Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GKJ5IUyzx3-rku7FzvdN6MNx_GQ.roa
File: GKJ5IUyzx3-rku7FzvdN6MNx_GQ.roa (raw, json)
Hash identifier: RLrm+emToaFkDoDKaHBZE1tw9Pu6R9i/4clZXPA9VIY=
Subject key identifier: 18:A2:79:21:4C:B3:C7:7F:AB:92:EE:C5:CE:F7:4D:E8:C3:71:FC:64
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0185150825F69B3C576A8F0038758B6CE330
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GKJ5IUyzx3-rku7FzvdN6MNx_GQ.roa
Signing time: Thu 15 Dec 2022 09:05:33 +0000
ROA not before: Thu 15 Dec 2022 09:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 193.164.199.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:39c1::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0f:7f00::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a0f:39c0::/32 maxlen: 32
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac40:f::/48 maxlen: 48
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:7f01::/32 maxlen: 32
2a0f:e842::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:08:25:f6:9b:3c:57:6a:8f:00:38:75:8b:6c:e3:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 15 09:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18a279214cb3c77fab92eec5cef74de8c371fc64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:03:45:2d:02:f6:1b:f6:e3:c7:df:c6:72:91:
76:a9:fb:97:68:9a:3e:92:16:28:68:2b:4c:6e:cd:
57:a2:e5:fc:33:66:f3:7f:00:91:a1:dc:86:ee:53:
aa:65:7b:01:bb:ec:d6:d7:4f:7c:cd:96:81:72:3a:
23:cd:be:31:7e:85:9d:34:46:5d:d4:f8:3c:e7:6b:
a7:6a:33:71:d5:45:59:be:36:46:f2:95:66:83:62:
a5:da:ac:8f:e1:50:6b:cf:0d:b0:b3:f0:8c:da:89:
8b:84:96:9b:77:46:c5:07:1a:c9:01:6e:44:60:93:
74:1a:5e:1e:4f:48:65:bf:04:b3:11:81:cd:a3:17:
b1:08:82:8b:f5:65:bb:4a:0c:b8:51:d8:77:8c:74:
3e:30:d9:6d:d3:3c:d5:f8:ad:dd:ca:f3:11:c0:b4:
04:eb:0e:38:77:9d:04:5d:78:b3:33:e7:23:28:db:
d9:31:02:25:5a:39:1e:2e:45:b0:a0:ab:31:c4:e4:
c7:ec:a8:ee:15:3f:46:c3:24:5b:dd:2c:be:bb:7f:
d0:cb:80:f4:a0:ce:4f:9e:13:d9:68:80:84:6b:4b:
99:75:fa:3d:b2:e4:ef:06:1a:1e:64:46:d4:d9:9b:
52:37:34:24:de:bc:68:b4:5b:8c:2d:23:0c:a2:6a:
54:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A2:79:21:4C:B3:C7:7F:AB:92:EE:C5:CE:F7:4D:E8:C3:71:FC:64
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GKJ5IUyzx3-rku7FzvdN6MNx_GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.199.0/24
IPv6:
2a07:f300::/29
2a0e:1a80::/32
2a0e:5a80::/29
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:39c0::/31
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:7f00::/31
2a0f:e842::/32
2a0f:e940::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:d540::/29
Signature Algorithm: sha256WithRSAEncryption
5d:f1:42:f5:73:74:8a:fc:47:02:a2:f2:7b:5a:8e:2f:5a:b0:
10:b5:0b:4d:16:e2:ff:22:7b:da:52:ba:55:8b:3f:b2:17:5e:
0f:09:0e:e5:8a:ae:f5:96:06:db:75:6f:31:ba:ba:2e:bc:89:
bd:eb:e7:92:f1:2a:d5:8a:cc:f4:6a:1c:f4:fc:fb:22:4d:06:
85:cc:f9:d5:f7:cd:7a:57:fe:76:67:05:99:7e:52:df:a6:f0:
25:ba:49:8d:e8:99:22:9f:ab:fb:f4:d5:9f:be:b4:49:34:a9:
4e:a1:d4:d8:8e:fb:6f:ce:21:bc:8e:02:f0:30:a3:0a:8a:e1:
e1:e6:f3:ed:ad:44:44:b6:6c:b7:c5:54:29:bf:6d:8b:9f:dc:
43:ae:81:0b:2e:71:de:1d:68:29:87:1c:51:01:21:7a:2b:dc:
00:d7:a1:8c:4a:59:0b:80:e2:24:87:e9:52:68:43:2f:ae:d4:
5c:33:61:20:16:7e:28:41:17:60:a3:e1:56:b0:12:ea:70:1b:
d0:9e:6f:fb:3b:9f:24:a7:71:8f:25:f3:1c:d8:10:01:f3:36:
92:b4:35:4b:f2:19:b7:af:f1:fa:41:56:e1:05:b3:5e:85:44:
fe:71:bf:48:45:d2:2e:82:67:16:8c:4c:72:ce:f7:5c:75:6f:
03:b3:68:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:15:00 2025 by rpki-client