Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/_gsmPq_Ixx03KZlY_7Zy5sdddp0.roa
File: _gsmPq_Ixx03KZlY_7Zy5sdddp0.roa (raw, json)
Hash identifier: LU+dc/7C1aY5PL77ev2zvRzWCM9KkL8CJJHik2zgaWo=
Subject key identifier: FE:0B:26:3E:AF:C8:C7:1D:37:29:99:58:FF:B6:72:E6:C7:5D:76:9D
Certificate issuer: /CN=5bb1c57055c29d669f289a9f68f392823942132a
Certificate serial: 02D77A52
Authority key identifier: 5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/_gsmPq_Ixx03KZlY_7Zy5sdddp0.roa
Signing time: Sat 01 Jan 2022 03:55:43 +0000
ROA not before: Sat 01 Jan 2022 03:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209387
IP address blocks: 5.253.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47675986 (0x2d77a52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bb1c57055c29d669f289a9f68f392823942132a
Validity
Not Before: Jan 1 03:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe0b263eafc8c71d37299958ffb672e6c75d769d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:68:69:6d:15:6a:ba:eb:20:a8:27:c1:0a:59:
c8:87:3a:5c:c4:6e:1b:90:09:9a:70:7d:b6:7f:d5:
61:76:da:82:5d:2a:f3:11:af:d1:12:94:53:03:13:
cb:ea:8c:db:66:76:89:33:d0:7b:89:22:a4:64:c3:
54:72:4e:8e:1f:ae:07:ee:bc:bb:28:dc:d3:4b:f6:
9a:9c:f8:c6:bc:c4:67:13:9b:92:df:1b:9e:1b:02:
a0:96:95:95:76:07:19:c7:ab:a1:6a:5a:8d:a1:3f:
3b:7c:4c:4c:25:70:76:c9:dc:5e:1f:ba:6c:c1:a2:
0f:00:5a:d4:02:20:56:b5:50:d7:48:88:d3:6e:93:
29:1f:e5:01:e1:2f:ac:41:82:05:50:db:7f:f7:84:
65:b0:73:ff:96:34:00:b4:95:df:9b:57:f4:99:22:
ba:bf:75:76:99:5c:88:5c:78:46:f2:9c:c3:18:7e:
0b:50:13:f4:18:04:63:00:56:f1:df:23:1c:48:13:
dd:2e:b4:50:0e:3a:c4:72:61:b1:ba:0b:fb:7c:82:
c5:8c:11:2d:27:bf:ef:14:50:04:de:54:92:9f:a3:
0f:99:c0:2f:b3:d6:de:69:27:23:26:8a:4f:3c:0b:
02:97:ea:cc:75:0f:26:cb:7a:ca:50:77:ae:dc:ab:
da:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0B:26:3E:AF:C8:C7:1D:37:29:99:58:FF:B6:72:E6:C7:5D:76:9D
X509v3 Authority Key Identifier:
keyid:5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/_gsmPq_Ixx03KZlY_7Zy5sdddp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/W7HFcFXCnWafKJqfaPOSgjlCEyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.212.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:ad:8c:36:c2:11:e9:89:ce:fb:5e:f8:73:64:7c:f7:1a:6c:
50:5f:3c:cf:84:b0:fb:70:cb:0a:dc:8d:6d:ee:b8:c4:22:67:
d9:4b:7c:07:f0:cb:3d:ce:bc:c0:9f:ec:b8:a2:12:94:80:a2:
18:fa:05:04:ac:29:c7:bf:3a:eb:d3:a7:74:b8:3d:6e:19:c4:
c1:12:23:e1:d6:4b:4e:43:34:61:73:ce:9e:bb:48:5b:62:6f:
24:6a:95:8f:00:c0:f8:cb:4d:3e:9f:ce:0c:30:f6:36:fb:4e:
24:da:2f:8b:d0:28:95:95:d1:4c:fe:a1:22:59:2c:d2:34:1f:
83:ed:d0:4d:d6:ff:94:50:87:a6:3e:e9:ed:d2:2a:8e:3e:fd:
50:98:b5:e3:53:f4:9a:de:c0:14:d6:5a:19:94:78:eb:25:b5:
46:36:16:7e:9e:0d:a0:85:84:12:d7:c6:4c:5e:e5:c8:2b:e4:
ac:47:4f:55:54:48:8a:0c:d0:b1:b2:e6:90:3b:c3:58:96:e1:
80:db:5d:23:9b:36:38:47:7f:c5:75:8d:6d:e4:c3:50:10:80:
bc:00:74:a5:f3:c8:0f:d4:49:8e:70:cc:48:f9:5a:2e:c5:de:
12:4f:4c:a4:b1:75:74:fc:1e:9b:d9:56:ae:08:db:1c:f0:24:
aa:56:a3:cc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAtd6UjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YmIxYzU3MDU1YzI5ZDY2OWYyODlhOWY2OGYzOTI4MjM5NDIxMzJhMB4XDTIyMDEw
MTAzNTU0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmUwYjI2M2VhZmM4
YzcxZDM3Mjk5OTU4ZmZiNjcyZTZjNzVkNzY5ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIxoaW0VarrrIKgnwQpZyIc6XMRuG5AJmnB9tn/VYXbagl0q
8xGv0RKUUwMTy+qM22Z2iTPQe4kipGTDVHJOjh+uB+68uyjc00v2mpz4xrzEZxOb
kt8bnhsCoJaVlXYHGceroWpajaE/O3xMTCVwdsncXh+6bMGiDwBa1AIgVrVQ10iI
026TKR/lAeEvrEGCBVDbf/eEZbBz/5Y0ALSV35tX9Jkiur91dplciFx4RvKcwxh+
C1AT9BgEYwBW8d8jHEgT3S60UA46xHJhsboL+3yCxYwRLSe/7xRQBN5Ukp+jD5nA
L7PW3mknIyaKTzwLApfqzHUPJst6ylB3rtyr2vsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT+CyY+r8jHHTcpmVj/tnLmx112nTAfBgNVHSMEGDAWgBRbscVwVcKdZp8o
mp9o85KCOUITKjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1c3SEZjRlhDbldhZktKcWZhUE9TZ2psQ0V5by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTEvODIyMzc2LTgwOGEtNDY1Yy1hODdmLTVjZWFlMTlmOTRmOS8x
L19nc21QcV9JeHgwM0tabFlfN1p5NXNkZGRwMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEv
ODIyMzc2LTgwOGEtNDY1Yy1hODdmLTVjZWFlMTlmOTRmOS8xL1c3SEZjRlhDbldh
ZktKcWZhUE9TZ2psQ0V5by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgX91DANBgkqhkiG9w0BAQsFAAOC
AQEAe62MNsIR6YnO+174c2R89xpsUF88z4Sw+3DLCtyNbe64xCJn2Ut8B/DLPc68
wJ/suKISlICiGPoFBKwpx78669OndLg9bhnEwRIj4dZLTkM0YXPOnrtIW2JvJGqV
jwDA+MtNPp/ODDD2NvtOJNovi9AolZXRTP6hIlks0jQfg+3QTdb/lFCHpj7p7dIq
jj79UJi141P0mt7AFNZaGZR46yW1RjYWfp4NoIWEEtfGTF7lyCvkrEdPVVRIigzQ
sbLmkDvDWJbhgNtdI5s2OEd/xXWNbeTDUBCAvAB0pfPID9RJjnDMSPlaLsXeEk9M
pLF1dPwem9lWrgjbHPAkqlajzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:58 2024 by rpki-client on console-ams.rpki-client.org