Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/gjkFG8VfimtYHP2Eu-gYWj9PAlE.roa
File: gjkFG8VfimtYHP2Eu-gYWj9PAlE.roa (raw, json)
Hash identifier: 35Jxb6WPu0O+RQzatOFCkVUp21Zv8o2um6b5fBMDcAQ=
Subject key identifier: 82:39:05:1B:C5:5F:8A:6B:58:1C:FD:84:BB:E8:18:5A:3F:4F:02:51
Certificate issuer: /CN=1b21dbffb192e14919cfe2786baf44840c3aca3c
Certificate serial: 15A8221E
Authority key identifier: 1B:21:DB:FF:B1:92:E1:49:19:CF:E2:78:6B:AF:44:84:0C:3A:CA:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyHb_7GS4UkZz-J4a69EhAw6yjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/gjkFG8VfimtYHP2Eu-gYWj9PAlE.roa
Signing time: Sat 01 Jan 2022 08:56:17 +0000
ROA not before: Sat 01 Jan 2022 08:56:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203348
IP address blocks: 193.201.166.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 363340318 (0x15a8221e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b21dbffb192e14919cfe2786baf44840c3aca3c
Validity
Not Before: Jan 1 08:56:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8239051bc55f8a6b581cfd84bbe8185a3f4f0251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:15:1e:aa:b7:32:ef:30:b9:42:96:62:11:e9:
84:e4:ab:e1:76:9f:3e:c1:14:ee:85:90:53:96:8a:
4d:7e:79:0b:de:57:ae:ef:bb:ae:7c:55:6f:aa:c8:
c8:b2:e6:07:20:f7:05:1b:b5:b4:d7:ab:c1:8f:4b:
5f:af:f5:f4:ab:20:94:59:d7:ff:7f:69:9d:84:e0:
36:39:8a:d6:57:28:65:cd:09:79:2c:54:3f:f3:75:
ee:c2:a6:79:e8:a0:09:b2:d2:1e:a1:c3:75:bb:3f:
45:4e:86:73:78:db:fc:3a:fd:d3:db:71:53:89:89:
6c:69:6a:87:24:ea:3a:66:e0:c1:71:f3:18:0a:35:
ac:82:33:04:f0:09:d5:01:9c:14:86:f6:08:14:47:
95:dc:25:e3:55:75:c6:ec:7d:ae:17:a1:0e:bb:17:
cc:b1:31:7a:99:af:70:72:c4:29:74:2f:60:ef:89:
66:c6:91:a9:bf:2d:3b:da:8e:73:3b:8b:88:13:13:
6b:38:96:75:02:40:55:b7:e0:da:2b:dd:a5:2f:86:
9e:98:b8:93:03:c7:34:35:6f:d7:fb:93:fa:8a:17:
29:36:3b:82:b8:54:fe:6b:4f:2f:24:13:36:ae:d3:
ec:61:e5:9d:89:45:61:19:24:80:41:b7:0c:e7:51:
dd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:39:05:1B:C5:5F:8A:6B:58:1C:FD:84:BB:E8:18:5A:3F:4F:02:51
X509v3 Authority Key Identifier:
keyid:1B:21:DB:FF:B1:92:E1:49:19:CF:E2:78:6B:AF:44:84:0C:3A:CA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyHb_7GS4UkZz-J4a69EhAw6yjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/gjkFG8VfimtYHP2Eu-gYWj9PAlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/066221-0eeb-42d9-9c07-fc69e0bca622/1/GyHb_7GS4UkZz-J4a69EhAw6yjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.166.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d7:54:62:7e:63:43:25:b8:b0:20:1b:32:00:97:81:b4:2b:
21:6d:b5:c2:bc:c8:ad:41:00:6e:ec:48:7c:a6:26:a0:2f:95:
41:8c:2b:ff:77:28:34:fa:96:0d:d5:3e:11:46:0a:f0:40:b5:
a7:87:8d:19:87:9e:1d:52:74:b7:14:66:96:1d:64:f1:b7:75:
eb:71:e2:e8:64:a0:50:a6:db:ec:86:f8:22:5a:6c:36:88:f5:
29:86:61:eb:46:5b:e2:87:38:6b:ca:ac:53:a9:98:62:59:c3:
2d:d5:7d:55:eb:19:1d:5c:a0:ad:6b:d9:3c:6c:95:6b:15:fc:
e3:49:42:a0:41:72:b8:5b:9f:44:fd:69:02:8d:1c:fc:b8:b0:
64:60:95:55:d8:9c:ba:7d:28:c6:1e:17:61:86:dd:b5:0b:19:
62:fd:d3:21:66:71:8d:70:e3:94:37:4d:69:72:31:ea:ab:b7:
6b:50:7d:19:cd:b5:b5:a2:6b:6f:c1:0b:37:ce:a0:c0:68:cb:
76:34:2e:0a:22:12:c4:bd:67:22:29:47:e1:45:4d:06:bb:89:
89:71:33:38:8c:85:a8:19:47:c8:a7:60:f9:2c:4d:71:c7:90:
ad:8b:c3:ec:61:1f:99:56:03:e5:9d:a4:98:9b:e4:a4:1f:5a:
38:0d:f6:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFagiHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YjIxZGJmZmIxOTJlMTQ5MTljZmUyNzg2YmFmNDQ4NDBjM2FjYTNjMB4XDTIyMDEw
MTA4NTYxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODIzOTA1MWJjNTVm
OGE2YjU4MWNmZDg0YmJlODE4NWEzZjRmMDI1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKoVHqq3Mu8wuUKWYhHphOSr4XafPsEU7oWQU5aKTX55C95X
ru+7rnxVb6rIyLLmByD3BRu1tNerwY9LX6/19KsglFnX/39pnYTgNjmK1lcoZc0J
eSxUP/N17sKmeeigCbLSHqHDdbs/RU6Gc3jb/Dr909txU4mJbGlqhyTqOmbgwXHz
GAo1rIIzBPAJ1QGcFIb2CBRHldwl41V1xux9rhehDrsXzLExepmvcHLEKXQvYO+J
ZsaRqb8tO9qOczuLiBMTaziWdQJAVbfg2ivdpS+Gnpi4kwPHNDVv1/uT+ooXKTY7
grhU/mtPLyQTNq7T7GHlnYlFYRkkgEG3DOdR3YkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCOQUbxV+Ka1gc/YS76BhaP08CUTAfBgNVHSMEGDAWgBQbIdv/sZLhSRnP
4nhrr0SEDDrKPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0d5SGJfN0dTNFVrWnotSjRhNjlFaEF3Nnlqdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDUvMDY2MjIxLTBlZWItNDJkOS05YzA3LWZjNjllMGJjYTYyMi8x
L2dqa0ZHOFZmaW10WUhQMkV1LWdZV2o5UEFsRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUv
MDY2MjIxLTBlZWItNDJkOS05YzA3LWZjNjllMGJjYTYyMi8xL0d5SGJfN0dTNFVr
WnotSjRhNjlFaEF3Nnlqdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHJpjANBgkqhkiG9w0BAQsFAAOC
AQEARtdUYn5jQyW4sCAbMgCXgbQrIW21wrzIrUEAbuxIfKYmoC+VQYwr/3coNPqW
DdU+EUYK8EC1p4eNGYeeHVJ0txRmlh1k8bd163Hi6GSgUKbb7Ib4IlpsNoj1KYZh
60Zb4oc4a8qsU6mYYlnDLdV9VesZHVygrWvZPGyVaxX840lCoEFyuFufRP1pAo0c
/LiwZGCVVdicun0oxh4XYYbdtQsZYv3TIWZxjXDjlDdNaXIx6qu3a1B9Gc21taJr
b8ELN86gwGjLdjQuCiISxL1nIilH4UVNBruJiXEzOIyFqBlHyKdg+SxNcceQrYvD
7GEfmVYD5Z2kmJvkpB9aOA32ng==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:20:19 2025 by rpki-client