Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/KGbgarBYlog9ETsqHTyJwWvfD3I.roa
File: KGbgarBYlog9ETsqHTyJwWvfD3I.roa (raw, json)
Hash identifier: LD6gQw6Faz1hj6KEUoc/Yq9c9lQi/BuXktK+fFg4t1w=
Subject key identifier: 28:66:E0:6A:B0:58:96:88:3D:11:3B:2A:1D:3C:89:C1:6B:DF:0F:72
Certificate issuer: /CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Certificate serial: 06F9D551
Authority key identifier: A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/KGbgarBYlog9ETsqHTyJwWvfD3I.roa
Signing time: Sat 01 Jan 2022 07:54:02 +0000
ROA not before: Sat 01 Jan 2022 07:54:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41887
IP address blocks: 90.145.56.0/24 maxlen: 24
2a02:120:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117036369 (0x6f9d551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Validity
Not Before: Jan 1 07:54:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2866e06ab05896883d113b2a1d3c89c16bdf0f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f1:fb:32:c1:15:a6:2d:16:af:34:8c:8b:2c:
e8:bd:7e:65:ba:ea:ba:95:05:c2:a3:1d:d5:7a:42:
8d:61:e5:05:bc:34:58:36:b7:74:b0:53:0c:5f:98:
4c:0b:11:15:e1:86:b3:aa:c4:98:75:3e:95:bd:77:
b0:4f:69:33:7a:b5:22:c9:3f:b6:44:5b:aa:4f:c9:
9c:a7:0c:43:1f:90:d1:e5:0d:30:9c:20:39:4f:cb:
c2:88:1d:f5:9d:8d:6f:5e:47:86:7e:0f:bf:46:2b:
e0:f4:c6:1e:0c:64:f5:64:bb:95:bf:72:f9:0e:0f:
a4:c4:4f:e5:7c:c0:e0:f5:f5:58:09:56:20:33:bd:
d4:a4:bb:7a:54:e3:f2:69:f9:e1:58:05:48:d9:2d:
17:eb:d9:ac:b3:79:b7:43:7c:cf:cd:0a:b1:b2:be:
c1:83:fb:8e:1f:e1:32:4d:01:aa:ed:7e:5c:da:e3:
4f:fb:22:55:7c:c7:c3:0e:bb:6b:3e:39:62:41:4d:
be:25:51:c6:d5:51:0b:7c:2b:69:e6:15:59:41:4b:
b9:4b:b0:db:1a:07:67:42:88:7e:c5:e3:0c:e0:17:
06:d2:57:0e:7a:46:49:08:ed:8d:a6:7a:37:91:42:
17:83:85:a7:5b:bc:2e:83:f6:b6:6b:9b:d7:a2:ee:
38:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:66:E0:6A:B0:58:96:88:3D:11:3B:2A:1D:3C:89:C1:6B:DF:0F:72
X509v3 Authority Key Identifier:
keyid:A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/KGbgarBYlog9ETsqHTyJwWvfD3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.145.56.0/24
IPv6:
2a02:120:2::/48
Signature Algorithm: sha256WithRSAEncryption
15:e6:5e:52:26:36:36:f7:ff:10:63:de:a9:32:c2:0d:c3:7c:
b9:26:73:69:59:2c:ea:cd:ab:32:5f:8b:93:ac:f7:d3:bb:3b:
84:27:50:ea:b6:16:09:cc:e0:ed:d7:66:2a:11:2c:ae:24:56:
d4:85:b8:40:98:2d:1c:4e:b9:46:88:dc:56:55:be:c0:4f:ca:
8b:3b:0d:9d:5f:24:b5:1e:96:0f:21:0f:24:ee:ba:62:0f:46:
bc:5a:1a:4e:92:a2:0e:e3:9c:d0:a2:21:ac:3f:ef:3e:1a:71:
cb:0b:49:07:9e:54:7a:a2:5a:e4:7b:63:58:b8:91:47:88:e6:
02:17:86:04:04:53:46:13:84:d3:ef:43:62:c3:92:cf:bd:e0:
42:ca:35:75:ba:ee:2b:b5:17:fe:6b:7d:f1:39:e4:ec:53:8b:
52:75:3a:6f:63:76:59:6e:fc:25:2d:c1:10:34:60:7b:68:11:
02:a2:b2:77:25:ca:fe:67:6f:dc:95:7f:a1:9f:20:42:e3:9d:
eb:11:9d:f3:d8:a6:1f:f1:79:48:30:fe:0d:a4:87:03:18:13:
34:99:4f:2e:6e:0f:df:b2:c5:f4:d4:b6:79:89:dc:a5:5b:b6:
44:83:31:5d:40:c5:0d:53:d0:3c:1e:12:1b:88:82:a4:3d:fa:
d3:b1:34:a0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBvnVUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ODY1ODBlMThhZDZmZjhkYzk0MmJlODgzYzE2ZGU4YjczMWY5NjA1MB4XDTIyMDEw
MTA3NTQwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjg2NmUwNmFiMDU4
OTY4ODNkMTEzYjJhMWQzYzg5YzE2YmRmMGY3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAInx+zLBFaYtFq80jIss6L1+ZbrqupUFwqMd1XpCjWHlBbw0
WDa3dLBTDF+YTAsRFeGGs6rEmHU+lb13sE9pM3q1Isk/tkRbqk/JnKcMQx+Q0eUN
MJwgOU/Lwogd9Z2Nb15Hhn4Pv0Yr4PTGHgxk9WS7lb9y+Q4PpMRP5XzA4PX1WAlW
IDO91KS7elTj8mn54VgFSNktF+vZrLN5t0N8z80KsbK+wYP7jh/hMk0Bqu1+XNrj
T/siVXzHww67az45YkFNviVRxtVRC3wraeYVWUFLuUuw2xoHZ0KIfsXjDOAXBtJX
DnpGSQjtjaZ6N5FCF4OFp1u8LoP2tmub16LuODMCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQoZuBqsFiWiD0ROyodPInBa98PcjAfBgNVHSMEGDAWgBSoZYDhitb/jclC
vog8Ft6Lcx+WBTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FHV0E0WXJXXzQzSlFyNklQQmJlaTNNZmxnVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvZTI5ZGNlLWExNzQtNGI3Ny04OWFhLTIzNmU5MmZjNmE1OS8x
L0tHYmdhckJZbG9nOUVUc3FIVHlKd1d2ZkQzSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
ZTI5ZGNlLWExNzQtNGI3Ny04OWFhLTIzNmU5MmZjNmE1OS8xL3FHV0E0WXJXXzQz
SlFyNklQQmJlaTNNZmxnVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFqRODAPBAIAAjAJAwcAKgIBIAAC
MA0GCSqGSIb3DQEBCwUAA4IBAQAV5l5SJjY29/8QY96pMsINw3y5JnNpWSzqzasy
X4uTrPfTuzuEJ1DqthYJzODt12YqESyuJFbUhbhAmC0cTrlGiNxWVb7AT8qLOw2d
XyS1HpYPIQ8k7rpiD0a8WhpOkqIO45zQoiGsP+8+GnHLC0kHnlR6olrke2NYuJFH
iOYCF4YEBFNGE4TT70Niw5LPveBCyjV1uu4rtRf+a33xOeTsU4tSdTpvY3ZZbvwl
LcEQNGB7aBECorJ3Jcr+Z2/clX+hnyBC453rEZ3z2KYf8XlIMP4NpIcDGBM0mU8u
bg/fssX01LZ5idylW7ZEgzFdQMUNU9A8HhIbiIKkPfrTsTSg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:20 2024 by rpki-client on console-fra.rpki-client.org