Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/GJ-86WhTP3rt-3zxrPVZSd6awBE.roa
File: GJ-86WhTP3rt-3zxrPVZSd6awBE.roa (raw, json)
Hash identifier: 6qNIp22NAtAC/dsdN3LrrfaYkhvAnLC5xOtVMv3bOqc=
Subject key identifier: 18:9F:BC:E9:68:53:3F:7A:ED:FB:7C:F1:AC:F5:59:49:DE:9A:C0:11
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07A53AE6
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/GJ-86WhTP3rt-3zxrPVZSd6awBE.roa
Signing time: Sat 01 Jan 2022 08:01:45 +0000
ROA not before: Sat 01 Jan 2022 08:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35537
IP address blocks: 94.124.116.0/24 maxlen: 24
2a09:7:2004::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128269030 (0x7a53ae6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=189fbce968533f7aedfb7cf1acf55949de9ac011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c2:dc:eb:e6:68:7f:22:23:68:b9:42:38:98:
3e:a2:b6:6d:be:00:4f:5f:5e:1e:cd:05:14:08:d8:
8d:34:ff:cf:01:b0:2e:8a:4b:ef:26:5f:2b:fb:12:
23:3f:62:a5:b1:cf:f0:99:9e:e3:07:08:b6:47:bd:
7a:37:73:f8:35:25:49:16:7f:7c:4a:f5:78:2f:95:
fc:26:7e:03:21:8b:7d:0e:c4:cf:f8:a7:d0:fe:f9:
5a:5f:04:d6:f5:4e:75:19:de:99:94:89:97:97:41:
93:a4:7a:1d:a2:a1:0b:b0:42:9a:29:18:dd:6d:92:
3b:1b:29:cc:d0:2e:33:6a:a6:0b:b8:c5:72:4b:c0:
d7:87:74:87:2e:80:44:1c:cc:e7:7d:f5:75:fc:c7:
31:f2:dd:bc:3c:51:53:1f:54:1a:5b:d6:2b:fa:36:
a4:f7:8a:b3:ff:03:34:5d:49:7d:b0:04:f6:01:ce:
bc:04:f3:c0:86:c5:2a:08:79:aa:9b:e9:3a:8c:59:
f6:b7:ca:5b:1f:5e:15:60:59:0c:fb:75:01:ed:d5:
1e:82:18:60:ce:12:dd:90:84:c2:bd:71:90:39:1d:
2f:8a:4c:61:1a:8d:82:e1:4e:93:4c:01:aa:52:5a:
46:76:8a:85:50:3f:88:de:ac:ed:90:3a:57:50:93:
5a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:BC:E9:68:53:3F:7A:ED:FB:7C:F1:AC:F5:59:49:DE:9A:C0:11
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/GJ-86WhTP3rt-3zxrPVZSd6awBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.116.0/24
IPv6:
2a09:7:2004::/48
Signature Algorithm: sha256WithRSAEncryption
64:d7:5a:ee:57:de:8c:5e:eb:bd:5e:49:60:ec:43:c6:e9:04:
62:3d:61:08:b7:27:a9:57:5b:46:57:1b:c2:7b:53:7d:84:1a:
b5:0c:6b:f5:1f:92:a9:12:af:85:7d:70:ac:5a:84:5e:75:2a:
26:22:6a:d2:da:a6:ac:9f:38:45:9e:90:3e:79:9a:82:f0:e1:
5b:e4:98:2b:92:ca:7f:e6:33:dc:03:b3:dd:54:5b:c5:ef:bb:
76:e7:eb:d7:c3:bc:3e:49:9c:97:d3:d5:a3:41:53:8e:48:60:
ca:42:52:5b:b7:6f:e9:24:18:24:ff:38:38:62:69:3f:80:47:
4e:84:82:29:41:0c:bc:3d:45:78:f3:2f:52:ee:b4:04:fe:73:
90:73:01:02:8f:32:2b:c5:c5:6f:bd:39:95:86:ac:45:8e:84:
69:42:be:43:e9:4a:2e:c5:36:9f:1b:15:cf:0d:12:b0:4b:64:
7d:ea:24:cc:d9:6d:7d:81:23:0b:4c:45:4f:7e:d4:2f:28:e6:
7f:19:fc:ef:ef:5d:62:34:66:33:15:86:24:a3:63:0f:26:96:
e0:52:bc:23:bb:dc:6c:7d:99:1a:89:fe:03:94:f3:97:56:41:
d1:4a:30:9d:07:9b:4c:4d:95:3a:33:78:0f:85:d6:1c:23:ea:
92:08:47:35
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEB6U65jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTc2ZWIyY2M0NjJlNmU0YmYwZGU2OWI5ZjYzNDg3NWRlYmJhYWUyMB4XDTIyMDEw
MTA4MDE0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTg5ZmJjZTk2ODUz
M2Y3YWVkZmI3Y2YxYWNmNTU5NDlkZTlhYzAxMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7C3OvmaH8iI2i5QjiYPqK2bb4AT19eHs0FFAjYjTT/zwGw
LopL7yZfK/sSIz9ipbHP8Jme4wcItke9ejdz+DUlSRZ/fEr1eC+V/CZ+AyGLfQ7E
z/in0P75Wl8E1vVOdRnemZSJl5dBk6R6HaKhC7BCmikY3W2SOxspzNAuM2qmC7jF
ckvA14d0hy6ARBzM5331dfzHMfLdvDxRUx9UGlvWK/o2pPeKs/8DNF1JfbAE9gHO
vATzwIbFKgh5qpvpOoxZ9rfKWx9eFWBZDPt1Ae3VHoIYYM4S3ZCEwr1xkDkdL4pM
YRqNguFOk0wBqlJaRnaKhVA/iN6s7ZA6V1CTWuUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQYn7zpaFM/eu37fPGs9VlJ3prAETAfBgNVHSMEGDAWgBSldussxGLm5L8N
5pufY0h13ruq4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BYYnJMTVJpNXVTX0RlYWJuMk5JZGQ2N3F1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8x
L0dKLTg2V2hUUDNydC0zenhyUFZaU2Q2YXdCRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8xL3BYYnJMTVJpNXVT
X0RlYWJuMk5JZGQ2N3F1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAF58dDAPBAIAAjAJAwcAKgkAByAE
MA0GCSqGSIb3DQEBCwUAA4IBAQBk11ruV96MXuu9Xklg7EPG6QRiPWEItyepV1tG
VxvCe1N9hBq1DGv1H5KpEq+FfXCsWoRedSomImrS2qasnzhFnpA+eZqC8OFb5Jgr
ksp/5jPcA7PdVFvF77t25+vXw7w+SZyX09WjQVOOSGDKQlJbt2/pJBgk/zg4Ymk/
gEdOhIIpQQy8PUV48y9S7rQE/nOQcwECjzIrxcVvvTmVhqxFjoRpQr5D6UouxTaf
GxXPDRKwS2R96iTM2W19gSMLTEVPftQvKOZ/Gfzv711iNGYzFYYko2MPJpbgUrwj
u9xsfZkaif4DlPOXVkHRSjCdB5tMTZU6M3gPhdYcI+qSCEc1
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org