Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/G-zbosa-fPGEYXaF3VXLu_DyBkA.roa
File: G-zbosa-fPGEYXaF3VXLu_DyBkA.roa (raw, json)
Hash identifier: dYZl5FKP3SrTfJnF9WYtmL+i3CvNzNnf5Tc3MLWYwxA=
Subject key identifier: 1B:EC:DB:A2:C6:BE:7C:F1:84:61:76:85:DD:55:CB:BB:F0:F2:06:40
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: DE9B92
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/G-zbosa-fPGEYXaF3VXLu_DyBkA.roa
Signing time: Sat 01 Jan 2022 13:01:15 +0000
ROA not before: Sat 01 Jan 2022 13:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 5.180.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14588818 (0xde9b92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Jan 1 13:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1becdba2c6be7cf184617685dd55cbbbf0f20640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:56:92:49:5f:cc:e5:38:64:73:c2:9e:fd:cb:
9c:6b:b1:a1:77:38:fc:55:2e:99:a2:66:92:77:cf:
42:82:09:e2:bd:eb:13:32:1c:f4:f8:fc:9c:66:69:
62:4a:f2:f7:71:b3:9f:c7:f8:57:b4:7f:2d:ef:8f:
a3:ab:35:d7:a8:77:ef:88:32:53:cb:81:f3:58:46:
8e:7c:59:77:39:7d:d5:ff:a6:4d:84:f5:1e:d1:8b:
d5:cb:31:ef:6b:2d:08:42:f4:d6:55:cd:10:c3:5b:
62:21:5c:ff:2e:16:ba:5d:3f:83:78:6d:63:00:cc:
3c:da:13:8d:df:aa:38:b3:70:dd:da:db:12:21:ac:
c7:b0:e6:01:10:32:80:22:ae:e6:e9:c4:c8:e3:dc:
f5:37:e8:83:eb:e6:e4:18:5a:3f:d7:07:53:91:6a:
3d:c2:e0:71:81:7f:b3:36:58:9a:bf:7e:1d:37:64:
3b:ce:6d:0f:d6:c1:8c:19:c9:3b:8a:c9:a3:32:3a:
1f:29:e6:a8:84:79:12:8b:84:2b:f2:23:02:29:a8:
eb:a8:4b:51:1e:4b:f3:3d:03:eb:92:ac:f0:02:91:
9a:e4:1f:79:68:8e:2d:86:2f:d6:77:6c:44:66:cd:
50:58:9c:a4:03:10:f4:2f:60:01:dc:fa:ac:c4:31:
1b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EC:DB:A2:C6:BE:7C:F1:84:61:76:85:DD:55:CB:BB:F0:F2:06:40
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/G-zbosa-fPGEYXaF3VXLu_DyBkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.179.0/24
Signature Algorithm: sha256WithRSAEncryption
51:89:84:1b:83:9b:06:5d:01:b4:3e:ab:d3:3f:84:67:2d:10:
87:d7:03:19:3a:9c:26:08:04:c4:74:2f:3f:e6:b7:97:e1:87:
a0:46:fc:1d:d0:10:50:ae:e8:0b:96:c3:ff:52:81:39:12:42:
5a:86:53:e5:55:6a:ee:ff:a8:35:ba:34:e7:9d:c3:dd:9c:e7:
63:3f:91:d3:8a:c6:65:68:dc:c7:3b:fc:99:30:09:2f:97:da:
2a:f7:33:90:7f:bc:8f:90:d2:04:69:ee:cb:b3:a3:45:f1:a5:
2f:14:38:5d:5b:df:1f:f0:28:43:b8:de:79:89:88:8f:57:08:
3d:9b:a2:3d:d7:37:e9:15:a6:89:f5:21:c4:a0:a6:a0:f1:37:
fe:ee:b2:62:0d:4a:8e:45:74:ed:e4:43:02:dc:a4:8c:87:12:
b7:f3:06:35:55:a5:3b:c0:e1:c7:57:cd:bf:e9:e2:91:9a:ed:
20:9b:9b:c1:f6:91:fb:77:56:4f:7b:ab:36:e2:0e:dd:9f:d8:
3e:90:dc:7c:dc:62:27:b4:23:54:92:bb:65:89:e1:e7:e8:6d:
75:29:75:bb:a6:60:46:13:6d:65:db:b1:11:00:d9:61:d2:b1:
97:b4:0a:08:2b:78:0d:7e:2b:98:0b:85:22:b6:f4:7d:ae:4d:
3d:26:4c:73
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAN6bkjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
N2I1MDQyZmMyMGQ5YmFiMTY3NmUwOWFmN2ZmMWJhNWJmYWRhZTc1MB4XDTIyMDEw
MTEzMDExNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWJlY2RiYTJjNmJl
N2NmMTg0NjE3Njg1ZGQ1NWNiYmJmMGYyMDY0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMFWkklfzOU4ZHPCnv3LnGuxoXc4/FUumaJmknfPQoIJ4r3r
EzIc9Pj8nGZpYkry93Gzn8f4V7R/Le+Po6s116h374gyU8uB81hGjnxZdzl91f+m
TYT1HtGL1csx72stCEL01lXNEMNbYiFc/y4Wul0/g3htYwDMPNoTjd+qOLNw3drb
EiGsx7DmARAygCKu5unEyOPc9Tfog+vm5BhaP9cHU5FqPcLgcYF/szZYmr9+HTdk
O85tD9bBjBnJO4rJozI6HynmqIR5EouEK/IjAimo66hLUR5L8z0D65Ks8AKRmuQf
eWiOLYYv1ndsRGbNUFicpAMQ9C9gAdz6rMQxG7sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQb7Nuixr588YRhdoXdVcu78PIGQDAfBgNVHSMEGDAWgBQXtQQvwg2bqxZ2
4Jr3/xulv62udTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y3VUVMOElObTZzV2R1Q2E5XzhicGItdHJuVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNjVlNTQzLTdlN2EtNGFhYi1hYzc0LWJjNjc5NGU5NWU1YS8x
L0ctemJvc2EtZlBHRVlYYUYzVlhMdV9EeUJrQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NjVlNTQzLTdlN2EtNGFhYi1hYzc0LWJjNjc5NGU5NWU1YS8xL0Y3VUVMOElObTZz
V2R1Q2E5XzhicGItdHJuVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAW0szANBgkqhkiG9w0BAQsFAAOC
AQEAUYmEG4ObBl0BtD6r0z+EZy0Qh9cDGTqcJggExHQvP+a3l+GHoEb8HdAQUK7o
C5bD/1KBORJCWoZT5VVq7v+oNbo0553D3ZznYz+R04rGZWjcxzv8mTAJL5faKvcz
kH+8j5DSBGnuy7OjRfGlLxQ4XVvfH/AoQ7jeeYmIj1cIPZuiPdc36RWmifUhxKCm
oPE3/u6yYg1KjkV07eRDAtykjIcSt/MGNVWlO8Dhx1fNv+nikZrtIJubwfaR+3dW
T3urNuIO3Z/YPpDcfNxiJ7QjVJK7ZYnh5+htdSl1u6ZgRhNtZduxEQDZYdKxl7QK
CCt4DX4rmAuFIrb0fa5NPSZMcw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:06 2024 by rpki-client on console-ams.rpki-client.org