Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/gncW6G7XmtTf1p01-AmxS34X1rY.roa
File: gncW6G7XmtTf1p01-AmxS34X1rY.roa (raw, json)
Hash identifier: PQqlPCIdNsikq/oAiXjq3o5+qOBLCdi6AFVPcLGdb5U=
Subject key identifier: 82:77:16:E8:6E:D7:9A:D4:DF:D6:9D:35:F8:09:B1:4B:7E:17:D6:B6
Certificate issuer: /CN=1dae474d79597db75d1f4d49901b52558bbf6af4
Certificate serial: 017F30
Authority key identifier: 1D:AE:47:4D:79:59:7D:B7:5D:1F:4D:49:90:1B:52:55:8B:BF:6A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ha5HTXlZfbddH01JkBtSVYu_avQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/gncW6G7XmtTf1p01-AmxS34X1rY.roa
Signing time: Tue 11 Jan 2022 08:37:35 +0000
ROA not before: Tue 11 Jan 2022 08:37:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25091
IP address blocks: 79.110.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98096 (0x17f30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dae474d79597db75d1f4d49901b52558bbf6af4
Validity
Not Before: Jan 11 08:37:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=827716e86ed79ad4dfd69d35f809b14b7e17d6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:99:ac:65:cd:7d:c9:e4:80:1e:e7:28:eb:4a:
ee:36:e3:92:79:95:13:36:67:04:4d:d4:1a:d0:e7:
a3:00:22:ab:3e:bd:2c:68:6e:05:ef:27:3f:38:2e:
b3:01:8b:52:0f:29:86:bb:05:5c:8a:3d:d1:d6:bb:
5c:9a:ae:95:05:dd:d7:eb:02:bd:ab:70:59:37:37:
53:77:d2:25:4c:9e:71:2e:3b:66:40:a8:99:69:1b:
d8:35:fe:10:50:77:f1:22:1b:e8:97:2c:8c:60:42:
c7:78:c5:de:14:7b:a8:2e:d0:fa:96:a3:e4:e8:23:
60:29:3d:56:d1:ba:bb:51:bd:8c:0a:12:d1:72:bb:
0f:42:7e:1a:e0:b4:4c:c8:6c:50:f8:45:36:f4:d8:
9d:03:e5:f8:77:e4:70:dc:1e:c5:42:e9:4d:5d:27:
89:6c:02:3b:28:a2:cb:f1:98:71:18:f2:70:47:3a:
7c:67:61:cd:36:c0:ed:eb:7a:0b:24:4e:14:69:e7:
9f:22:2e:0f:ac:06:a4:36:b1:3b:42:9e:33:8d:72:
77:bc:f3:e5:17:d6:61:d4:73:54:09:48:76:0c:3d:
00:1d:d9:14:5f:18:1e:7b:0b:28:c1:cb:5c:99:60:
ef:8a:41:7a:3a:7b:c8:42:6a:e1:0f:46:85:0d:98:
88:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:77:16:E8:6E:D7:9A:D4:DF:D6:9D:35:F8:09:B1:4B:7E:17:D6:B6
X509v3 Authority Key Identifier:
keyid:1D:AE:47:4D:79:59:7D:B7:5D:1F:4D:49:90:1B:52:55:8B:BF:6A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ha5HTXlZfbddH01JkBtSVYu_avQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/gncW6G7XmtTf1p01-AmxS34X1rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/Ha5HTXlZfbddH01JkBtSVYu_avQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.235.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ab:a5:f7:0d:29:06:39:59:08:85:ab:52:6e:ff:5f:eb:0a:
c9:ca:73:bb:63:88:30:49:2d:24:3c:d3:95:9b:4b:59:c6:19:
cd:62:19:6c:ea:21:dc:ee:ff:f6:8e:74:4e:dc:d2:88:6b:fe:
e2:4c:f3:31:f8:54:ca:a2:7c:fb:2c:4f:39:37:dc:b4:11:5f:
7e:de:47:f6:47:60:04:99:52:62:32:f9:af:11:8b:ae:f7:b8:
df:f9:84:13:09:c0:29:d8:22:58:1b:41:16:66:c0:5c:f9:f6:
bf:a4:9b:84:55:55:82:06:d6:78:9f:46:ae:33:5e:c2:ed:6f:
9e:e8:cd:0c:fd:d5:ee:4e:89:3e:f1:81:b0:d9:d5:01:e2:2b:
42:b3:8d:ef:c0:31:1a:12:8e:92:5f:3e:fc:be:3e:2b:62:82:
7a:77:c1:c7:6f:45:fa:6f:94:34:dd:31:96:17:ac:f9:18:67:
27:a5:43:fa:42:96:23:84:a5:f6:49:a2:da:79:fd:55:77:e3:
c4:07:43:33:d2:59:9e:e8:80:b7:f3:bf:30:ed:ed:2f:86:d7:
12:79:bd:95:70:63:e7:21:13:3c:60:99:92:64:0c:84:73:40:
b5:fa:d5:3f:23:83:87:16:3a:a7:a6:d6:26:3f:36:3d:b6:5a:
c4:1b:3c:75
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAX8wMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFk
YWU0NzRkNzk1OTdkYjc1ZDFmNGQ0OTkwMWI1MjU1OGJiZjZhZjQwHhcNMjIwMTEx
MDgzNzM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4Mjc3MTZlODZlZDc5
YWQ0ZGZkNjlkMzVmODA5YjE0YjdlMTdkNmI2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArJmsZc19yeSAHuco60ruNuOSeZUTNmcETdQa0OejACKrPr0s
aG4F7yc/OC6zAYtSDymGuwVcij3R1rtcmq6VBd3X6wK9q3BZNzdTd9IlTJ5xLjtm
QKiZaRvYNf4QUHfxIhvolyyMYELHeMXeFHuoLtD6lqPk6CNgKT1W0bq7Ub2MChLR
crsPQn4a4LRMyGxQ+EU29NidA+X4d+Rw3B7FQulNXSeJbAI7KKLL8ZhxGPJwRzp8
Z2HNNsDt63oLJE4UaeefIi4PrAakNrE7Qp4zjXJ3vPPlF9Zh1HNUCUh2DD0AHdkU
XxgeewsowctcmWDvikF6OnvIQmrhD0aFDZiI6QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFIJ3Fuhu15rU39adNfgJsUt+F9a2MB8GA1UdIwQYMBaAFB2uR015WX23XR9N
SZAbUlWLv2r0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SGE1SFRYbFpmYmRkSDAxSmtCdFNWWXVfYXZRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82OS85OTZjZWUtMGFjYi00ZWI4LWE3N2EtMjdmOTBiOGQ4NWU2LzEv
Z25jVzZHN1htdFRmMXAwMS1BbXhTMzRYMXJZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85
OTZjZWUtMGFjYi00ZWI4LWE3N2EtMjdmOTBiOGQ4NWU2LzEvSGE1SFRYbFpmYmRk
SDAxSmtCdFNWWXVfYXZRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAT27rMA0GCSqGSIb3DQEBCwUAA4IB
AQAgq6X3DSkGOVkIhatSbv9f6wrJynO7Y4gwSS0kPNOVm0tZxhnNYhls6iHc7v/2
jnRO3NKIa/7iTPMx+FTKonz7LE85N9y0EV9+3kf2R2AEmVJiMvmvEYuu97jf+YQT
CcAp2CJYG0EWZsBc+fa/pJuEVVWCBtZ4n0auM17C7W+e6M0M/dXuTok+8YGw2dUB
4itCs43vwDEaEo6SXz78vj4rYoJ6d8HHb0X6b5Q03TGWF6z5GGcnpUP6QpYjhKX2
SaLaef1Vd+PEB0Mz0lme6IC3878w7e0vhtcSeb2VcGPnIRM8YJmSZAyEc0C1+tU/
I4OHFjqnptYmPzY9tlrEGzx1
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:22 2023 by rpki-client on console-fra.rpki-client.org