
5a:89:eb:8c:92:17:c1:d3:e6:39:26:86:08:d6:f2:
3d:fe:b1:e3:22:a7:98:0e:7f:2a:2f:54:f1:da:2d:
11:c7:78:90:fd:b8:e5:d6:39:20:6d:18:b9:40:dc:
f7:27:b0:b3:bb:4f:eb:65:51:7c:25:bc:58:1d:4f:
e4:79:21:c9:8f:33:23:a8:fc:73:3f:13:fa:5a:13:
c8:5e:cd:62:30:f7:5f:18:0e:2a:0b:1c:8c:31:97:
ed:a3:d8:b0:94:c4:ee:a3:e0:cb:a2:3b:02:c6:be:
6a:a8:f4:95:e1:f0:a9:d4:fd:bd:4c:11:68:2a:af:
18:f9:6a:42:58:87:3a:da:87:23:18:0c:5d:25:e8:
d8:b0:58:1f:70:c5:34:3c:23:7e:b2:cb:a8:09:80:
b3:18:49:42:3e:73:dc:ba:4d:7d:c0:70:d9:97:45:
dd:58:4a:d4:59:cd:06:ab:50:7c:8d:b5:36:30:9a:
8d:1e:d9:63:bb:fc:aa:d0:e4:92:4c:b5:97:9b:6a:
54:9a:93:fb:59:fd:55:42:8e:6d:d8:c9:7e:cb:34:
bb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F1:AD:0F:E3:98:12:A9:4B:65:56:6D:EE:5F:8A:14:FB:03:03:6F
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/s_GtD-OYEqlLZVZt7l-KFPsDA28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.29.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:ac:11:fd:32:fa:49:33:b7:86:fc:a3:29:a5:24:04:0d:08:
c6:68:0a:3b:5e:da:28:eb:a1:49:93:21:c7:52:2c:25:46:f6:
1c:81:6f:84:5f:aa:9d:10:eb:ba:5e:3f:37:79:d4:ff:af:a4:
0a:49:68:4d:7d:d2:bc:fb:45:b6:ff:de:27:2e:f9:1e:99:0a:
89:76:4f:05:0b:ce:87:b8:a0:e7:85:57:27:7a:2e:7f:0b:43:
41:d7:c4:39:04:3b:e4:66:5b:55:70:8f:34:09:5a:a3:b0:52:
94:8a:8d:4f:2f:8e:fe:f4:f1:e7:9e:9c:0a:f4:4c:91:c8:86:
b8:c5:a9:3a:e0:71:6e:d5:14:ff:d8:b0:6b:cc:b3:ab:09:dd:
4a:48:5e:7b:2e:3d:9d:c0:41:84:7a:f8:76:9b:44:fc:fa:7c:
2e:25:7a:a3:e9:d9:b6:3e:d2:7e:db:b8:0a:c4:7f:ee:b3:eb:
a3:ba:38:fe:3c:3b:1f:9f:f4:1a:b9:73:91:86:17:4c:a1:bb:
cd:75:c6:ee:11:e3:8b:25:84:30:49:31:67:2d:01:be:11:03:
af:b4:02:30:9f:fc:34:73:07:b9:ec:98:f3:9c:55:a6:e9:21:
c7:b7:3f:5b:15:28:16:a2:73:38:f9:68:c9:96:f5:27:cd:4f:
94:b5:84:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKLnMnxQaRU8LJeSMhgh8NVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi
NDUwZTYwHhcNMjIwODExMDYzNDQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiM2YxYWQwZmUzOTgxMmE5NGI2NTU2NmRlZTVmOGExNGZiMDMwMzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGNxcieP2bYMGjClLT++kpOrePEk
vxKh+E2oWeABNpBnMHFPzt/Xhv7p5kBaieuMkhfB0+Y5JoYI1vI9/rHjIqeYDn8q
L1Tx2i0Rx3iQ/bjl1jkgbRi5QNz3J7Czu0/rZVF8JbxYHU/keSHJjzMjqPxzPxP6
WhPIXs1iMPdfGA4qCxyMMZfto9iwlMTuo+DLojsCxr5qqPSV4fCp1P29TBFoKq8Y
+WpCWIc62ocjGAxdJejYsFgfcMU0PCN+ssuoCYCzGElCPnPcuk19wHDZl0XdWErU
Wc0Gq1B8jbU2MJqNHtlju/yq0OSSTLWXm2pUmpP7Wf1VQo5t2Ml+yzS7BQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLPxrQ/jmBKpS2VWbe5fihT7AwNvMB8GA1UdIwQY
MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt
NDQzMzIyOWE4NDczLzEvc19HdEQtT1lFcWxMWlZadDdsLUtGUHNEQTI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz
LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+odMA0G
CSqGSIb3DQEBCwUAA4IBAQBsrBH9MvpJM7eG/KMppSQEDQjGaAo7Xtoo66FJkyHH
UiwlRvYcgW+EX6qdEOu6Xj83edT/r6QKSWhNfdK8+0W2/94nLvkemQqJdk8FC86H
uKDnhVcnei5/C0NB18Q5BDvkZltVcI80CVqjsFKUio1PL47+9PHnnpwK9EyRyIa4
xak64HFu1RT/2LBrzLOrCd1KSF57Lj2dwEGEevh2m0T8+nwuJXqj6dm2PtJ+27gK
xH/us+ujujj+PDsfn/QauXORhhdMobvNdcbuEeOLJYQwSTFnLQG+EQOvtAIwn/w0
cwe57JjznFWm6SHHtz9bFSgWonM4+WjJlvUnzU+UtYS0
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:38 2023 by rpki-client on console-ams.rpki-client.org