Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/c0a576-a220-4de0-aac1-7b96a9997718/1/gBei8rm0bEp4QXkXz6DXvI1DHqY.roa
File: gBei8rm0bEp4QXkXz6DXvI1DHqY.roa (raw, json)
Hash identifier: jpbFnkJpFS0Tc5gqqZ1gi4o68ORmcT+14E8db40xOQk=
Subject key identifier: 80:17:A2:F2:B9:B4:6C:4A:78:41:79:17:CF:A0:D7:BC:8D:43:1E:A6
Certificate issuer: /CN=0246e8a76d30c7c0495bc5ce8ee5110feab286e6
Certificate serial: 04F1702F
Authority key identifier: 02:46:E8:A7:6D:30:C7:C0:49:5B:C5:CE:8E:E5:11:0F:EA:B2:86:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Akbop20wx8BJW8XOjuURD-qyhuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/c0a576-a220-4de0-aac1-7b96a9997718/1/gBei8rm0bEp4QXkXz6DXvI1DHqY.roa
Signing time: Sat 01 Jan 2022 10:56:52 +0000
ROA not before: Sat 01 Jan 2022 10:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206174
IP address blocks: 193.31.221.0/24 maxlen: 24
66.84.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82931759 (0x4f1702f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0246e8a76d30c7c0495bc5ce8ee5110feab286e6
Validity
Not Before: Jan 1 10:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8017a2f2b9b46c4a78417917cfa0d7bc8d431ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:16:df:02:36:89:88:b2:0b:e5:d3:35:01:35:
f6:a8:e2:0d:26:f6:91:6a:92:88:62:f1:01:be:d4:
b7:e1:38:95:02:90:4f:c2:1d:67:ff:de:83:22:21:
5c:05:8b:c4:e0:46:ad:85:d8:46:7c:bf:fe:11:75:
96:41:65:94:da:7f:eb:c2:c7:52:20:e6:d3:e9:e2:
b4:cf:c8:9b:5f:04:c2:69:7b:63:92:e2:02:58:04:
36:a6:6e:f8:b1:29:dc:87:2a:75:19:31:22:66:ca:
b3:61:3a:3e:77:d8:0f:a7:8b:51:99:da:9a:2c:0b:
2a:fd:f2:9b:2d:3b:5e:cf:83:af:60:56:a3:af:b1:
48:cd:99:16:00:51:aa:63:54:9a:01:9e:a2:1e:51:
f8:4d:55:2f:4c:53:1a:2a:0a:67:84:10:d7:30:c7:
4e:4e:14:69:47:df:08:67:14:71:1a:29:a3:29:6a:
72:35:6c:06:7b:82:90:5c:69:01:8a:8b:89:cb:97:
30:fa:2d:32:7c:21:1d:c8:d8:9d:73:6a:74:3c:27:
1d:15:56:0e:96:57:96:7d:e0:e4:32:de:c9:dd:8a:
37:08:ba:cf:02:d6:83:f5:82:d9:6f:09:56:58:c6:
c2:57:05:ba:af:ab:94:4a:cc:aa:a0:ea:83:99:0b:
db:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:17:A2:F2:B9:B4:6C:4A:78:41:79:17:CF:A0:D7:BC:8D:43:1E:A6
X509v3 Authority Key Identifier:
keyid:02:46:E8:A7:6D:30:C7:C0:49:5B:C5:CE:8E:E5:11:0F:EA:B2:86:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Akbop20wx8BJW8XOjuURD-qyhuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/c0a576-a220-4de0-aac1-7b96a9997718/1/gBei8rm0bEp4QXkXz6DXvI1DHqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/c0a576-a220-4de0-aac1-7b96a9997718/1/Akbop20wx8BJW8XOjuURD-qyhuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.84.72.0/24
193.31.221.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:8a:e1:ef:44:c1:16:a6:9a:2c:57:bd:dc:20:45:be:09:81:
d1:f1:1f:f2:55:ca:a7:4a:da:67:63:a7:44:8b:21:84:7b:7c:
2b:49:b0:65:de:13:55:63:64:84:c4:0a:97:c1:97:28:77:be:
9e:ed:1f:86:b6:96:2e:21:87:2d:d2:17:6d:db:4c:82:e7:45:
03:8e:9d:74:c9:5a:b8:b5:ac:3f:d4:45:4a:14:1f:f6:ac:4b:
54:41:28:b3:f1:5d:95:6a:df:b2:b2:54:0d:0e:b4:87:3a:40:
e9:f4:3a:1c:6f:d6:fd:fe:0a:4b:a4:20:7e:e2:0e:0e:bf:ae:
8a:9d:48:32:7a:5d:b3:f4:01:80:ee:9b:4e:dd:80:66:7e:53:
3a:d8:2d:bf:66:5d:6b:db:24:f5:97:23:26:6b:c3:12:44:82:
6f:d3:3e:51:b5:ce:02:22:c3:17:61:1e:56:1c:00:34:64:00:
d4:88:d1:85:d7:36:69:6d:90:27:b7:e4:d1:74:5b:e2:1d:fd:
ea:71:64:1b:47:58:b7:a1:20:c7:36:01:50:18:8f:47:b9:bb:
ef:67:73:de:cf:1c:d0:2f:c3:98:4b:6d:94:df:9d:10:0c:4b:
5d:ec:8d:ca:36:88:7e:4c:2c:54:51:bd:43:33:89:eb:aa:8a:
c6:bb:15:e6
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBPFwLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MjQ2ZThhNzZkMzBjN2MwNDk1YmM1Y2U4ZWU1MTEwZmVhYjI4NmU2MB4XDTIyMDEw
MTEwNTY1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODAxN2EyZjJiOWI0
NmM0YTc4NDE3OTE3Y2ZhMGQ3YmM4ZDQzMWVhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMIW3wI2iYiyC+XTNQE19qjiDSb2kWqSiGLxAb7Ut+E4lQKQ
T8IdZ//egyIhXAWLxOBGrYXYRny//hF1lkFllNp/68LHUiDm0+nitM/Im18Ewml7
Y5LiAlgENqZu+LEp3IcqdRkxImbKs2E6PnfYD6eLUZnamiwLKv3ymy07Xs+Dr2BW
o6+xSM2ZFgBRqmNUmgGeoh5R+E1VL0xTGioKZ4QQ1zDHTk4UaUffCGcUcRopoylq
cjVsBnuCkFxpAYqLicuXMPotMnwhHcjYnXNqdDwnHRVWDpZXln3g5DLeyd2KNwi6
zwLWg/WC2W8JVljGwlcFuq+rlErMqqDqg5kL2x8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSAF6LyubRsSnhBeRfPoNe8jUMepjAfBgNVHSMEGDAWgBQCRuinbTDHwElb
xc6O5REP6rKG5jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FrYm9wMjB3eDhCSlc4WE9qdVVSRC1xeWh1WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvYzBhNTc2LWEyMjAtNGRlMC1hYWMxLTdiOTZhOTk5NzcxOC8x
L2dCZWk4cm0wYkVwNFFYa1h6NkRYdkkxREhxWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
YzBhNTc2LWEyMjAtNGRlMC1hYWMxLTdiOTZhOTk5NzcxOC8xL0FrYm9wMjB3eDhC
Slc4WE9qdVVSRC1xeWh1WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAEJUSAMEAMEf3TANBgkqhkiG9w0B
AQsFAAOCAQEAjorh70TBFqaaLFe93CBFvgmB0fEf8lXKp0raZ2OnRIshhHt8K0mw
Zd4TVWNkhMQKl8GXKHe+nu0fhraWLiGHLdIXbdtMgudFA46ddMlauLWsP9RFShQf
9qxLVEEos/FdlWrfsrJUDQ60hzpA6fQ6HG/W/f4KS6QgfuIODr+uip1IMnpds/QB
gO6bTt2AZn5TOtgtv2Zda9sk9ZcjJmvDEkSCb9M+UbXOAiLDF2EeVhwANGQA1IjR
hdc2aW2QJ7fk0XRb4h396nFkG0dYt6EgxzYBUBiPR7m772dz3s8c0C/DmEttlN+d
EAxLXeyNyjaIfkwsVFG9QzOJ66qKxrsV5g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:54 2025 by rpki-client