Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gXDHU14QFQDtBPMAA_eNvWJM-FY.roa
File: gXDHU14QFQDtBPMAA_eNvWJM-FY.roa (raw, json)
Hash identifier: U9gC7KnhQTUx20Gnj99fzyT7aD/cQeXZh9gpFuFfk0U=
Subject key identifier: 81:70:C7:53:5E:10:15:00:ED:04:F3:00:03:F7:8D:BD:62:4C:F8:56
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 178B9568
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gXDHU14QFQDtBPMAA_eNvWJM-FY.roa
Signing time: Sat 01 Jan 2022 04:53:49 +0000
ROA not before: Sat 01 Jan 2022 04:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 185.215.215.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395023720 (0x178b9568)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8170c7535e101500ed04f30003f78dbd624cf856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:30:8c:bc:99:e1:f1:90:45:83:89:45:b9:96:
bb:9d:94:f2:f9:36:36:31:4e:b7:8d:05:9c:46:c0:
07:b6:9f:10:87:24:89:2f:b4:68:12:fa:b0:f5:7c:
d1:71:cb:59:68:6b:df:1c:47:61:1b:0b:e1:e9:20:
ad:9e:5b:07:ec:8e:1d:aa:ff:d5:ea:11:f1:ae:af:
0a:3f:61:d8:a3:15:06:c5:9c:83:82:12:26:52:48:
27:36:fa:cb:e1:ab:d8:f2:ad:88:f1:0d:2e:47:79:
1e:0a:8f:52:93:be:55:32:eb:26:10:13:f8:98:0d:
91:f7:6f:fe:f2:22:17:d8:6d:b4:12:59:b8:79:1d:
ab:ff:04:04:90:1e:fd:4b:f2:a2:02:af:f3:9f:b6:
1d:58:40:e4:20:49:e3:53:a4:35:04:04:a2:ed:d7:
0e:df:93:d6:dc:b2:9c:1d:bf:0a:db:dd:15:0a:76:
c1:87:0c:8b:0d:a0:31:1d:ae:51:0c:ef:cb:23:74:
14:28:0a:82:c3:d9:b7:b3:35:1c:0e:8d:d5:8f:e0:
30:f2:a2:49:78:eb:2c:cf:a0:d6:a7:f8:93:8c:5e:
52:ee:b8:b5:11:b9:24:e7:6d:11:fb:30:4c:1a:cc:
3a:a0:f3:ec:27:51:ac:51:85:41:a4:8b:cf:54:db:
91:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:70:C7:53:5E:10:15:00:ED:04:F3:00:03:F7:8D:BD:62:4C:F8:56
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gXDHU14QFQDtBPMAA_eNvWJM-FY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.215.0/24
Signature Algorithm: sha256WithRSAEncryption
52:b9:71:5c:85:e5:ed:54:8e:4d:18:ad:ef:05:bc:f8:03:70:
d7:4f:1c:db:fa:7b:19:b5:81:53:46:60:5e:e9:21:01:a6:ac:
36:fb:80:d5:99:e7:12:ab:be:3e:aa:a4:78:37:f6:73:b4:33:
4a:bc:53:d9:e2:9a:35:e6:70:e9:28:20:36:a7:d6:92:1c:a6:
1e:b1:52:81:d0:7a:41:de:ba:ad:20:de:96:cb:13:c9:60:2d:
8d:93:41:28:00:98:48:c8:01:5c:cb:84:a6:35:da:ef:20:f7:
45:c4:ab:94:94:3a:cf:00:87:77:66:3d:fb:fa:fc:66:d5:24:
cb:68:2a:71:3d:c5:50:73:8b:0d:0b:4b:e9:51:02:6a:f9:24:
07:7d:dd:87:43:08:e3:91:36:51:54:91:fd:c7:f7:df:eb:a7:
7e:58:aa:47:07:8c:7f:21:7c:61:7c:e0:58:d9:e6:09:b7:02:
ab:da:a5:78:01:7d:a2:04:e9:0c:f8:22:8c:d9:7e:f5:bc:37:
7c:5e:ee:8c:d2:4b:b4:b6:69:37:49:d3:59:53:a9:d6:b7:80:
dd:7d:dc:56:3d:0c:4f:7b:23:fe:13:7f:9a:c4:62:49:da:ef:
50:38:ee:d5:0b:6d:9c:16:c2:ac:f7:95:1b:c2:94:d8:ad:03:
55:c8:3a:47
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF4uVaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTM0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODE3MGM3NTM1ZTEw
MTUwMGVkMDRmMzAwMDNmNzhkYmQ2MjRjZjg1NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALEwjLyZ4fGQRYOJRbmWu52U8vk2NjFOt40FnEbAB7afEIck
iS+0aBL6sPV80XHLWWhr3xxHYRsL4ekgrZ5bB+yOHar/1eoR8a6vCj9h2KMVBsWc
g4ISJlJIJzb6y+Gr2PKtiPENLkd5HgqPUpO+VTLrJhAT+JgNkfdv/vIiF9httBJZ
uHkdq/8EBJAe/UvyogKv85+2HVhA5CBJ41OkNQQEou3XDt+T1tyynB2/CtvdFQp2
wYcMiw2gMR2uUQzvyyN0FCgKgsPZt7M1HA6N1Y/gMPKiSXjrLM+g1qf4k4xeUu64
tRG5JOdtEfswTBrMOqDz7CdRrFGFQaSLz1TbkQMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSBcMdTXhAVAO0E8wAD9429Ykz4VjAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L2dYREhVMTRRRlFEdEJQTUFBX2VOdldKTS1GWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnX1zANBgkqhkiG9w0BAQsFAAOC
AQEAUrlxXIXl7VSOTRit7wW8+ANw108c2/p7GbWBU0ZgXukhAaasNvuA1ZnnEqu+
PqqkeDf2c7QzSrxT2eKaNeZw6SggNqfWkhymHrFSgdB6Qd66rSDelssTyWAtjZNB
KACYSMgBXMuEpjXa7yD3RcSrlJQ6zwCHd2Y9+/r8ZtUky2gqcT3FUHOLDQtL6VEC
avkkB33dh0MI45E2UVSR/cf33+unfliqRweMfyF8YXzgWNnmCbcCq9qleAF9ogTp
DPgijNl+9bw3fF7ujNJLtLZpN0nTWVOp1reA3X3cVj0MT3sj/hN/msRiSdrvUDju
1QttnBbCrPeVG8KU2K0DVcg6Rw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org