Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/GxoA_xJgY4g23rbIwQX5NnzKuxY.roa
File: GxoA_xJgY4g23rbIwQX5NnzKuxY.roa (raw, json)
Hash identifier: kVdb236H//2mwPqlWhMT+ZqG6QWzVU76nZi0h8sFfQY=
Subject key identifier: 1B:1A:00:FF:12:60:63:88:36:DE:B6:C8:C1:05:F9:36:7C:CA:BB:16
Certificate issuer: /CN=d5b80180b40d585b7366587dfb5de7bf3077843e
Certificate serial: 01823BB217001489A57ACD3019BDF35B7E9B
Authority key identifier: D5:B8:01:80:B4:0D:58:5B:73:66:58:7D:FB:5D:E7:BF:30:77:84:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bgBgLQNWFtzZlh9-13nvzB3hD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/GxoA_xJgY4g23rbIwQX5NnzKuxY.roa
Signing time: Tue 26 Jul 2022 18:08:23 +0000
ROA not before: Tue 26 Jul 2022 18:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43891
IP address blocks: 193.186.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3b:b2:17:00:14:89:a5:7a:cd:30:19:bd:f3:5b:7e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b80180b40d585b7366587dfb5de7bf3077843e
Validity
Not Before: Jul 26 18:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b1a00ff1260638836deb6c8c105f9367ccabb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b1:db:47:6e:4b:99:87:f4:31:2f:be:e1:c0:
e2:f8:a9:da:d5:9e:cb:94:22:8c:1c:ac:c7:59:cb:
a5:d0:91:1c:0a:94:76:61:5c:d0:e9:17:3f:3d:bc:
6b:f8:b3:1e:f2:ed:28:05:7e:ec:7c:85:60:47:0d:
e0:ed:9e:02:17:2b:f3:65:0b:65:01:15:7e:6d:d5:
ce:62:1c:27:eb:76:30:3c:e5:71:76:8c:13:2a:e6:
47:14:d0:b9:ca:50:e0:b6:e1:e1:7e:26:70:52:2d:
21:11:a7:ae:7e:ff:4b:69:f5:c3:f6:52:9f:9a:96:
db:07:b6:ef:06:c1:fe:61:40:c5:95:6e:cd:bb:af:
71:e1:b2:15:bb:06:4b:bb:9d:10:a3:83:9e:a2:98:
6e:ea:b9:7f:66:dd:c5:b8:d8:05:48:ce:52:c4:99:
91:9e:70:fe:fb:1f:2b:22:e8:43:9c:e0:51:c8:9d:
48:59:a1:d8:01:c0:bc:10:85:4f:6b:7e:33:9c:e0:
ff:4b:e9:aa:fe:63:81:24:e3:bf:bf:ec:09:0c:19:
ad:c7:5b:0e:b8:24:74:e5:77:36:4f:8b:7e:34:1d:
28:1c:05:bb:11:29:4c:2b:e7:17:d0:38:f5:78:7b:
4c:0a:5b:cd:3c:4e:0f:0f:fc:73:77:39:e1:30:89:
9e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1A:00:FF:12:60:63:88:36:DE:B6:C8:C1:05:F9:36:7C:CA:BB:16
X509v3 Authority Key Identifier:
keyid:D5:B8:01:80:B4:0D:58:5B:73:66:58:7D:FB:5D:E7:BF:30:77:84:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bgBgLQNWFtzZlh9-13nvzB3hD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/GxoA_xJgY4g23rbIwQX5NnzKuxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/1bgBgLQNWFtzZlh9-13nvzB3hD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.10.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:1c:ed:08:d9:9d:71:6b:8c:ff:0f:df:ae:1f:71:de:50:9b:
37:9e:42:47:e2:a3:f0:90:e7:c8:58:65:93:ae:0c:b0:be:9f:
05:d8:05:f3:cb:c1:1c:98:13:57:70:af:1a:0c:02:d0:7e:5a:
5c:7f:f6:42:7c:24:ce:19:81:7c:43:0f:33:4d:f2:1f:78:aa:
8e:97:06:c3:66:42:44:b0:9c:39:f7:c4:97:61:ba:82:85:b3:
89:5d:f4:3d:1b:48:f7:86:6c:6a:bf:42:6b:89:2a:ea:b4:4a:
85:84:1e:58:97:f5:84:a8:f5:0f:aa:c1:08:58:f3:43:2b:56:
e5:67:33:58:af:cb:64:48:2a:51:0a:cb:e1:37:48:03:09:08:
f5:60:bf:4b:b4:98:0e:de:67:ec:6a:06:35:41:fc:68:66:fd:
47:7b:d9:e3:cb:9b:7c:c8:71:c9:30:b9:98:49:9e:b8:c5:f5:
fd:11:51:36:a9:27:b3:0a:d0:c8:c3:7a:ab:c7:74:3a:0f:c4:
64:0a:33:b3:6f:49:84:30:3d:fb:25:e4:f3:1f:3a:44:46:b9:
da:14:2b:bf:5e:fc:74:8d:f2:af:2c:bf:17:56:c9:75:dd:1e:
7e:5f:ad:53:90:ac:62:63:d6:88:8d:e9:4e:41:ae:cf:27:98:
5e:57:f5:72
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI7shcAFImles0wGb3zW36bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1YjgwMTgwYjQwZDU4NWI3MzY2NTg3ZGZiNWRlN2JmMzA3
Nzg0M2UwHhcNMjIwNzI2MTgwODIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjFhMDBmZjEyNjA2Mzg4MzZkZWI2YzhjMTA1ZjkzNjdjY2FiYjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrHbR25LmYf0MS++4cDi+Kna1Z7L
lCKMHKzHWcul0JEcCpR2YVzQ6Rc/Pbxr+LMe8u0oBX7sfIVgRw3g7Z4CFyvzZQtl
ARV+bdXOYhwn63YwPOVxdowTKuZHFNC5ylDgtuHhfiZwUi0hEaeufv9LafXD9lKf
mpbbB7bvBsH+YUDFlW7Nu69x4bIVuwZLu50Qo4Oeophu6rl/Zt3FuNgFSM5SxJmR
nnD++x8rIuhDnOBRyJ1IWaHYAcC8EIVPa34znOD/S+mq/mOBJOO/v+wJDBmtx1sO
uCR05Xc2T4t+NB0oHAW7ESlMK+cX0Dj1eHtMClvNPE4PD/xzdznhMIme1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBsaAP8SYGOINt62yMEF+TZ8yrsWMB8GA1UdIwQY
MBaAFNW4AYC0DVhbc2ZYfftd578wd4Q+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWJnQmdMUU5XRnR6WmxoOS0xM252ekIzaEQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8wZTVhNzEtMmMwYi00ZjA0LTk0NjYt
MzE0MTFkOTE1NzZhLzEvR3hvQV94SmdZNGcyM3JiSXdRWDVObnpLdXhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8wZTVhNzEtMmMwYi00ZjA0LTk0NjYtMzE0MTFkOTE1NzZh
LzEvMWJnQmdMUU5XRnR6WmxoOS0xM252ekIzaEQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwboKMA0G
CSqGSIb3DQEBCwUAA4IBAQB6HO0I2Z1xa4z/D9+uH3HeUJs3nkJH4qPwkOfIWGWT
rgywvp8F2AXzy8EcmBNXcK8aDALQflpcf/ZCfCTOGYF8Qw8zTfIfeKqOlwbDZkJE
sJw598SXYbqChbOJXfQ9G0j3hmxqv0JriSrqtEqFhB5Yl/WEqPUPqsEIWPNDK1bl
ZzNYr8tkSCpRCsvhN0gDCQj1YL9LtJgO3mfsagY1QfxoZv1He9njy5t8yHHJMLmY
SZ64xfX9EVE2qSezCtDIw3qrx3Q6D8RkCjOzb0mEMD37JeTzHzpERrnaFCu/Xvx0
jfKvLL8XVsl13R5+X61TkKxiY9aIjelOQa7PJ5heV/Vy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:55 2024 by rpki-client on console-ams.rpki-client.org