Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/gHnTZLDe-iDnZrXMvhT9xZjEbdo.roa
File: gHnTZLDe-iDnZrXMvhT9xZjEbdo.roa (raw, json)
Hash identifier: Pq1AH1vluaHnFb9W8KFbMef0zBuj6XjTw2sQ5wBFILQ=
Subject key identifier: 80:79:D3:64:B0:DE:FA:20:E7:66:B5:CC:BE:14:FD:C5:98:C4:6D:DA
Certificate issuer: /CN=bcb4e6294e7fe4673f7bc6f57f48138e958fcced
Certificate serial: 0ABCAA9B
Authority key identifier: BC:B4:E6:29:4E:7F:E4:67:3F:7B:C6:F5:7F:48:13:8E:95:8F:CC:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/gHnTZLDe-iDnZrXMvhT9xZjEbdo.roa
Signing time: Sat 01 Jan 2022 11:55:11 +0000
ROA not before: Sat 01 Jan 2022 11:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42541
IP address blocks: 194.62.216.0/23 maxlen: 23
2a0c:fec0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180136603 (0xabcaa9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcb4e6294e7fe4673f7bc6f57f48138e958fcced
Validity
Not Before: Jan 1 11:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8079d364b0defa20e766b5ccbe14fdc598c46dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f7:13:48:ed:06:97:c3:c6:f4:43:32:dd:3a:
cd:04:59:94:8a:85:36:86:cb:57:af:d2:42:10:0a:
ba:43:6a:6e:6a:20:ae:b0:d5:82:37:79:3a:b3:d6:
9d:d5:ca:96:48:f3:6a:ff:cb:79:21:38:8b:7e:07:
02:32:69:1e:fd:02:92:35:da:4d:23:c7:4e:4a:fb:
0f:5b:1f:31:ce:e3:8c:10:63:b7:9c:a9:8f:ae:cd:
82:e1:dd:71:00:87:68:7b:4e:2f:7a:e1:85:78:22:
fc:61:16:ea:59:e5:19:a0:6a:f4:16:fb:cb:7e:13:
fb:c9:a1:c6:28:ed:ac:f8:c1:d3:9a:56:3e:c6:4b:
ee:79:b9:2b:8a:cd:e9:01:64:5a:c5:2a:42:9b:ee:
6e:cd:13:3b:8f:54:d3:5e:c5:45:fc:7e:6f:8b:33:
cd:f0:35:3d:62:5e:f8:54:19:0f:9f:5b:42:9f:d6:
8e:81:2b:03:7a:e1:a7:26:7b:d0:0a:50:e8:12:dd:
e1:c1:da:5a:db:de:ca:21:f2:8a:e2:ab:ff:e2:31:
cd:11:84:27:87:21:3d:92:a5:c1:74:f5:cb:da:06:
d0:4c:71:49:06:cc:67:ac:db:0e:57:f5:58:8e:a1:
a3:c3:fa:f4:e5:1b:07:be:83:d7:b1:10:90:60:2c:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:79:D3:64:B0:DE:FA:20:E7:66:B5:CC:BE:14:FD:C5:98:C4:6D:DA
X509v3 Authority Key Identifier:
keyid:BC:B4:E6:29:4E:7F:E4:67:3F:7B:C6:F5:7F:48:13:8E:95:8F:CC:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/gHnTZLDe-iDnZrXMvhT9xZjEbdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/ad4f52-9c28-4512-8c1a-0d597c7da9c8/1/vLTmKU5_5Gc_e8b1f0gTjpWPzO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.216.0/23
IPv6:
2a0c:fec0::/32
Signature Algorithm: sha256WithRSAEncryption
59:b5:96:87:f6:5b:53:7f:f3:34:6a:63:94:0f:52:21:58:34:
ec:b2:80:1d:15:c1:1e:31:a4:ce:35:66:61:7b:d3:31:aa:e8:
b7:73:ca:97:60:b7:72:29:09:33:4a:55:c8:ff:e8:be:82:61:
12:e0:9e:3a:cf:e9:74:9d:d1:c7:e8:81:6a:83:30:f5:d9:22:
8f:98:7e:96:65:cb:2b:a1:dd:ed:2c:09:59:b5:bc:0a:25:8b:
25:8f:5d:b5:ee:a6:ed:73:a2:90:de:57:b7:ff:e4:9f:4b:37:
b0:c4:f1:0d:09:d9:91:07:26:d8:f6:60:4e:df:e0:d5:c3:4e:
64:b3:a3:e9:80:a8:8e:20:87:e3:b7:eb:09:69:32:50:d3:c5:
b5:4c:d0:9d:39:ce:bf:02:51:40:5d:98:e9:62:c6:be:43:eb:
a7:de:bc:76:77:0f:90:20:be:ec:3b:24:72:5c:df:e1:3d:57:
b5:05:cc:69:26:ea:65:d3:4d:6e:fa:8a:3d:b5:28:f3:88:d6:
62:37:9b:a7:dd:41:38:ff:55:2b:b2:61:73:e5:ac:2e:f9:85:
81:a9:84:80:c8:11:4d:ac:db:67:38:0d:8e:03:00:b3:b9:8b:
dc:dc:08:f6:a0:08:b7:f9:91:95:b5:c7:12:11:93:82:83:ee:
e1:67:24:a6
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECryqmzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
Y2I0ZTYyOTRlN2ZlNDY3M2Y3YmM2ZjU3ZjQ4MTM4ZTk1OGZjY2VkMB4XDTIyMDEw
MTExNTUxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODA3OWQzNjRiMGRl
ZmEyMGU3NjZiNWNjYmUxNGZkYzU5OGM0NmRkYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKT3E0jtBpfDxvRDMt06zQRZlIqFNobLV6/SQhAKukNqbmog
rrDVgjd5OrPWndXKlkjzav/LeSE4i34HAjJpHv0CkjXaTSPHTkr7D1sfMc7jjBBj
t5ypj67NguHdcQCHaHtOL3rhhXgi/GEW6lnlGaBq9Bb7y34T+8mhxijtrPjB05pW
PsZL7nm5K4rN6QFkWsUqQpvubs0TO49U017FRfx+b4szzfA1PWJe+FQZD59bQp/W
joErA3rhpyZ70ApQ6BLd4cHaWtveyiHyiuKr/+IxzRGEJ4chPZKlwXT1y9oG0Exx
SQbMZ6zbDlf1WI6ho8P69OUbB76D17EQkGAsFM8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSAedNksN76IOdmtcy+FP3FmMRt2jAfBgNVHSMEGDAWgBS8tOYpTn/kZz97
xvV/SBOOlY/M7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZMVG1LVTVfNUdjX2U4YjFmMGdUanBXUHpPMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvYWQ0ZjUyLTljMjgtNDUxMi04YzFhLTBkNTk3YzdkYTljOC8x
L2dIblRaTERlLWlEblpyWE12aFQ5eFpqRWJkby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
YWQ0ZjUyLTljMjgtNDUxMi04YzFhLTBkNTk3YzdkYTljOC8xL3ZMVG1LVTVfNUdj
X2U4YjFmMGdUanBXUHpPMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAcI+2DANBAIAAjAHAwUAKgz+wDAN
BgkqhkiG9w0BAQsFAAOCAQEAWbWWh/ZbU3/zNGpjlA9SIVg07LKAHRXBHjGkzjVm
YXvTMarot3PKl2C3cikJM0pVyP/ovoJhEuCeOs/pdJ3Rx+iBaoMw9dkij5h+lmXL
K6Hd7SwJWbW8CiWLJY9dte6m7XOikN5Xt//kn0s3sMTxDQnZkQcm2PZgTt/g1cNO
ZLOj6YCojiCH47frCWkyUNPFtUzQnTnOvwJRQF2Y6WLGvkPrp968dncPkCC+7Dsk
clzf4T1XtQXMaSbqZdNNbvqKPbUo84jWYjebp91BOP9VK7Jhc+WsLvmFgamEgMgR
TazbZzgNjgMAs7mL3NwI9qAIt/mRlbXHEhGTgoPu4Wckpg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:52 2024 by rpki-client on console-ams.rpki-client.org