Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/gAjmSGa30CdHTpv9Gg5gxafTGIA.roa
File: gAjmSGa30CdHTpv9Gg5gxafTGIA.roa (raw, json)
Hash identifier: Rph8POGqzvizgp710IXnRvLIZkJULlihwAQUwe+N1gw=
Subject key identifier: 80:08:E6:48:66:B7:D0:27:47:4E:9B:FD:1A:0E:60:C5:A7:D3:18:80
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 04426DCD
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/gAjmSGa30CdHTpv9Gg5gxafTGIA.roa
Signing time: Thu 21 Apr 2022 09:34:41 +0000
ROA not before: Thu 21 Apr 2022 09:34:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.69.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71462349 (0x4426dcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Apr 21 09:34:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8008e64866b7d027474e9bfd1a0e60c5a7d31880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:95:c4:85:c6:63:3f:c9:0c:93:4f:0a:c6:3e:
ae:5c:6b:ba:88:f1:39:aa:c1:2d:66:69:4e:95:f0:
66:55:54:b3:48:c2:94:03:0d:75:96:6b:68:73:42:
13:94:9a:b6:5d:4f:b4:23:c5:68:4b:7a:7e:e8:5f:
e0:21:7a:cc:42:33:a4:2d:d2:9c:3a:06:73:4b:bb:
f2:33:52:88:57:c5:1e:e1:28:a2:b5:99:37:55:82:
ec:25:4a:a4:5f:7b:31:ec:14:bc:05:aa:11:9c:10:
34:85:2c:6d:58:8d:4c:f1:16:3e:8f:9a:22:1f:91:
55:8c:70:4e:7d:92:79:77:5c:93:a5:e0:a5:16:e6:
15:cb:35:28:36:15:cd:f8:06:49:3f:32:15:29:47:
fb:d0:c3:a0:9a:83:09:82:65:cf:d2:ba:34:09:6c:
30:98:a8:a7:d5:7d:f0:7a:2c:f6:3a:66:38:c2:bf:
e1:64:14:96:e0:24:bf:3b:16:c2:e4:3d:b8:61:76:
fc:5c:1d:55:5d:b1:e7:74:0c:19:5e:5a:20:b9:d1:
81:02:ca:56:16:5f:2d:88:6f:b6:9c:87:93:4f:9a:
65:eb:6b:bc:ab:42:f5:bb:93:ea:7d:03:76:cc:37:
8b:52:77:41:45:1a:69:d9:12:d0:d9:0c:2b:f8:42:
06:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:08:E6:48:66:B7:D0:27:47:4E:9B:FD:1A:0E:60:C5:A7:D3:18:80
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/gAjmSGa30CdHTpv9Gg5gxafTGIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.120.0/22
Signature Algorithm: sha256WithRSAEncryption
13:03:be:50:11:77:03:5c:bf:c8:be:04:66:a0:30:ec:e8:94:
de:d2:82:45:62:02:ec:cc:28:51:2a:38:3a:b3:9a:32:90:9a:
bb:c5:32:8f:43:2f:af:ee:60:0b:a8:17:48:da:4e:68:7b:3f:
84:4b:c4:9d:af:f9:e0:e5:ca:82:f2:ab:87:a9:6e:6a:99:63:
d3:2d:a0:a1:b8:0f:4d:12:6a:4f:0a:0a:91:d9:0c:73:14:0f:
3a:0c:e2:70:0e:c8:1c:c7:7c:f2:34:09:85:ae:df:fd:a6:14:
dc:08:25:18:0a:af:9a:c5:16:33:94:03:75:81:2e:44:05:ad:
b6:a8:a5:49:35:3a:5b:85:e2:33:93:ed:9d:d2:8b:c1:6a:f9:
9a:b3:4d:ca:26:d8:52:ec:3c:a9:75:50:c3:71:5d:65:35:24:
18:a8:d6:f6:23:55:54:74:30:2c:2d:50:4f:50:c5:50:0a:59:
23:71:1a:e8:3e:49:ce:fc:3a:c7:6f:20:cd:db:ab:68:30:72:
14:71:9c:04:12:53:7b:12:6c:a5:9d:c1:d7:3b:7e:1a:47:64:
48:ac:e7:f8:ac:e5:d7:87:f2:cb:fe:5d:8b:5c:71:54:be:38:
eb:b2:8d:db:37:7c:b1:23:15:b2:7b:02:42:15:f5:f8:bd:11:
b9:31:0e:8b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBEJtzTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NjFiZDdkZDFmOGFjOGI0MTkyYmE3OGE1OTIzNDhiNWRkMGExYTY2MB4XDTIyMDQy
MTA5MzQ0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODAwOGU2NDg2NmI3
ZDAyNzQ3NGU5YmZkMWEwZTYwYzVhN2QzMTg4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJuVxIXGYz/JDJNPCsY+rlxruojxOarBLWZpTpXwZlVUs0jC
lAMNdZZraHNCE5Satl1PtCPFaEt6fuhf4CF6zEIzpC3SnDoGc0u78jNSiFfFHuEo
orWZN1WC7CVKpF97MewUvAWqEZwQNIUsbViNTPEWPo+aIh+RVYxwTn2SeXdck6Xg
pRbmFcs1KDYVzfgGST8yFSlH+9DDoJqDCYJlz9K6NAlsMJiop9V98Hos9jpmOMK/
4WQUluAkvzsWwuQ9uGF2/FwdVV2x53QMGV5aILnRgQLKVhZfLYhvtpyHk0+aZetr
vKtC9buT6n0Ddsw3i1J3QUUaadkS0NkMK/hCBvUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSACOZIZrfQJ0dOm/0aDmDFp9MYgDAfBgNVHSMEGDAWgBTmG9fdH4rItBkr
p4pZI0i13QoaZjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVodlgzUi1LeUxRWks2ZUtXU05JdGQwS0dtWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNGFjYzE1LWJiYTAtNDQ1OS05NjY3LWRlOWIyZjhmN2UyOS8x
L2dBam1TR2EzMENkSFRwdjlHZzVneGFmVEdJQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NGFjYzE1LWJiYTAtNDQ1OS05NjY3LWRlOWIyZjhmN2UyOS8xLzVodlgzUi1LeUxR
Wks2ZUtXU05JdGQwS0dtWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlFeDANBgkqhkiG9w0BAQsFAAOC
AQEAEwO+UBF3A1y/yL4EZqAw7OiU3tKCRWIC7MwoUSo4OrOaMpCau8Uyj0Mvr+5g
C6gXSNpOaHs/hEvEna/54OXKgvKrh6luaplj0y2gobgPTRJqTwoKkdkMcxQPOgzi
cA7IHMd88jQJha7f/aYU3AglGAqvmsUWM5QDdYEuRAWttqilSTU6W4XiM5PtndKL
wWr5mrNNyibYUuw8qXVQw3FdZTUkGKjW9iNVVHQwLC1QT1DFUApZI3Ea6D5Jzvw6
x28gzduraDByFHGcBBJTexJspZ3B1zt+GkdkSKzn+Kzl14fyy/5di1xxVL4467KN
2zd8sSMVsnsCQhX1+L0RuTEOiw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org