Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/g4aCOFkaBK6kGv2TrDB9HtnauFI.roa
File: g4aCOFkaBK6kGv2TrDB9HtnauFI.roa (raw, json)
Hash identifier: ym81JoKiFRI3XANnPbggXvFNbBgbAe6LhsUDE/Iniyk=
Subject key identifier: 83:86:82:38:59:1A:04:AE:A4:1A:FD:93:AC:30:7D:1E:D9:DA:B8:52
Certificate issuer: /CN=50980fb6ade858f2652e736993126c85759f06d9
Certificate serial: 0184820C70AB881CA480ED6B5EE00EE0F39F
Authority key identifier: 50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/g4aCOFkaBK6kGv2TrDB9HtnauFI.roa
Signing time: Wed 16 Nov 2022 20:06:04 +0000
ROA not before: Wed 16 Nov 2022 20:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204957
IP address blocks: 91.204.183.0/24 maxlen: 24
91.204.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:82:0c:70:ab:88:1c:a4:80:ed:6b:5e:e0:0e:e0:f3:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50980fb6ade858f2652e736993126c85759f06d9
Validity
Not Before: Nov 16 20:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83868238591a04aea41afd93ac307d1ed9dab852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:33:b9:30:81:6d:8e:4b:ff:eb:96:e0:75:fb:
3d:a5:2e:cc:43:1c:2c:19:2d:35:a7:90:d3:0d:e7:
69:d4:97:e2:8e:4c:af:43:64:e9:48:b1:7e:61:74:
c2:97:8a:41:27:2f:b0:e7:63:9f:c4:3c:78:ed:8b:
15:8a:06:66:a8:e3:35:02:34:e9:eb:64:ce:3b:7b:
85:d7:b2:9f:56:db:1c:8f:59:80:88:95:7e:6a:d2:
22:8a:c0:4f:87:7e:09:12:c1:8f:f9:c0:2f:9c:79:
20:1f:74:f8:2d:42:fb:b9:6d:b6:67:e5:73:c8:9b:
9f:e0:81:d1:ca:df:93:c5:c4:f3:6c:30:05:4c:91:
c0:35:d3:df:a7:d6:05:a7:31:db:a3:61:d0:c2:88:
22:5d:f6:03:0c:6b:0a:e2:6f:c9:ed:45:18:f6:a1:
6b:b4:cb:87:3c:47:7b:d5:ad:cd:76:2f:4b:4f:d2:
36:79:d6:df:2a:42:8d:0d:e9:1a:80:e8:23:f1:cc:
b0:be:b3:48:6a:03:20:d5:07:93:f6:6d:40:ad:fd:
e9:a8:f2:99:3d:2e:76:0d:6d:f5:8e:15:b6:c2:50:
46:90:24:8d:bc:73:31:5c:a5:d0:86:c6:23:99:26:
cc:56:4f:71:21:34:b0:70:e5:9a:ed:97:aa:51:5e:
f6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:86:82:38:59:1A:04:AE:A4:1A:FD:93:AC:30:7D:1E:D9:DA:B8:52
X509v3 Authority Key Identifier:
keyid:50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/g4aCOFkaBK6kGv2TrDB9HtnauFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/UJgPtq3oWPJlLnNpkxJshXWfBtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.182.0/23
Signature Algorithm: sha256WithRSAEncryption
16:09:aa:86:37:f3:4f:77:61:4a:b7:44:1c:8e:2f:83:c4:f1:
2e:f4:0d:70:01:c3:5e:4f:8e:06:f1:e5:78:26:ed:6e:52:78:
8c:21:9b:eb:4f:23:d1:88:f8:15:92:63:11:a1:bb:37:0a:8f:
bd:3c:5b:8c:23:90:91:34:64:50:d8:5c:f7:3e:da:f4:36:0f:
d4:15:e7:ba:f2:7d:ec:e5:ae:03:40:4a:20:84:9c:f5:0f:ca:
7f:24:60:6f:a2:39:14:18:ca:6d:da:be:4f:8d:dc:1c:d6:9d:
bd:cb:fa:28:23:5e:26:aa:db:d8:c2:96:bc:65:58:fd:53:3b:
15:df:d8:87:94:de:e2:6b:4e:da:8b:a4:2f:82:cb:8b:75:51:
79:30:aa:aa:21:78:8c:c2:e6:78:fc:4b:12:d4:35:33:c0:f4:
42:b2:be:1e:06:96:5c:bd:d3:f9:4a:eb:48:5f:f1:c0:7e:d9:
31:3a:40:44:45:94:2a:78:b2:24:12:25:0f:e7:73:65:95:7b:
42:e5:55:07:7a:8a:57:73:bb:c2:a0:7d:8e:28:30:66:02:74:
70:a5:15:98:9f:45:fd:90:87:81:48:8e:14:31:ab:cf:3a:df:
61:77:1d:e0:8c:6c:3b:79:8a:a6:43:e6:10:b4:e1:f1:0b:cd:
6f:4c:dc:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSCDHCriBykgO1rXuAO4POfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwOTgwZmI2YWRlODU4ZjI2NTJlNzM2OTkzMTI2Yzg1NzU5
ZjA2ZDkwHhcNMjIxMTE2MjAwNjA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Mzg2ODIzODU5MWEwNGFlYTQxYWZkOTNhYzMwN2QxZWQ5ZGFiODUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjO5MIFtjkv/65bgdfs9pS7MQxws
GS01p5DTDedp1JfijkyvQ2TpSLF+YXTCl4pBJy+w52OfxDx47YsVigZmqOM1AjTp
62TOO3uF17KfVtscj1mAiJV+atIiisBPh34JEsGP+cAvnHkgH3T4LUL7uW22Z+Vz
yJuf4IHRyt+TxcTzbDAFTJHANdPfp9YFpzHbo2HQwogiXfYDDGsK4m/J7UUY9qFr
tMuHPEd71a3Ndi9LT9I2edbfKkKNDekagOgj8cywvrNIagMg1QeT9m1Arf3pqPKZ
PS52DW31jhW2wlBGkCSNvHMxXKXQhsYjmSbMVk9xITSwcOWa7ZeqUV72oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIOGgjhZGgSupBr9k6wwfR7Z2rhSMB8GA1UdIwQY
MBaAFFCYD7at6FjyZS5zaZMSbIV1nwbZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUpnUHRxM29XUEpsTG5OcGt4SnNoWFdmQnRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8zYzdhZjYtZjQ2Ni00ZDg3LWI5ZjEt
Y2NhNzlhNjk4MjBhLzEvZzRhQ09Ga2FCSzZrR3YyVHJEQjlIdG5hdUZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC8zYzdhZjYtZjQ2Ni00ZDg3LWI5ZjEtY2NhNzlhNjk4MjBh
LzEvVUpnUHRxM29XUEpsTG5OcGt4SnNoWFdmQnRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8y2MA0G
CSqGSIb3DQEBCwUAA4IBAQAWCaqGN/NPd2FKt0Qcji+DxPEu9A1wAcNeT44G8eV4
Ju1uUniMIZvrTyPRiPgVkmMRobs3Co+9PFuMI5CRNGRQ2Fz3Ptr0Ng/UFee68n3s
5a4DQEoghJz1D8p/JGBvojkUGMpt2r5Pjdwc1p29y/ooI14mqtvYwpa8ZVj9UzsV
39iHlN7ia07ai6QvgsuLdVF5MKqqIXiMwuZ4/EsS1DUzwPRCsr4eBpZcvdP5SutI
X/HAftkxOkBERZQqeLIkEiUP53NllXtC5VUHeopXc7vCoH2OKDBmAnRwpRWYn0X9
kIeBSI4UMavPOt9hdx3gjGw7eYqmQ+YQtOHxC81vTNxB
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:47 2023 by rpki-client on console-fra.rpki-client.org