Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/ko1gB1sWEzZgR2ch8PnWtjKKi7w.roa
File: ko1gB1sWEzZgR2ch8PnWtjKKi7w.roa (raw, json)
Hash identifier: kjuxTmyZO2egAPQVaFjJSJI1rpFBDYMLdvme4wi8/Ns=
Subject key identifier: 92:8D:60:07:5B:16:13:36:60:47:67:21:F0:F9:D6:B6:32:8A:8B:BC
Certificate issuer: /CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Certificate serial: 3825952D
Authority key identifier: 18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/ko1gB1sWEzZgR2ch8PnWtjKKi7w.roa
Signing time: Sat 01 Jan 2022 09:06:22 +0000
ROA not before: Sat 01 Jan 2022 09:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15466
IP address blocks: 45.150.28.0/22 maxlen: 22
217.169.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941987117 (0x3825952d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Validity
Not Before: Jan 1 09:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=928d60075b16133660476721f0f9d6b6328a8bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:b0:e2:8d:e6:e1:c7:5a:6a:98:45:da:53:
37:b0:6a:b7:12:34:87:98:d1:90:91:bb:03:c8:4b:
e2:3b:1e:2f:19:cc:7b:3a:4d:ba:e4:24:4a:9c:3e:
ee:5e:44:aa:01:4b:62:74:c0:c1:ac:5d:27:eb:44:
f0:f6:c5:7c:cf:4b:1f:7b:a6:e5:a2:12:4f:aa:8e:
68:b0:ae:f9:b4:22:bf:f0:cc:ab:e0:90:3f:95:62:
79:f5:88:72:43:2d:09:c0:e8:db:65:7d:34:8b:04:
9e:7c:2c:42:cc:dd:ac:41:62:f0:bf:da:f3:25:58:
ba:18:2f:97:f5:f5:2f:40:42:76:6a:40:e3:52:8c:
fa:fa:37:81:34:79:96:ad:9f:a3:92:d8:28:e3:40:
84:84:6e:9e:5d:d1:89:52:3a:2a:7e:df:1d:19:ed:
2b:16:79:86:41:02:dd:d8:ae:e6:ad:a5:9d:ee:c1:
bd:84:5c:9a:fc:b2:c1:c5:55:89:c7:f6:b4:b6:74:
3f:a8:f0:27:24:18:37:f7:02:8a:2c:95:2f:43:62:
c4:f9:68:8b:ec:ea:1e:cd:21:16:e2:03:5d:26:d1:
33:db:cf:5f:26:23:ea:87:aa:72:67:35:95:6a:bd:
cb:22:b9:57:38:8d:40:b6:ad:18:67:20:3c:5f:c3:
48:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8D:60:07:5B:16:13:36:60:47:67:21:F0:F9:D6:B6:32:8A:8B:BC
X509v3 Authority Key Identifier:
keyid:18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/ko1gB1sWEzZgR2ch8PnWtjKKi7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.28.0/22
217.169.224.0/20
Signature Algorithm: sha256WithRSAEncryption
54:15:fd:42:33:01:b8:a1:81:9c:45:64:57:08:d2:ca:47:3b:
2e:a1:75:ca:df:72:5b:e3:94:cf:f1:e9:80:2d:19:84:13:33:
a3:95:0b:ef:16:16:68:f9:8a:b1:d4:9d:22:2d:14:cc:f3:ea:
da:59:fa:e3:1a:6a:50:f3:2e:97:35:d6:2b:0b:ac:bd:66:50:
83:bf:e0:f2:37:11:33:1b:10:74:0c:5d:34:e8:d6:33:c1:5e:
ce:3f:e6:37:52:f3:17:12:82:4d:9c:6f:2f:42:27:d3:df:57:
62:9a:c4:21:48:c1:5b:04:17:d3:03:05:9f:e6:82:1f:a8:c1:
0f:34:98:4a:93:15:f9:8e:cd:7c:b7:05:e0:9b:fe:b4:fa:de:
22:cd:1a:82:82:df:aa:c1:41:bf:2f:a7:7e:e3:ff:47:07:df:
88:d6:9e:a6:e6:10:12:fc:33:49:ec:65:3d:6d:e8:26:0c:6c:
79:07:2e:fb:a4:d2:e0:f4:69:63:33:76:04:4e:78:3d:88:41:
d9:60:d8:a8:a5:ea:f8:c8:2e:c8:c2:7c:e2:74:c9:88:ef:70:
cf:e1:d6:97:d9:94:de:e3:9c:34:d1:94:ff:de:c3:04:64:81:
f2:5b:cd:33:45:10:65:25:9e:80:bd:d3:97:9f:19:97:d2:06:
96:2c:5b:e6
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEOCWVLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ODMwZTYwM2U5Y2E4YzA1ZDRjMWJjNjJiMGI3NmU3YmQ5ZDE4OTA5MB4XDTIyMDEw
MTA5MDYyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTI4ZDYwMDc1YjE2
MTMzNjYwNDc2NzIxZjBmOWQ2YjYzMjhhOGJiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKK3sOKN5uHHWmqYRdpTN7BqtxI0h5jRkJG7A8hL4jseLxnM
ezpNuuQkSpw+7l5EqgFLYnTAwaxdJ+tE8PbFfM9LH3um5aIST6qOaLCu+bQiv/DM
q+CQP5ViefWIckMtCcDo22V9NIsEnnwsQszdrEFi8L/a8yVYuhgvl/X1L0BCdmpA
41KM+vo3gTR5lq2fo5LYKONAhIRunl3RiVI6Kn7fHRntKxZ5hkEC3diu5q2lne7B
vYRcmvyywcVVicf2tLZ0P6jwJyQYN/cCiiyVL0NixPloi+zqHs0hFuIDXSbRM9vP
XyYj6oeqcmc1lWq9yyK5VziNQLatGGcgPF/DSBsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSSjWAHWxYTNmBHZyHw+da2MoqLvDAfBgNVHSMEGDAWgBQYMOYD6cqMBdTB
vGKwt2572dGJCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dERG1BLW5LakFYVXdieGlzTGR1ZTluUmlRay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzYvMjE5MWQ3LWZkYTAtNGIwNy04YThmLTE3ODllNjRkMzIxMC8x
L2tvMWdCMXNXRXpaZ1IyY2g4UG5XdGpLS2k3dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYv
MjE5MWQ3LWZkYTAtNGIwNy04YThmLTE3ODllNjRkMzIxMC8xL0dERG1BLW5LakFY
VXdieGlzTGR1ZTluUmlRay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAi2WHAMEBNmp4DANBgkqhkiG9w0B
AQsFAAOCAQEAVBX9QjMBuKGBnEVkVwjSykc7LqF1yt9yW+OUz/HpgC0ZhBMzo5UL
7xYWaPmKsdSdIi0UzPPq2ln64xpqUPMulzXWKwusvWZQg7/g8jcRMxsQdAxdNOjW
M8Fezj/mN1LzFxKCTZxvL0In099XYprEIUjBWwQX0wMFn+aCH6jBDzSYSpMV+Y7N
fLcF4Jv+tPreIs0agoLfqsFBvy+nfuP/RwffiNaepuYQEvwzSexlPW3oJgxseQcu
+6TS4PRpYzN2BE54PYhB2WDYqKXq+MguyMJ84nTJiO9wz+HWl9mU3uOcNNGU/97D
BGSB8lvNM0UQZSWegL3Tl58Zl9IGlixb5g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:41 2023 by rpki-client on console-ams.rpki-client.org