Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/GKnOAZWSm11wuLc6KC75yz3Dtow.roa
File: GKnOAZWSm11wuLc6KC75yz3Dtow.roa (raw, json)
Hash identifier: NvQMfMgVK/qYNYOSnXR+SCGhl+Lpd1LbgVNkcP6oCiY=
Subject key identifier: 18:A9:CE:01:95:92:9B:5D:70:B8:B7:3A:28:2E:F9:CB:3D:C3:B6:8C
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 03E53CD5
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/GKnOAZWSm11wuLc6KC75yz3Dtow.roa
Signing time: Fri 08 Apr 2022 22:17:06 +0000
ROA not before: Fri 08 Apr 2022 22:17:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57183
IP address blocks: 2a0e:46c0::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65354965 (0x3e53cd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Apr 8 22:17:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18a9ce0195929b5d70b8b73a282ef9cb3dc3b68c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ed:4b:06:3a:ca:44:af:dc:83:af:dc:62:13:
51:4d:03:4a:9f:7f:3c:2c:0d:3b:2a:4b:db:68:31:
27:75:df:2b:45:63:86:51:8a:37:b6:20:9e:cd:41:
db:49:60:9e:77:22:bd:ce:c9:65:fc:25:4d:e7:2a:
0e:89:08:06:14:b4:a2:ef:d3:04:64:c9:1b:94:32:
e3:59:5e:c0:0b:a9:89:bf:f7:b2:74:6e:a2:5f:77:
8b:ec:7e:15:70:ca:0b:2d:f8:9c:f3:8e:5a:3e:ee:
d1:9e:c3:56:26:48:cb:65:e0:77:76:87:3c:a3:cf:
ec:1c:31:39:66:aa:28:33:c1:66:ae:e8:42:dc:60:
e1:95:bd:8a:4a:b3:99:ea:fc:ac:47:49:21:77:f0:
7e:67:34:cd:d1:20:64:9d:e1:50:a8:cb:0d:f1:5d:
4f:12:f5:86:74:df:b4:79:f0:d7:b2:01:f1:54:a9:
a7:c7:f5:4d:23:5e:47:d4:9c:94:77:5f:32:f7:70:
72:af:23:49:3e:25:10:2f:e7:80:92:db:99:d1:8c:
7c:cf:09:92:e6:df:9d:86:d8:6f:14:87:a1:d6:8d:
90:8b:69:03:26:ee:7a:6b:ef:0a:28:2a:19:99:c0:
58:cf:86:44:27:98:04:e4:1b:b1:45:76:8c:48:cb:
c5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A9:CE:01:95:92:9B:5D:70:B8:B7:3A:28:2E:F9:CB:3D:C3:B6:8C
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/GKnOAZWSm11wuLc6KC75yz3Dtow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c0::/31
Signature Algorithm: sha256WithRSAEncryption
80:e7:bc:5e:75:df:f5:b4:01:8f:ec:02:ba:ee:d2:38:ec:0c:
32:53:80:7e:b2:88:a3:62:41:37:dc:c0:57:10:2c:b0:a3:51:
0b:c2:dc:ef:64:23:eb:7f:3c:e3:58:ab:6b:89:71:12:c3:f0:
8e:3a:f6:b5:b8:93:42:eb:91:a8:fd:7c:24:24:e8:77:55:05:
b0:d7:ad:51:34:77:3a:da:12:00:ec:80:6f:37:bc:01:e6:81:
05:aa:07:02:4c:d3:e4:76:1a:f6:7c:a6:7f:d4:79:81:9b:86:
9e:5d:13:46:cc:07:90:12:ef:5b:51:94:a9:8c:6c:87:bd:c0:
44:39:92:cb:bc:19:bc:d5:51:7e:01:58:22:a1:13:38:4e:48:
24:92:a5:a1:15:20:4b:71:42:a4:d3:36:32:63:a6:42:b9:f0:
a1:d7:75:40:60:36:34:9c:ef:f2:d6:80:97:68:25:7c:de:8a:
2e:e8:8a:5f:c3:89:52:5c:d8:db:d6:69:10:df:d0:1f:b8:80:
83:33:f8:d9:ea:d1:f0:ef:8d:61:52:8a:ef:d9:71:77:73:1a:
83:13:46:63:13:d3:45:8a:74:90:87:b8:67:d8:98:6d:8b:41:
de:d3:06:83:cd:2b:28:0b:ef:a8:44:99:26:12:a4:c0:84:e0:
cb:df:c4:a9
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEA+U81TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzBlNTQ1MGQxNDg2NzgwYWJhNTRmMDQ1ZWM0ODAyZjE5ZjBiNGY3MB4XDTIyMDQw
ODIyMTcwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMThhOWNlMDE5NTky
OWI1ZDcwYjhiNzNhMjgyZWY5Y2IzZGMzYjY4YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMvtSwY6ykSv3IOv3GITUU0DSp9/PCwNOypL22gxJ3XfK0Vj
hlGKN7Ygns1B20lgnncivc7JZfwlTecqDokIBhS0ou/TBGTJG5Qy41lewAupib/3
snRuol93i+x+FXDKCy34nPOOWj7u0Z7DViZIy2Xgd3aHPKPP7BwxOWaqKDPBZq7o
Qtxg4ZW9ikqzmer8rEdJIXfwfmc0zdEgZJ3hUKjLDfFdTxL1hnTftHnw17IB8VSp
p8f1TSNeR9SclHdfMvdwcq8jST4lEC/ngJLbmdGMfM8JkubfnYbYbxSHodaNkItp
AybuemvvCigqGZnAWM+GRCeYBOQbsUV2jEjLxXUCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQYqc4BlZKbXXC4tzooLvnLPcO2jDAfBgNVHSMEGDAWgBQ3DlRQ0UhngKul
TwRexIAvGfC09zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L053NVVVTkZJWjRDcnBVOEVYc1NBTHhud3RQYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvZjBmNzBjLTA2ZTctNDFhYy1hMmI4LTg1OGRjZTU3ZmNkYi8x
L0dLbk9BWldTbTExd3VMYzZLQzc1eXozRHRvdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
ZjBmNzBjLTA2ZTctNDFhYy1hMmI4LTg1OGRjZTU3ZmNkYi8xL053NVVVTkZJWjRD
cnBVOEVYc1NBTHhud3RQYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFASoORsAwDQYJKoZIhvcNAQELBQAD
ggEBAIDnvF513/W0AY/sArru0jjsDDJTgH6yiKNiQTfcwFcQLLCjUQvC3O9kI+t/
PONYq2uJcRLD8I469rW4k0Lrkaj9fCQk6HdVBbDXrVE0dzraEgDsgG83vAHmgQWq
BwJM0+R2GvZ8pn/UeYGbhp5dE0bMB5AS71tRlKmMbIe9wEQ5ksu8GbzVUX4BWCKh
EzhOSCSSpaEVIEtxQqTTNjJjpkK58KHXdUBgNjSc7/LWgJdoJXzeii7oil/DiVJc
2NvWaRDf0B+4gIMz+Nnq0fDvjWFSiu/ZcXdzGoMTRmMT00WKdJCHuGfYmG2LQd7T
BoPNKygL76hEmSYSpMCE4MvfxKk=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:04 2025 by rpki-client