Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/24d79d-1766-4045-9d24-6a0baeb2336e/1/GTJSKBSKpy072GSusb1DaWU9unI.roa
File: GTJSKBSKpy072GSusb1DaWU9unI.roa (raw, json)
Hash identifier: tlvcND/lB2wAH/iT4gaZ+Rt6eDexWSmTdEob/F0X3Ic=
Subject key identifier: 19:32:52:28:14:8A:A7:2D:3B:D8:64:AE:B1:BD:43:69:65:3D:BA:72
Certificate issuer: /CN=6f773eb3d30794d22d75cd872b91a3ba848842d7
Certificate serial: 03DA0A2A
Authority key identifier: 6F:77:3E:B3:D3:07:94:D2:2D:75:CD:87:2B:91:A3:BA:84:88:42:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3c-s9MHlNItdc2HK5GjuoSIQtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/24d79d-1766-4045-9d24-6a0baeb2336e/1/GTJSKBSKpy072GSusb1DaWU9unI.roa
Signing time: Sat 01 Jan 2022 15:07:26 +0000
ROA not before: Sat 01 Jan 2022 15:07:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210287
IP address blocks: 185.160.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64621098 (0x3da0a2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f773eb3d30794d22d75cd872b91a3ba848842d7
Validity
Not Before: Jan 1 15:07:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19325228148aa72d3bd864aeb1bd4369653dba72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:5d:29:2a:ae:ef:97:b8:7c:fe:47:f4:56:
aa:88:17:49:da:21:36:91:0d:1c:02:a9:f6:e7:a4:
40:d4:52:95:d3:c8:d3:a3:31:1e:56:3d:01:86:4b:
b3:12:c0:fa:1a:a9:e9:89:c3:ec:b8:3b:23:6c:ad:
4d:da:4b:ce:2e:62:93:74:70:a2:4c:53:c2:6e:f0:
83:78:d9:2e:3b:06:ec:28:9f:95:48:b1:b3:fd:14:
ea:a9:f2:53:c9:20:da:a6:a8:0b:62:28:60:1a:d3:
4a:4a:ef:3a:79:e1:3c:b8:24:6f:9c:83:dd:04:4d:
55:29:00:00:07:eb:f9:41:af:7b:e4:55:82:be:39:
74:c6:66:32:6e:1f:7d:1b:f0:21:65:12:76:50:60:
d8:ae:2a:6b:bd:1b:22:58:97:6f:11:54:63:e1:d8:
5f:35:73:70:9a:cb:df:71:99:f5:8f:d7:1e:4d:e6:
47:81:ef:79:08:2f:19:7d:66:b7:7e:22:e7:15:04:
f5:af:19:df:a7:66:97:26:34:44:25:ec:8a:57:ba:
b3:03:58:44:4c:d3:79:9d:b9:b6:81:27:9c:bc:8a:
07:17:9d:ab:59:59:07:e2:08:55:53:3d:ac:f8:3a:
4c:b6:18:18:dd:c9:f4:92:66:15:23:7b:b1:87:68:
bf:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:32:52:28:14:8A:A7:2D:3B:D8:64:AE:B1:BD:43:69:65:3D:BA:72
X509v3 Authority Key Identifier:
keyid:6F:77:3E:B3:D3:07:94:D2:2D:75:CD:87:2B:91:A3:BA:84:88:42:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3c-s9MHlNItdc2HK5GjuoSIQtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24d79d-1766-4045-9d24-6a0baeb2336e/1/GTJSKBSKpy072GSusb1DaWU9unI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24d79d-1766-4045-9d24-6a0baeb2336e/1/b3c-s9MHlNItdc2HK5GjuoSIQtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.48.0/22
Signature Algorithm: sha256WithRSAEncryption
66:c2:17:d2:64:4e:e5:fb:90:67:f0:ce:db:a2:6b:03:fd:8d:
ea:d5:e2:fc:0f:e1:86:8d:d5:27:9b:a2:c7:a4:ea:e9:ca:57:
8d:28:fa:c6:29:13:ce:38:08:14:ef:9c:f5:a8:17:5a:e0:10:
5f:90:b2:69:de:83:d8:98:a8:6d:f7:a4:92:fb:87:ee:29:87:
dd:61:b8:d3:ea:2d:50:8d:55:40:8e:1c:2d:ca:12:d7:0e:7b:
ba:89:f7:07:02:7b:f7:5e:91:50:9d:8c:0c:24:c4:02:a7:96:
84:28:2c:ab:0e:31:bf:23:29:7d:cc:a1:9b:7b:69:df:e1:a1:
f1:fe:7c:98:e3:ee:f0:06:94:e0:d4:44:aa:6c:0d:9c:af:a0:
96:80:f5:c3:95:7c:fb:65:66:f0:62:ba:77:72:f0:ed:37:a4:
9f:cc:27:e0:64:65:9d:93:5d:1b:07:1f:2b:7f:0a:86:4d:60:
86:c3:b4:93:c7:d4:b1:ba:3d:c7:58:de:4d:b4:cf:34:f5:21:
9a:3d:a8:6b:71:87:30:d4:19:3c:68:9c:18:c1:5c:76:b0:69:
83:fe:a2:10:fb:c6:d3:48:b0:98:60:2b:89:4f:2c:35:c7:e2:
2a:01:4d:2b:27:cd:b2:c5:e9:04:13:87:0a:7c:0d:a8:00:fb:
7c:ae:24:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9oKKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Zjc3M2ViM2QzMDc5NGQyMmQ3NWNkODcyYjkxYTNiYTg0ODg0MmQ3MB4XDTIyMDEw
MTE1MDcyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTkzMjUyMjgxNDhh
YTcyZDNiZDg2NGFlYjFiZDQzNjk2NTNkYmE3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALBPXSkqru+XuHz+R/RWqogXSdohNpENHAKp9uekQNRSldPI
06MxHlY9AYZLsxLA+hqp6YnD7Lg7I2ytTdpLzi5ik3RwokxTwm7wg3jZLjsG7Cif
lUixs/0U6qnyU8kg2qaoC2IoYBrTSkrvOnnhPLgkb5yD3QRNVSkAAAfr+UGve+RV
gr45dMZmMm4ffRvwIWUSdlBg2K4qa70bIliXbxFUY+HYXzVzcJrL33GZ9Y/XHk3m
R4HveQgvGX1mt34i5xUE9a8Z36dmlyY0RCXsile6swNYREzTeZ25toEnnLyKBxed
q1lZB+IIVVM9rPg6TLYYGN3J9JJmFSN7sYdov90CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQZMlIoFIqnLTvYZK6xvUNpZT26cjAfBgNVHSMEGDAWgBRvdz6z0weU0i11
zYcrkaO6hIhC1zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2IzYy1zOU1IbE5JdGRjMkhLNUdqdW9TSVF0Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGMvMjRkNzlkLTE3NjYtNDA0NS05ZDI0LTZhMGJhZWIyMzM2ZS8x
L0dUSlNLQlNLcHkwNzJHU3VzYjFEYVdVOXVuSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGMv
MjRkNzlkLTE3NjYtNDA0NS05ZDI0LTZhMGJhZWIyMzM2ZS8xL2IzYy1zOU1IbE5J
dGRjMkhLNUdqdW9TSVF0Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmgMDANBgkqhkiG9w0BAQsFAAOC
AQEAZsIX0mRO5fuQZ/DO26JrA/2N6tXi/A/hho3VJ5uix6Tq6cpXjSj6xikTzjgI
FO+c9agXWuAQX5Cyad6D2JiobfekkvuH7imH3WG40+otUI1VQI4cLcoS1w57uon3
BwJ7916RUJ2MDCTEAqeWhCgsqw4xvyMpfcyhm3tp3+Gh8f58mOPu8AaU4NREqmwN
nK+gloD1w5V8+2Vm8GK6d3Lw7Tekn8wn4GRlnZNdGwcfK38Khk1ghsO0k8fUsbo9
x1jeTbTPNPUhmj2oa3GHMNQZPGicGMFcdrBpg/6iEPvG00iwmGAriU8sNcfiKgFN
KyfNssXpBBOHCnwNqAD7fK4kHQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:17 2024 by rpki-client on console-fra.rpki-client.org