Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/GIvAds3puHpVIrw_Cw3ye97IUOI.roa
File: GIvAds3puHpVIrw_Cw3ye97IUOI.roa (raw, json)
Hash identifier: 5hj5/KvwFJjkrjC6LfOeMFsiMm/vBDkee1HzzDvs1qk=
Subject key identifier: 18:8B:C0:76:CD:E9:B8:7A:55:22:BC:3F:0B:0D:F2:7B:DE:C8:50:E2
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182498F9817F94276B070123184226CEFCF
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/GIvAds3puHpVIrw_Cw3ye97IUOI.roa
Signing time: Fri 29 Jul 2022 10:45:23 +0000
ROA not before: Fri 29 Jul 2022 10:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47381
IP address blocks: 45.88.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:49:8f:98:17:f9:42:76:b0:70:12:31:84:22:6c:ef:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 29 10:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=188bc076cde9b87a5522bc3f0b0df27bdec850e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0a:31:66:2b:f3:53:4d:e9:94:fb:05:2f:50:
e9:44:bb:56:61:04:8c:ba:6d:76:3e:51:f4:d8:c8:
9f:9d:a1:ba:84:c3:75:d3:00:35:61:96:db:1f:47:
ac:0e:9d:1f:b3:67:9f:0f:0e:ac:f8:73:41:0c:ad:
85:46:e3:0c:44:7b:08:6d:15:91:87:0e:c0:a4:53:
a6:68:e9:0b:c4:54:c6:d7:c3:28:05:c3:ea:54:cc:
69:be:74:2e:ab:85:86:b1:7a:11:ad:ff:1d:d0:bc:
a0:f0:e2:d5:68:f2:bf:91:2c:0c:73:6a:4c:22:c7:
83:8e:a3:64:1b:f0:6c:7f:52:7b:5c:51:fe:26:21:
49:87:d1:e3:f0:d4:8f:fc:ad:f7:0f:17:65:50:af:
64:18:26:61:50:28:94:1c:4e:cf:d5:07:89:6f:cb:
12:00:29:ec:4f:24:1f:60:ac:a8:f0:88:da:8e:8a:
dd:09:c0:dd:21:04:a5:72:3e:e5:92:95:9d:4a:34:
72:a5:cf:30:b2:c5:aa:17:07:67:e4:f2:51:68:46:
5a:6b:12:e7:d4:78:0d:c3:04:00:dc:c5:50:e0:15:
69:d4:7f:7a:88:38:80:ef:a4:ef:b0:02:15:03:a4:
2a:b4:e6:70:3e:c1:5f:f9:92:8c:ba:f2:57:ff:7a:
83:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8B:C0:76:CD:E9:B8:7A:55:22:BC:3F:0B:0D:F2:7B:DE:C8:50:E2
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/GIvAds3puHpVIrw_Cw3ye97IUOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.93.0/24
Signature Algorithm: sha256WithRSAEncryption
21:0f:db:f9:ae:6d:37:a0:16:2f:8c:5a:b8:f9:67:31:f4:3a:
0d:65:a5:bd:6c:73:54:82:77:64:71:62:54:a5:1a:65:48:08:
a4:aa:af:cb:f3:2f:fa:3e:9c:40:ad:1e:df:38:9d:64:c9:6f:
3f:40:30:3b:90:2b:11:5f:0a:82:03:8f:d4:a5:14:1b:a5:f5:
7b:b3:0f:5c:f0:08:b6:e7:dd:12:33:70:81:db:1d:e8:2a:2d:
53:e4:47:45:ae:04:e3:e0:46:19:ba:14:de:16:ff:c7:98:8e:
58:80:dd:01:ad:08:a2:f5:e9:88:cc:4b:78:38:9e:e1:e3:9e:
dc:37:9b:f8:09:29:4a:1d:58:6f:bb:6d:34:0d:e7:3c:8e:8f:
9e:2a:11:65:69:ed:94:6d:dc:95:89:b6:04:c9:2e:ad:1f:8d:
ba:6a:46:04:9d:d9:8f:c0:43:30:69:ce:59:a7:e2:d0:58:1a:
47:69:4a:ef:79:26:5c:94:a4:5a:57:b7:aa:8c:7b:88:cd:6e:
58:e0:6f:78:24:f2:28:9b:ae:d9:41:ac:26:ab:dd:ff:23:09:
7c:22:e0:98:68:ac:3e:d6:dc:6e:88:3f:ba:b9:37:75:64:db:
70:f3:8a:f4:43:6e:58:2d:a9:4b:a2:9c:81:45:6e:b8:e8:72:
60:a9:92:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJJj5gX+UJ2sHASMYQibO/PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjIwNzI5MTA0NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODhiYzA3NmNkZTliODdhNTUyMmJjM2YwYjBkZjI3YmRlYzg1MGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgoxZivzU03plPsFL1DpRLtWYQSM
um12PlH02MifnaG6hMN10wA1YZbbH0esDp0fs2efDw6s+HNBDK2FRuMMRHsIbRWR
hw7ApFOmaOkLxFTG18MoBcPqVMxpvnQuq4WGsXoRrf8d0Lyg8OLVaPK/kSwMc2pM
IseDjqNkG/Bsf1J7XFH+JiFJh9Hj8NSP/K33DxdlUK9kGCZhUCiUHE7P1QeJb8sS
ACnsTyQfYKyo8IjajordCcDdIQSlcj7lkpWdSjRypc8wssWqFwdn5PJRaEZaaxLn
1HgNwwQA3MVQ4BVp1H96iDiA76TvsAIVA6QqtOZwPsFf+ZKMuvJX/3qD1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBiLwHbN6bh6VSK8PwsN8nveyFDiMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvR0l2QWRzM3B1SHBWSXJ3X0N3M3llOTdJVU9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVhdMA0G
CSqGSIb3DQEBCwUAA4IBAQAhD9v5rm03oBYvjFq4+Wcx9DoNZaW9bHNUgndkcWJU
pRplSAikqq/L8y/6PpxArR7fOJ1kyW8/QDA7kCsRXwqCA4/UpRQbpfV7sw9c8Ai2
590SM3CB2x3oKi1T5EdFrgTj4EYZuhTeFv/HmI5YgN0BrQii9emIzEt4OJ7h457c
N5v4CSlKHVhvu200Dec8jo+eKhFlae2UbdyVibYEyS6tH426akYEndmPwEMwac5Z
p+LQWBpHaUrveSZclKRaV7eqjHuIzW5Y4G94JPIom67ZQawmq93/Iwl8IuCYaKw+
1txuiD+6uTd1ZNtw84r0Q25YLalLopyBRW646HJgqZJb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:51 2023 by rpki-client on console-ams.rpki-client.org