Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/3c5ddd-d621-4dd0-ad67-98d9046694e7/1/gpIBWw-AOGBQy2t9qBGQ8ce0sBg.roa
File: gpIBWw-AOGBQy2t9qBGQ8ce0sBg.roa (raw, json)
Hash identifier: S14WVkjzrbySOeIvALEIxSDx9Ux7P5RUwqowkb63aes=
Subject key identifier: 82:92:01:5B:0F:80:38:60:50:CB:6B:7D:A8:11:90:F1:C7:B4:B0:18
Certificate issuer: /CN=3ee93eb7d4b5baff7206855b14e0ee586113d09f
Certificate serial: 0432CD0C
Authority key identifier: 3E:E9:3E:B7:D4:B5:BA:FF:72:06:85:5B:14:E0:EE:58:61:13:D0:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Puk-t9S1uv9yBoVbFODuWGET0J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/3c5ddd-d621-4dd0-ad67-98d9046694e7/1/gpIBWw-AOGBQy2t9qBGQ8ce0sBg.roa
Signing time: Sat 01 Jan 2022 01:50:53 +0000
ROA not before: Sat 01 Jan 2022 01:50:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212849
IP address blocks: 185.120.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70438156 (0x432cd0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee93eb7d4b5baff7206855b14e0ee586113d09f
Validity
Not Before: Jan 1 01:50:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8292015b0f80386050cb6b7da81190f1c7b4b018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:01:ad:b1:4f:2a:5f:2e:11:f3:2b:e9:58:f7:
d3:38:72:38:be:aa:9e:5a:5a:ac:fe:5d:c6:40:aa:
4b:04:8c:ce:08:d3:f2:37:db:bf:fd:16:28:44:86:
2e:25:72:61:f0:1c:98:c5:46:e4:93:97:01:61:85:
1e:38:fe:68:df:42:4e:4f:08:6e:87:e0:f4:fc:6f:
2e:16:c6:d3:6e:f6:07:5e:8b:49:33:ec:6d:b0:7a:
44:2b:14:dd:29:46:f6:a7:1f:9e:3f:78:90:9a:6e:
11:03:95:77:0d:3b:e1:31:c3:3d:61:7e:66:b6:26:
7c:08:2f:2f:95:73:dc:79:b6:c1:da:10:ee:5e:2f:
09:3b:98:59:47:88:00:66:d6:82:9e:f3:00:10:c9:
2e:2f:e3:2a:e8:ab:d6:e7:94:66:ef:60:47:33:9e:
1e:82:ab:89:59:a6:90:69:6d:31:3c:57:65:dc:f7:
e8:d9:e7:fc:b9:55:00:5a:83:ed:68:49:0e:47:0a:
34:30:aa:a3:bd:d0:9c:85:04:16:1f:16:c0:b4:eb:
b3:3c:2f:fc:99:48:37:de:01:cb:35:25:a3:38:0a:
e7:24:fa:f4:72:9e:41:b7:5e:66:8c:f2:50:86:71:
14:bc:ce:9b:b5:8c:0e:48:b9:b6:0e:4a:68:e3:2b:
cd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:92:01:5B:0F:80:38:60:50:CB:6B:7D:A8:11:90:F1:C7:B4:B0:18
X509v3 Authority Key Identifier:
keyid:3E:E9:3E:B7:D4:B5:BA:FF:72:06:85:5B:14:E0:EE:58:61:13:D0:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Puk-t9S1uv9yBoVbFODuWGET0J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3c5ddd-d621-4dd0-ad67-98d9046694e7/1/gpIBWw-AOGBQy2t9qBGQ8ce0sBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3c5ddd-d621-4dd0-ad67-98d9046694e7/1/Puk-t9S1uv9yBoVbFODuWGET0J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.142.0/24
Signature Algorithm: sha256WithRSAEncryption
86:c8:5f:34:23:f7:ae:9e:f7:23:0c:94:c8:12:50:17:44:27:
8a:79:88:43:0b:bd:e6:17:38:76:6b:ef:d6:cc:4c:58:70:e1:
8e:47:1b:2e:39:42:9f:84:ba:26:a2:c4:d6:9a:b4:d0:bc:6d:
4c:ef:7f:8f:e5:27:82:ed:4b:be:0e:a2:ba:70:1a:7e:5a:a9:
a6:47:9c:3b:80:cb:36:0b:f2:ec:84:df:89:25:0d:22:0e:d4:
0a:aa:55:48:a3:8d:6b:7f:7b:e6:a9:23:a7:83:cf:a9:a3:07:
8b:b5:62:73:ca:39:da:eb:e6:e1:79:20:fe:32:cf:93:5c:cd:
a6:90:0b:f5:98:72:81:b6:92:61:e8:ef:76:7b:13:5f:17:46:
76:91:c8:a1:42:e0:cd:2c:2b:8a:8f:3a:59:b1:04:15:0e:7a:
d4:73:83:fc:3f:a4:a0:f5:ef:86:e5:25:5b:38:ae:3e:5a:5a:
6a:c0:77:ae:67:f1:02:98:f0:d8:06:59:b7:b1:9c:28:c4:06:
f2:d1:86:16:ab:09:de:7e:bf:f5:22:ba:4f:36:28:d4:31:91:
a1:b4:9d:72:e0:22:d6:a5:fb:39:b6:be:96:ca:45:9c:29:b8:
b5:ac:b7:9c:16:49:c1:56:23:20:dd:dc:17:ce:ef:4d:79:ea:
97:43:c8:14
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDLNDDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZWU5M2ViN2Q0YjViYWZmNzIwNjg1NWIxNGUwZWU1ODYxMTNkMDlmMB4XDTIyMDEw
MTAxNTA1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODI5MjAxNWIwZjgw
Mzg2MDUwY2I2YjdkYTgxMTkwZjFjN2I0YjAxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKwBrbFPKl8uEfMr6Vj30zhyOL6qnlparP5dxkCqSwSMzgjT
8jfbv/0WKESGLiVyYfAcmMVG5JOXAWGFHjj+aN9CTk8Ibofg9PxvLhbG0272B16L
STPsbbB6RCsU3SlG9qcfnj94kJpuEQOVdw074THDPWF+ZrYmfAgvL5Vz3Hm2wdoQ
7l4vCTuYWUeIAGbWgp7zABDJLi/jKuir1ueUZu9gRzOeHoKriVmmkGltMTxXZdz3
6Nnn/LlVAFqD7WhJDkcKNDCqo73QnIUEFh8WwLTrszwv/JlIN94ByzUlozgK5yT6
9HKeQbdeZozyUIZxFLzOm7WMDki5tg5KaOMrzZsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCkgFbD4A4YFDLa32oEZDxx7SwGDAfBgNVHSMEGDAWgBQ+6T631LW6/3IG
hVsU4O5YYRPQnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1B1ay10OVMxdXY5eUJvVmJGT0R1V0dFVDBKOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTUvM2M1ZGRkLWQ2MjEtNGRkMC1hZDY3LTk4ZDkwNDY2OTRlNy8x
L2dwSUJXdy1BT0dCUXkydDlxQkdROGNlMHNCZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTUv
M2M1ZGRkLWQ2MjEtNGRkMC1hZDY3LTk4ZDkwNDY2OTRlNy8xL1B1ay10OVMxdXY5
eUJvVmJGT0R1V0dFVDBKOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALl4jjANBgkqhkiG9w0BAQsFAAOC
AQEAhshfNCP3rp73IwyUyBJQF0QninmIQwu95hc4dmvv1sxMWHDhjkcbLjlCn4S6
JqLE1pq00LxtTO9/j+Ungu1Lvg6iunAaflqppkecO4DLNgvy7ITfiSUNIg7UCqpV
SKONa3975qkjp4PPqaMHi7Vic8o52uvm4Xkg/jLPk1zNppAL9ZhygbaSYejvdnsT
XxdGdpHIoULgzSwrio86WbEEFQ561HOD/D+koPXvhuUlWziuPlpaasB3rmfxApjw
2AZZt7GcKMQG8tGGFqsJ3n6/9SK6TzYo1DGRobSdcuAi1qX7Oba+lspFnCm4tay3
nBZJwVYjIN3cF87vTXnql0PIFA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:35 2024 by rpki-client on console-ams.rpki-client.org