Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/8d20bb-d72d-47aa-be48-38269cef5e01/1/GNEjFJiPM8fi5NDW2ENx3pCGlzM.roa
File: GNEjFJiPM8fi5NDW2ENx3pCGlzM.roa (raw, json)
Hash identifier: mjn4odhK5pNIGq0JRcW7oYyBgYKnBtALo0+FWvKGDDg=
Subject key identifier: 18:D1:23:14:98:8F:33:C7:E2:E4:D0:D6:D8:43:71:DE:90:86:97:33
Certificate issuer: /CN=8a029b1eb51cd4f4bc4dd985a0ec653a75eca40c
Certificate serial: 08B1D0BC
Authority key identifier: 8A:02:9B:1E:B5:1C:D4:F4:BC:4D:D9:85:A0:EC:65:3A:75:EC:A4:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/igKbHrUc1PS8TdmFoOxlOnXspAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/8d20bb-d72d-47aa-be48-38269cef5e01/1/GNEjFJiPM8fi5NDW2ENx3pCGlzM.roa
Signing time: Sat 01 Jan 2022 01:51:13 +0000
ROA not before: Sat 01 Jan 2022 01:51:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15600
IP address blocks: 84.241.64.0/18 maxlen: 18
185.92.64.0/22 maxlen: 22
2a01:b540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145871036 (0x8b1d0bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a029b1eb51cd4f4bc4dd985a0ec653a75eca40c
Validity
Not Before: Jan 1 01:51:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18d12314988f33c7e2e4d0d6d84371de90869733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d9:bc:15:7c:a7:5a:78:3b:4c:96:ac:4f:8b:
a4:c0:b6:97:31:6b:87:5d:5c:a2:7f:e9:0e:e8:90:
7e:dd:90:c0:08:b5:ce:78:0a:41:2f:3e:ba:c9:50:
0b:11:3d:fd:a3:51:3b:c9:cc:23:08:58:b7:e3:5a:
d3:ba:d2:09:71:a4:cf:e9:33:63:4e:3f:4e:2a:13:
ce:77:53:76:a4:ed:f0:c9:4d:31:c1:3a:43:7d:e4:
cc:d9:be:bf:2b:4b:83:e0:21:e1:b7:2d:a3:e6:67:
de:be:bd:8e:ab:7d:21:84:26:13:97:9c:bb:a8:29:
76:7b:8d:a6:76:33:aa:58:2d:39:8a:ab:66:9d:79:
4d:41:29:44:c9:a4:be:1c:0f:e7:57:65:d0:7b:ca:
fa:f6:43:14:57:a6:79:48:c2:66:59:b2:63:48:65:
0c:82:46:ed:00:f1:43:1e:00:61:a9:aa:a7:59:01:
9f:82:6a:f2:00:b8:3c:a9:e2:1a:0c:c8:9c:92:b6:
10:47:42:cd:43:06:d7:56:2e:b4:ee:18:53:a3:90:
d1:af:1b:cb:c0:e2:0c:01:17:29:01:be:c9:6c:f5:
58:6c:7a:ea:89:e2:86:50:a8:a3:1d:50:37:e7:df:
e1:46:59:5f:77:48:7a:b0:09:ae:c7:54:58:68:13:
d9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D1:23:14:98:8F:33:C7:E2:E4:D0:D6:D8:43:71:DE:90:86:97:33
X509v3 Authority Key Identifier:
keyid:8A:02:9B:1E:B5:1C:D4:F4:BC:4D:D9:85:A0:EC:65:3A:75:EC:A4:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/igKbHrUc1PS8TdmFoOxlOnXspAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/8d20bb-d72d-47aa-be48-38269cef5e01/1/GNEjFJiPM8fi5NDW2ENx3pCGlzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/8d20bb-d72d-47aa-be48-38269cef5e01/1/igKbHrUc1PS8TdmFoOxlOnXspAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.241.64.0/18
185.92.64.0/22
IPv6:
2a01:b540::/29
Signature Algorithm: sha256WithRSAEncryption
2d:43:7c:85:c1:86:1f:1f:43:b2:6b:83:6a:4e:14:b5:ce:ed:
cc:3d:e4:fc:a7:9f:91:e4:75:13:96:ea:66:3a:33:62:42:ea:
e8:5c:f5:e5:a3:21:8b:fc:3b:6a:c2:0d:3a:de:10:20:89:4c:
a1:9f:b5:ea:2c:58:38:6a:fe:24:e7:6b:fc:1d:6e:58:88:fd:
8b:81:9a:17:85:eb:22:a8:02:d0:74:81:77:06:c5:1b:69:5f:
f3:1f:c2:9b:ec:c8:0a:9f:2d:a2:df:61:54:2f:d2:a5:d8:68:
fb:cc:5c:78:81:20:ba:5c:7c:a9:56:ee:93:dd:2b:c6:e8:a0:
03:6b:cc:02:69:e8:83:08:31:21:29:5a:8d:74:ac:2f:9a:15:
de:b7:11:96:1a:f4:6e:4c:a0:c8:0b:4d:e0:f8:c4:e5:48:38:
8a:b7:9e:92:b1:48:29:90:28:82:ca:01:5f:ae:9d:41:14:6b:
c1:06:33:bc:49:a6:12:e7:e3:c8:61:db:73:82:b0:d1:b2:fd:
99:42:53:7e:d4:8e:72:12:9e:37:e7:d1:f0:77:1a:64:f5:f6:
2e:a4:22:c7:ce:47:2c:30:39:8f:f3:10:0f:bd:93:9a:ea:b0:
21:00:e8:d0:b2:d9:64:d3:18:7f:b0:68:63:d7:b0:b8:73:cb:
c3:eb:67:47
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIECLHQvDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YTAyOWIxZWI1MWNkNGY0YmM0ZGQ5ODVhMGVjNjUzYTc1ZWNhNDBjMB4XDTIyMDEw
MTAxNTExM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMThkMTIzMTQ5ODhm
MzNjN2UyZTRkMGQ2ZDg0MzcxZGU5MDg2OTczMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTZvBV8p1p4O0yWrE+LpMC2lzFrh11con/pDuiQft2QwAi1
zngKQS8+uslQCxE9/aNRO8nMIwhYt+Na07rSCXGkz+kzY04/TioTzndTdqTt8MlN
McE6Q33kzNm+vytLg+Ah4bcto+Zn3r69jqt9IYQmE5ecu6gpdnuNpnYzqlgtOYqr
Zp15TUEpRMmkvhwP51dl0HvK+vZDFFemeUjCZlmyY0hlDIJG7QDxQx4AYamqp1kB
n4Jq8gC4PKniGgzInJK2EEdCzUMG11YutO4YU6OQ0a8by8DiDAEXKQG+yWz1WGx6
6onihlCoox1QN+ff4UZZX3dIerAJrsdUWGgT2TcCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQY0SMUmI8zx+Lk0NbYQ3HekIaXMzAfBgNVHSMEGDAWgBSKApsetRzU9LxN
2YWg7GU6deykDDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lnS2JIclVjMVBTOFRkbUZvT3hsT25Yc3BBdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvOGQyMGJiLWQ3MmQtNDdhYS1iZTQ4LTM4MjY5Y2VmNWUwMS8x
L0dORWpGSmlQTThmaTVORFcyRU54M3BDR2x6TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
OGQyMGJiLWQ3MmQtNDdhYS1iZTQ4LTM4MjY5Y2VmNWUwMS8xL2lnS2JIclVjMVBT
OFRkbUZvT3hsT25Yc3BBdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBlTxQAMEArlcQDANBAIAAjAHAwUD
KgG1QDANBgkqhkiG9w0BAQsFAAOCAQEALUN8hcGGHx9DsmuDak4Utc7tzD3k/Kef
keR1E5bqZjozYkLq6Fz15aMhi/w7asINOt4QIIlMoZ+16ixYOGr+JOdr/B1uWIj9
i4GaF4XrIqgC0HSBdwbFG2lf8x/Cm+zICp8tot9hVC/Spdho+8xceIEgulx8qVbu
k90rxuigA2vMAmnogwgxISlajXSsL5oV3rcRlhr0bkygyAtN4PjE5Ug4ireekrFI
KZAogsoBX66dQRRrwQYzvEmmEufjyGHbc4Kw0bL9mUJTftSOchKeN+fR8HcaZPX2
LqQix85HLDA5j/MQD72TmuqwIQDo0LLZZNMYf7BoY9ewuHPLw+tnRw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-ams.rpki-client.org