Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/3ce047-d858-4e7f-a070-d4319d13c775/1/gpW9BUcOr5gZ3yGYGOYNiLjocFE.roa
File: gpW9BUcOr5gZ3yGYGOYNiLjocFE.roa (raw, json)
Hash identifier: JtAQ3hBq74rSlWhCF47WjJAxz4wmjNsbgm8sat1nCTY=
Subject key identifier: 82:95:BD:05:47:0E:AF:98:19:DF:21:98:18:E6:0D:88:B8:E8:70:51
Certificate issuer: /CN=1e0436dd698eba3eab5a92db1d64f2f314ed3116
Certificate serial: 090A7513
Authority key identifier: 1E:04:36:DD:69:8E:BA:3E:AB:5A:92:DB:1D:64:F2:F3:14:ED:31:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgQ23WmOuj6rWpLbHWTy8xTtMRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/3ce047-d858-4e7f-a070-d4319d13c775/1/gpW9BUcOr5gZ3yGYGOYNiLjocFE.roa
Signing time: Sat 01 Jan 2022 04:01:51 +0000
ROA not before: Sat 01 Jan 2022 04:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12843
IP address blocks: 193.164.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151680275 (0x90a7513)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e0436dd698eba3eab5a92db1d64f2f314ed3116
Validity
Not Before: Jan 1 04:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8295bd05470eaf9819df219818e60d88b8e87051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:62:87:06:48:71:ed:7d:b8:0d:39:30:f9:1d:
e1:11:ba:d5:cf:f5:f2:d4:cb:e2:5b:44:e7:8d:c5:
7b:c6:a1:48:6e:22:44:57:7d:cc:ed:60:a7:84:c6:
d9:fe:d7:8b:d1:81:b8:5e:ff:94:31:0d:5c:81:db:
14:22:f4:54:67:64:a8:f1:d7:2c:d9:c0:06:b3:99:
40:ae:e6:2d:e3:e4:a9:28:14:0f:78:3b:39:d2:22:
59:e8:d5:38:18:ec:3a:93:54:2f:b7:16:9b:11:c4:
a3:ec:de:ed:d4:b6:42:d6:56:84:4f:f8:75:ee:7d:
f1:10:88:db:9e:ea:8d:5f:db:2b:3c:86:7a:bd:44:
b2:2c:9a:3a:ce:29:fa:15:9c:d7:00:c2:e1:fe:ea:
99:1d:9c:41:fa:fd:81:63:70:e5:d4:68:7e:a6:eb:
b4:77:2c:51:b1:60:7e:ea:fb:51:68:05:d8:60:08:
40:61:de:15:4c:e3:9d:a4:bc:10:b9:5d:0a:1f:b2:
90:0b:99:1c:9d:c5:5f:f3:bd:96:d4:2d:f2:ec:d0:
33:93:4b:40:fa:fd:4d:0d:25:18:63:bc:49:fc:fa:
02:49:0d:a6:ef:e6:ce:f9:52:fe:39:08:bf:32:48:
2d:8e:54:3d:d2:0f:6a:0d:58:5e:f1:09:4a:30:08:
80:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:95:BD:05:47:0E:AF:98:19:DF:21:98:18:E6:0D:88:B8:E8:70:51
X509v3 Authority Key Identifier:
keyid:1E:04:36:DD:69:8E:BA:3E:AB:5A:92:DB:1D:64:F2:F3:14:ED:31:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgQ23WmOuj6rWpLbHWTy8xTtMRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/3ce047-d858-4e7f-a070-d4319d13c775/1/gpW9BUcOr5gZ3yGYGOYNiLjocFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/3ce047-d858-4e7f-a070-d4319d13c775/1/HgQ23WmOuj6rWpLbHWTy8xTtMRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.154.0/24
Signature Algorithm: sha256WithRSAEncryption
47:92:4f:80:40:4d:2a:e6:58:55:35:ff:c8:40:c6:ef:43:17:
d0:d1:5c:49:5e:5e:35:05:ca:7d:d2:57:6b:6b:f3:64:ed:d4:
df:85:5e:51:29:70:a3:16:99:fc:96:34:67:1b:44:87:fa:a1:
86:ac:c2:74:e2:34:9e:2e:5d:6a:e4:64:87:9e:5a:99:2c:81:
bc:f6:f3:3f:10:d3:df:62:03:22:2c:a3:c5:a1:dd:ec:77:40:
97:97:a5:9e:70:8f:d3:ce:c0:44:40:39:e2:9b:31:ab:8b:2b:
27:fd:9d:af:80:2f:48:a3:e4:10:e8:af:8f:4b:47:55:38:ee:
cf:fc:e2:ef:29:cd:0c:bb:17:e3:17:2b:aa:0b:8c:71:62:66:
05:c3:db:a0:7f:d9:a2:c5:ba:3d:1d:97:0d:9d:e9:e7:c9:2b:
bd:0d:a0:b1:17:b7:74:d7:8c:6e:fa:cb:66:b1:89:77:78:eb:
67:b8:dd:2f:76:71:9f:ee:83:93:b5:d2:ef:88:e0:23:56:47:
28:6a:24:f5:37:9f:7d:7b:68:5e:34:2b:d9:74:aa:33:cb:5c:
3e:88:cb:3f:c6:60:7f:ac:2e:48:c9:a3:4f:c8:50:11:2a:a7:
9b:c3:6c:66:13:73:aa:1d:be:b9:3b:a3:2a:9a:ee:5c:d6:85:
03:c5:bc:0e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQp1EzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTA0MzZkZDY5OGViYTNlYWI1YTkyZGIxZDY0ZjJmMzE0ZWQzMTE2MB4XDTIyMDEw
MTA0MDE1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODI5NWJkMDU0NzBl
YWY5ODE5ZGYyMTk4MThlNjBkODhiOGU4NzA1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ5ihwZIce19uA05MPkd4RG61c/18tTL4ltE543Fe8ahSG4i
RFd9zO1gp4TG2f7Xi9GBuF7/lDENXIHbFCL0VGdkqPHXLNnABrOZQK7mLePkqSgU
D3g7OdIiWejVOBjsOpNUL7cWmxHEo+ze7dS2QtZWhE/4de598RCI257qjV/bKzyG
er1EsiyaOs4p+hWc1wDC4f7qmR2cQfr9gWNw5dRofqbrtHcsUbFgfur7UWgF2GAI
QGHeFUzjnaS8ELldCh+ykAuZHJ3FX/O9ltQt8uzQM5NLQPr9TQ0lGGO8Sfz6AkkN
pu/mzvlS/jkIvzJILY5UPdIPag1YXvEJSjAIgP0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSClb0FRw6vmBnfIZgY5g2IuOhwUTAfBgNVHSMEGDAWgBQeBDbdaY66Pqta
ktsdZPLzFO0xFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hnUTIzV21PdWo2cldwTGJIV1R5OHhUdE1SWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvM2NlMDQ3LWQ4NTgtNGU3Zi1hMDcwLWQ0MzE5ZDEzYzc3NS8x
L2dwVzlCVWNPcjVnWjN5R1lHT1lOaUxqb2NGRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
M2NlMDQ3LWQ4NTgtNGU3Zi1hMDcwLWQ0MzE5ZDEzYzc3NS8xL0hnUTIzV21PdWo2
cldwTGJIV1R5OHhUdE1SWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGkmjANBgkqhkiG9w0BAQsFAAOC
AQEAR5JPgEBNKuZYVTX/yEDG70MX0NFcSV5eNQXKfdJXa2vzZO3U34VeUSlwoxaZ
/JY0ZxtEh/qhhqzCdOI0ni5dauRkh55amSyBvPbzPxDT32IDIiyjxaHd7HdAl5el
nnCP087AREA54psxq4srJ/2dr4AvSKPkEOivj0tHVTjuz/zi7ynNDLsX4xcrqguM
cWJmBcPboH/ZosW6PR2XDZ3p58krvQ2gsRe3dNeMbvrLZrGJd3jrZ7jdL3Zxn+6D
k7XS74jgI1ZHKGok9TeffXtoXjQr2XSqM8tcPojLP8Zgf6wuSMmjT8hQESqnm8Ns
ZhNzqh2+uTujKpruXNaFA8W8Dg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org