Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/GSIz61iiIpvMEfVFsP5O-Qt0ogI.roa
File: GSIz61iiIpvMEfVFsP5O-Qt0ogI.roa (raw, json)
Hash identifier: 5qFnidi42kxmuFesvbxjZlRC4WeYI6eJW13OmEFo0qU=
Subject key identifier: 19:22:33:EB:58:A2:22:9B:CC:11:F5:45:B0:FE:4E:F9:0B:74:A2:02
Certificate issuer: /CN=845d042f65e1b1303a44e43e0e02748a75837b44
Certificate serial: 06E24D2E
Authority key identifier: 84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/GSIz61iiIpvMEfVFsP5O-Qt0ogI.roa
Signing time: Tue 10 May 2022 09:37:02 +0000
ROA not before: Tue 10 May 2022 09:37:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61295
IP address blocks: 185.241.212.0/24 maxlen: 24
185.241.215.0/24 maxlen: 24
2a0c:bf80::/48 maxlen: 48
2a0c:bf81::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115494190 (0x6e24d2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845d042f65e1b1303a44e43e0e02748a75837b44
Validity
Not Before: May 10 09:37:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=192233eb58a2229bcc11f545b0fe4ef90b74a202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:69:d2:97:23:91:c7:87:4a:cb:87:79:91:60:
f7:c1:59:75:8a:5a:76:46:8a:b6:f4:c2:dd:b5:80:
c8:ef:48:b8:80:7e:ee:83:85:31:ed:57:54:13:77:
3b:50:4f:56:80:e1:b8:68:1a:ac:d9:82:04:e1:34:
b7:4a:1a:e3:bc:14:b5:f9:e5:1f:07:9d:b9:c5:21:
06:79:c9:44:9d:20:b7:49:65:7c:0e:8e:9a:98:9e:
26:cc:fc:33:2e:05:70:54:f1:0a:d6:61:92:68:1d:
0d:55:ff:ed:51:1a:c6:28:ab:23:93:50:af:5e:e9:
76:61:f1:d2:e1:1a:26:76:48:39:50:e8:ef:8c:0d:
21:ca:af:4f:b8:23:27:28:a1:3a:08:95:99:6e:b4:
cb:f8:c7:5d:c5:b4:c4:31:9d:f5:f1:01:49:91:11:
9f:88:c6:3a:ac:d6:96:7b:46:10:be:6e:d0:f4:49:
94:23:ef:f7:d1:48:a3:c6:1f:d1:b8:d4:b3:61:b3:
23:8f:53:68:94:e5:f9:54:07:d1:08:4f:00:f5:58:
38:be:33:b6:59:69:c4:7d:96:e1:dc:af:3d:4e:67:
92:a7:bd:00:25:e9:24:1d:e8:e1:b4:20:6f:07:eb:
24:94:e9:03:8c:23:6d:7c:e1:2a:25:1d:17:3e:08:
bb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:22:33:EB:58:A2:22:9B:CC:11:F5:45:B0:FE:4E:F9:0B:74:A2:02
X509v3 Authority Key Identifier:
keyid:84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/GSIz61iiIpvMEfVFsP5O-Qt0ogI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.212.0/24
185.241.215.0/24
IPv6:
2a0c:bf80::/48
2a0c:bf81::/48
Signature Algorithm: sha256WithRSAEncryption
67:11:c9:8f:a1:cd:4c:66:54:f5:05:39:0b:4b:0e:9b:ba:0e:
a3:1a:f9:df:a5:af:41:09:3b:43:54:26:20:72:6d:db:e9:5a:
4c:21:66:5b:a0:28:82:f8:ea:f7:46:b6:f3:cd:40:76:f5:63:
d8:39:01:c7:b0:9f:5b:53:27:87:34:f3:6c:cf:d0:0b:c7:36:
5d:51:1e:28:a7:42:79:19:ea:1f:dd:6a:6e:97:1f:09:ba:3b:
aa:1e:bc:6e:4c:fb:b8:8b:0a:21:00:80:b2:51:ff:1d:b5:76:
77:56:be:75:46:76:ce:d3:ac:e5:0c:83:7c:06:a5:4f:9a:3a:
05:37:c1:fc:68:35:c1:d4:ab:5d:b3:da:95:3c:07:24:82:a9:
4f:3d:dc:af:c2:63:25:1d:02:16:49:f4:2d:94:3c:1d:ba:9d:
ee:04:b9:fe:05:ff:81:0b:ec:4a:87:5e:ea:ab:04:24:24:ed:
28:68:ea:56:a2:45:25:39:73:79:9f:ac:04:ef:39:14:95:c6:
65:13:31:42:55:cb:ab:32:68:47:db:bd:9f:86:91:86:64:51:
e2:46:26:0e:2e:4f:33:32:bb:3c:04:97:d9:f3:1f:ec:5e:9d:
4f:a8:e7:30:18:da:9d:fb:53:3f:3c:1a:d7:45:30:21:bd:74:
e2:34:45:8c
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIEBuJNLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NDVkMDQyZjY1ZTFiMTMwM2E0NGU0M2UwZTAyNzQ4YTc1ODM3YjQ0MB4XDTIyMDUx
MDA5MzcwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTkyMjMzZWI1OGEy
MjI5YmNjMTFmNTQ1YjBmZTRlZjkwYjc0YTIwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN1p0pcjkceHSsuHeZFg98FZdYpadkaKtvTC3bWAyO9IuIB+
7oOFMe1XVBN3O1BPVoDhuGgarNmCBOE0t0oa47wUtfnlHweducUhBnnJRJ0gt0ll
fA6OmpieJsz8My4FcFTxCtZhkmgdDVX/7VEaxiirI5NQr17pdmHx0uEaJnZIOVDo
74wNIcqvT7gjJyihOgiVmW60y/jHXcW0xDGd9fEBSZERn4jGOqzWlntGEL5u0PRJ
lCPv99FIo8Yf0bjUs2GzI49TaJTl+VQH0QhPAPVYOL4ztllpxH2W4dyvPU5nkqe9
ACXpJB3o4bQgbwfrJJTpA4wjbXzhKiUdFz4Iu3MCAwEAAaOCAikwggIlMB0GA1Ud
DgQWBBQZIjPrWKIim8wR9UWw/k75C3SiAjAfBgNVHSMEGDAWgBSEXQQvZeGxMDpE
5D4OAnSKdYN7RDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hGMEVMMlhoc1RBNlJPUS1EZ0owaW5XRGUwUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvOTZkYmNkLTZhMzktNGMyMC05MTI4LWQ4YzM1MWQ5M2VjNi8x
L0dTSXo2MWlpSXB2TUVmVkZzUDVPLVF0MG9nSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
OTZkYmNkLTZhMzktNGMyMC05MTI4LWQ4YzM1MWQ5M2VjNi8xL2hGMEVMMlhoc1RB
NlJPUS1EZ0owaW5XRGUwUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA/
BggrBgEFBQcBBwEB/wQwMC4wEgQCAAEwDAMEALnx1AMEALnx1zAYBAIAAjASAwcA
Kgy/gAAAAwcAKgy/gQAAMA0GCSqGSIb3DQEBCwUAA4IBAQBnEcmPoc1MZlT1BTkL
Sw6bug6jGvnfpa9BCTtDVCYgcm3b6VpMIWZboCiC+Or3RrbzzUB29WPYOQHHsJ9b
UyeHNPNsz9ALxzZdUR4op0J5Geof3Wpulx8JujuqHrxuTPu4iwohAICyUf8dtXZ3
Vr51RnbO06zlDIN8BqVPmjoFN8H8aDXB1Ktds9qVPAckgqlPPdyvwmMlHQIWSfQt
lDwdup3uBLn+Bf+BC+xKh17qqwQkJO0oaOpWokUlOXN5n6wE7zkUlcZlEzFCVcur
MmhH272fhpGGZFHiRiYOLk8zMrs8BJfZ8x/sXp1PqOcwGNqd+1M/PBrXRTAhvXTi
NEWM
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org