Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/5df262-2e0b-4fb7-b0d3-5d0e09a0204f/1/Gg0yDAXfCg6vbyd5Eo53wFa3IVY.roa
File: Gg0yDAXfCg6vbyd5Eo53wFa3IVY.roa (raw, json)
Hash identifier: iMc2RQQMZY6Nyel0nLUp54H+3WEMs3wOZGGaxQ/5sLI=
Subject key identifier: 1A:0D:32:0C:05:DF:0A:0E:AF:6F:27:79:12:8E:77:C0:56:B7:21:56
Certificate issuer: /CN=822f5a6c0b95647f070350e6524e1220fba47fa3
Certificate serial: 08ABFD13
Authority key identifier: 82:2F:5A:6C:0B:95:64:7F:07:03:50:E6:52:4E:12:20:FB:A4:7F:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gi9abAuVZH8HA1DmUk4SIPukf6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/5df262-2e0b-4fb7-b0d3-5d0e09a0204f/1/Gg0yDAXfCg6vbyd5Eo53wFa3IVY.roa
Signing time: Sat 01 Jan 2022 06:57:30 +0000
ROA not before: Sat 01 Jan 2022 06:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212201
IP address blocks: 5.182.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145489171 (0x8abfd13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=822f5a6c0b95647f070350e6524e1220fba47fa3
Validity
Not Before: Jan 1 06:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a0d320c05df0a0eaf6f2779128e77c056b72156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:46:e1:b0:a8:c3:02:6c:ae:15:20:e7:fe:94:
a6:c3:bd:16:bd:92:fa:c9:28:bd:0b:5f:4a:fa:9c:
e0:eb:00:54:7d:eb:10:64:6f:b6:3a:2c:40:40:e6:
cd:34:8c:3a:d0:de:fb:f4:f1:e7:fc:4f:94:73:6f:
ca:71:d5:3b:84:8c:46:f4:52:8f:b0:44:e1:c0:91:
37:3c:84:c0:2e:07:0b:87:2c:77:05:be:2c:e8:92:
25:12:d3:8d:1a:c6:26:2d:52:0c:37:62:92:71:2e:
6e:b3:25:a1:77:29:2c:50:4d:bd:72:32:01:21:c6:
5a:3a:cf:7a:ab:40:68:8b:94:cf:10:7b:d9:aa:2c:
32:a0:8e:0b:25:7a:02:21:b8:5b:2b:20:7d:67:31:
af:e7:63:85:44:85:09:90:75:33:03:f5:55:0e:5e:
82:e6:9e:81:f6:65:c3:45:79:29:6d:4f:fa:ba:00:
56:4f:1e:e9:bc:24:37:93:7f:26:f8:ac:b1:df:af:
c3:60:11:df:11:5a:25:ce:f4:e4:e7:de:08:0c:53:
bd:08:a6:8e:d7:3e:21:fc:a4:b6:31:76:bd:ce:a4:
c8:37:4c:68:a6:5c:df:81:3c:11:36:e2:d0:84:61:
ab:20:fd:76:76:b5:c5:5a:6e:aa:4b:35:fd:14:38:
2a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0D:32:0C:05:DF:0A:0E:AF:6F:27:79:12:8E:77:C0:56:B7:21:56
X509v3 Authority Key Identifier:
keyid:82:2F:5A:6C:0B:95:64:7F:07:03:50:E6:52:4E:12:20:FB:A4:7F:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gi9abAuVZH8HA1DmUk4SIPukf6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5df262-2e0b-4fb7-b0d3-5d0e09a0204f/1/Gg0yDAXfCg6vbyd5Eo53wFa3IVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5df262-2e0b-4fb7-b0d3-5d0e09a0204f/1/gi9abAuVZH8HA1DmUk4SIPukf6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.251.0/24
Signature Algorithm: sha256WithRSAEncryption
55:57:18:31:fd:96:d2:50:92:39:9d:a4:7d:bb:26:62:3b:f8:
bf:9f:6d:b4:88:5d:02:0b:83:80:0d:70:97:a9:bd:9e:3a:16:
b5:11:58:6b:fe:2c:0a:a5:9d:eb:de:19:7d:8a:fb:84:86:5a:
48:88:f1:3c:e9:45:1d:d2:d9:c1:63:db:d3:84:82:38:02:43:
1d:6e:f6:59:1d:ba:06:43:23:79:74:1b:e8:da:4b:7c:fc:97:
22:6d:0a:8b:96:30:65:38:d6:58:14:ed:28:f3:4f:8f:9e:86:
8a:17:6d:8f:72:f2:cc:ad:a3:fd:e9:10:a0:80:92:30:eb:f1:
d8:c9:e1:90:5c:e7:cb:50:a7:3a:a1:fc:2d:d8:88:cd:ed:6b:
75:f6:87:35:0a:4b:6a:1f:ed:36:12:2b:18:ae:b1:17:9b:ee:
32:80:ef:5a:c8:dc:be:c4:7f:0b:50:42:94:a6:52:ea:56:0f:
8e:13:82:d8:da:94:04:46:93:5c:66:a4:21:cb:7a:77:3f:4f:
d8:32:b4:a4:b6:43:b3:bd:78:d2:19:94:a1:6b:64:2a:ed:05:
36:4f:24:5a:d9:be:3f:03:fd:bc:28:7c:cf:ef:bb:d6:7c:e2:
d3:a6:f9:80:40:40:dc:96:31:2a:24:1f:2e:4b:ab:64:69:58:
71:87:80:4a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECKv9EzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MjJmNWE2YzBiOTU2NDdmMDcwMzUwZTY1MjRlMTIyMGZiYTQ3ZmEzMB4XDTIyMDEw
MTA2NTczMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWEwZDMyMGMwNWRm
MGEwZWFmNmYyNzc5MTI4ZTc3YzA1NmI3MjE1NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJhG4bCowwJsrhUg5/6UpsO9Fr2S+skovQtfSvqc4OsAVH3r
EGRvtjosQEDmzTSMOtDe+/Tx5/xPlHNvynHVO4SMRvRSj7BE4cCRNzyEwC4HC4cs
dwW+LOiSJRLTjRrGJi1SDDdiknEubrMloXcpLFBNvXIyASHGWjrPeqtAaIuUzxB7
2aosMqCOCyV6AiG4WysgfWcxr+djhUSFCZB1MwP1VQ5eguaegfZlw0V5KW1P+roA
Vk8e6bwkN5N/Jvissd+vw2AR3xFaJc705OfeCAxTvQimjtc+IfyktjF2vc6kyDdM
aKZc34E8ETbi0IRhqyD9dna1xVpuqks1/RQ4KssCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQaDTIMBd8KDq9vJ3kSjnfAVrchVjAfBgNVHSMEGDAWgBSCL1psC5VkfwcD
UOZSThIg+6R/ozAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dpOWFiQXVWWkg4SEExRG1VazRTSVB1a2Y2TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDIvNWRmMjYyLTJlMGItNGZiNy1iMGQzLTVkMGUwOWEwMjA0Zi8x
L0dnMHlEQVhmQ2c2dmJ5ZDVFbzUzd0ZhM0lWWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDIv
NWRmMjYyLTJlMGItNGZiNy1iMGQzLTVkMGUwOWEwMjA0Zi8xL2dpOWFiQXVWWkg4
SEExRG1VazRTSVB1a2Y2TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAW2+zANBgkqhkiG9w0BAQsFAAOC
AQEAVVcYMf2W0lCSOZ2kfbsmYjv4v59ttIhdAguDgA1wl6m9njoWtRFYa/4sCqWd
694ZfYr7hIZaSIjxPOlFHdLZwWPb04SCOAJDHW72WR26BkMjeXQb6NpLfPyXIm0K
i5YwZTjWWBTtKPNPj56Gihdtj3LyzK2j/ekQoICSMOvx2MnhkFzny1CnOqH8LdiI
ze1rdfaHNQpLah/tNhIrGK6xF5vuMoDvWsjcvsR/C1BClKZS6lYPjhOC2NqUBEaT
XGakIct6dz9P2DK0pLZDs7140hmUoWtkKu0FNk8kWtm+PwP9vCh8z++71nzi06b5
gEBA3JYxKiQfLkurZGlYcYeASg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:54 2024 by rpki-client on console-ams.rpki-client.org