Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/gqt1X53lHMV_9UqA8QcX08i3nKM.roa
File: gqt1X53lHMV_9UqA8QcX08i3nKM.roa (raw, json)
Hash identifier: 0xktn+R6SmFY6XqFncu0ElxkAQ+Bkxa6E2o/yW+oNlo=
Subject key identifier: 82:AB:75:5F:9D:E5:1C:C5:7F:F5:4A:80:F1:07:17:D3:C8:B7:9C:A3
Certificate issuer: /CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Certificate serial: 02C1FD51
Authority key identifier: 5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/gqt1X53lHMV_9UqA8QcX08i3nKM.roa
Signing time: Sat 01 Jan 2022 14:07:00 +0000
ROA not before: Sat 01 Jan 2022 14:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206757
IP address blocks: 83.175.221.128/25 maxlen: 25
83.175.230.0/24 maxlen: 24
82.144.12.0/25 maxlen: 25
213.171.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46267729 (0x2c1fd51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Validity
Not Before: Jan 1 14:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82ab755f9de51cc57ff54a80f10717d3c8b79ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f5:da:90:15:29:f6:95:f0:dc:a1:5f:9c:11:
aa:e5:96:e9:ed:34:f9:ef:00:a5:f0:5d:5e:df:37:
16:60:8c:9b:02:3c:d7:d1:db:fa:09:ca:d1:b3:9c:
3e:b6:ad:ec:54:f0:d6:66:e3:37:3b:83:f7:c7:c5:
c0:2d:56:a7:a1:9b:f1:93:f5:27:a9:2b:2f:79:d7:
0f:6d:af:7e:cd:f1:08:ce:67:39:5e:97:e5:3b:6d:
48:49:75:6c:46:c4:64:2d:a7:52:29:9b:15:3b:d8:
05:b5:bf:2d:17:e9:d9:73:71:18:5c:a1:f3:a3:fa:
a6:10:6f:4b:2b:65:a5:7e:68:00:8b:ce:fe:81:f6:
ae:ae:3e:c7:3d:fb:70:30:eb:f2:b1:29:fe:f6:37:
2a:df:27:35:c9:a3:7e:76:c5:58:43:1b:df:02:b4:
8b:ec:ed:5f:63:d2:b4:08:1e:66:82:14:32:b4:f3:
34:22:4c:c0:75:1f:ec:f6:f4:8f:f6:55:e0:ad:8f:
51:7a:c3:c1:28:19:97:e5:e3:cc:22:7b:c0:26:97:
79:60:8c:00:98:c7:fb:b5:bf:9e:2a:05:d3:56:d3:
8a:b5:88:65:50:5d:d8:e2:43:5d:15:d3:03:74:18:
6e:35:ef:4c:27:75:1a:06:c3:2c:8c:62:39:13:69:
99:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AB:75:5F:9D:E5:1C:C5:7F:F5:4A:80:F1:07:17:D3:C8:B7:9C:A3
X509v3 Authority Key Identifier:
keyid:5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/gqt1X53lHMV_9UqA8QcX08i3nKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.12.0/25
83.175.221.128/25
83.175.230.0/24
213.171.230.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0b:0c:d4:f8:24:02:67:12:91:85:47:fa:43:b8:90:b2:f9:
8e:6e:9f:9f:fb:3e:55:4c:4d:bd:9c:10:a3:57:f4:5f:8b:1a:
4e:b4:de:58:fc:76:f9:be:88:62:a0:ee:2f:61:16:1c:75:8d:
c9:f3:c9:5b:e4:58:53:45:64:09:ed:1d:1c:4a:d5:a3:e0:c9:
9b:15:83:d2:6f:b7:85:12:a0:bf:fb:ec:4e:12:af:22:4e:8c:
07:11:23:31:85:45:af:5d:a8:12:e6:47:57:ed:bf:df:54:01:
5d:c6:99:0b:79:7f:9d:6f:c2:0a:aa:8a:6c:3e:d8:11:c3:1d:
92:e2:a3:38:28:82:b6:67:ee:93:45:62:47:5e:48:bb:40:51:
e7:c0:e0:ea:7e:53:53:f5:90:da:57:fc:f5:38:b9:05:c2:cf:
cc:cc:f7:08:78:e7:93:66:a9:67:42:b9:1c:d1:92:ad:ba:68:
5a:04:c1:67:20:97:6f:60:ba:cf:0a:50:9a:d1:8e:4f:bf:d0:
2f:ca:86:1f:12:0e:57:3b:61:5c:8c:1e:82:45:7a:a6:82:54:
6f:3b:2e:ad:f2:26:c6:6d:78:50:b4:c8:4f:ab:2e:38:2a:8b:
ab:58:5f:6e:4b:a8:90:e7:3d:24:c1:89:b9:42:cd:db:15:e2:
65:07:1d:26
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEAsH9UTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YTkzOWIwY2VkMzhkNzVjYzYzZWQ1MGQ2ZTVjZTcyYmJiNWI0YjEwMB4XDTIyMDEw
MTE0MDcwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODJhYjc1NWY5ZGU1
MWNjNTdmZjU0YTgwZjEwNzE3ZDNjOGI3OWNhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJP12pAVKfaV8NyhX5wRquWW6e00+e8ApfBdXt83FmCMmwI8
19Hb+gnK0bOcPrat7FTw1mbjNzuD98fFwC1Wp6Gb8ZP1J6krL3nXD22vfs3xCM5n
OV6X5TttSEl1bEbEZC2nUimbFTvYBbW/LRfp2XNxGFyh86P6phBvSytlpX5oAIvO
/oH2rq4+xz37cDDr8rEp/vY3Kt8nNcmjfnbFWEMb3wK0i+ztX2PStAgeZoIUMrTz
NCJMwHUf7Pb0j/ZV4K2PUXrDwSgZl+XjzCJ7wCaXeWCMAJjH+7W/nioF01bTirWI
ZVBd2OJDXRXTA3QYbjXvTCd1GgbDLIxiORNpmbECAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBSCq3VfneUcxX/1SoDxBxfTyLecozAfBgNVHSMEGDAWgBRak5sM7TjXXMY+
1Q1uXOcru1tLEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dwT2JETzA0MTF6R1B0VU5ibHpuSzd0YlN4QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzQvYmVhMTRhLTBkMzItNGFhNy1iODk4LWQ2MGIzYjZjY2E2ZS8x
L2dxdDFYNTNsSE1WXzlVcUE4UWNYMDhpM25LTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzQv
YmVhMTRhLTBkMzItNGFhNy1iODk4LWQ2MGIzYjZjY2E2ZS8xL1dwT2JETzA0MTF6
R1B0VU5ibHpuSzd0YlN4QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGgMFB1KQDAADBQdTr92AAwQAU6/mAwQA
1avmMA0GCSqGSIb3DQEBCwUAA4IBAQClCwzU+CQCZxKRhUf6Q7iQsvmObp+f+z5V
TE29nBCjV/RfixpOtN5Y/Hb5vohioO4vYRYcdY3J88lb5FhTRWQJ7R0cStWj4Mmb
FYPSb7eFEqC/++xOEq8iTowHESMxhUWvXagS5kdX7b/fVAFdxpkLeX+db8IKqops
PtgRwx2S4qM4KIK2Z+6TRWJHXki7QFHnwODqflNT9ZDaV/z1OLkFws/MzPcIeOeT
ZqlnQrkc0ZKtumhaBMFnIJdvYLrPClCa0Y5Pv9AvyoYfEg5XO2FcjB6CRXqmglRv
Oy6t8ibGbXhQtMhPqy44KourWF9uS6iQ5z0kwYm5Qs3bFeJlBx0m
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:11 2025 by rpki-client