Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/gTJTlLoG1HIWSetB9qDx8BVzWR0.roa
File: gTJTlLoG1HIWSetB9qDx8BVzWR0.roa (raw, json)
Hash identifier: Hh7sVMIaqyTc6iulc9jfL/ofqsh+Khx9CDPC9Li6cMg=
Subject key identifier: 81:32:53:94:BA:06:D4:72:16:49:EB:41:F6:A0:F1:F0:15:73:59:1D
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01848AE024F90CD33C492C781EE5EC886BF2
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/gTJTlLoG1HIWSetB9qDx8BVzWR0.roa
Signing time: Fri 18 Nov 2022 13:14:15 +0000
ROA not before: Fri 18 Nov 2022 13:14:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201256
IP address blocks: 185.92.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:e0:24:f9:0c:d3:3c:49:2c:78:1e:e5:ec:88:6b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Nov 18 13:14:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81325394ba06d4721649eb41f6a0f1f01573591d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:66:2a:62:36:dd:6e:83:18:d1:0c:67:62:89:
c3:8f:49:bb:84:10:40:43:cb:7d:a1:69:14:93:77:
e6:90:de:c5:cb:31:a9:8a:be:75:87:49:a8:03:48:
72:7d:7a:12:0a:c4:66:72:1a:d3:db:19:c1:fb:f7:
8b:df:d0:60:38:5b:07:6d:72:c7:b7:c9:09:cf:ee:
46:42:2f:fc:c5:d8:3a:99:1a:9e:9a:03:fc:a6:25:
bc:da:92:ca:4f:2b:0b:2a:2f:23:be:9e:9f:88:7e:
9c:8a:db:da:bf:85:ee:c9:8a:1f:3d:f9:a9:48:63:
c6:2d:0f:6c:55:24:1a:9b:bc:27:f7:c8:7a:26:c8:
28:3c:0f:e8:8f:0b:e1:7b:e5:ed:50:76:5c:27:da:
04:05:f5:36:36:e7:fc:13:25:93:05:03:67:2c:3d:
2e:15:e3:63:c5:58:77:d1:5b:09:8a:94:9b:e4:ec:
b0:9e:6f:4a:89:91:e9:c3:97:20:94:5a:48:6c:26:
65:0c:13:c4:c6:df:a1:4f:3d:0a:95:9d:1a:e3:c8:
ce:80:ab:f7:0c:16:74:b1:bd:e5:bd:86:17:fa:c7:
0f:47:05:a1:6e:6e:5e:a3:9f:a0:3f:e7:bc:6b:23:
96:a5:8c:1e:d3:9c:cc:e2:0a:50:39:e0:ae:64:0a:
3c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:32:53:94:BA:06:D4:72:16:49:EB:41:F6:A0:F1:F0:15:73:59:1D
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/gTJTlLoG1HIWSetB9qDx8BVzWR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.45.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:9b:a3:4d:b5:88:91:7f:e3:24:a9:e3:a0:94:d6:3b:26:71:
fd:37:17:09:ae:b1:a0:f4:76:13:31:ea:e1:4f:5f:61:36:97:
3c:0f:d0:d1:1b:5e:0c:d9:6d:fe:e8:9e:94:c7:8d:bc:79:7e:
6e:58:ea:bc:b7:18:69:55:2e:df:9f:30:85:fe:3b:d4:54:da:
ca:fb:e5:d8:e7:ec:b2:01:f8:a2:3e:59:03:c3:29:a5:8c:90:
55:13:2c:ec:2d:f0:d2:83:a4:89:ed:15:49:d9:46:0f:c3:2f:
50:7d:a0:00:fe:4a:cb:43:9e:56:12:8f:b4:b2:cd:10:59:b6:
cf:d5:87:08:92:ba:8d:06:c9:ca:ec:31:2a:f4:e8:38:24:6f:
e1:46:0a:b2:17:25:4d:05:ea:49:b8:5a:0c:48:74:f4:4b:bd:
d2:68:41:10:ba:e2:70:2e:31:40:52:d6:65:cb:51:df:d5:70:
b8:a3:a8:66:83:3d:d4:50:96:e8:c3:62:75:7c:8b:32:5f:b1:
f5:55:53:e8:6a:3e:58:5c:5b:b5:16:56:f5:54:98:8f:5a:0e:
74:2c:4c:a7:b9:25:d5:6f:2e:b2:1a:42:20:9e:b4:36:79:ac:
52:30:cb:8c:84:3c:93:bd:2c:d0:9f:e2:7e:c7:f0:d9:90:0d:
29:fe:a4:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSK4CT5DNM8SSx4HuXsiGvyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjIxMTE4MTMxNDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTMyNTM5NGJhMDZkNDcyMTY0OWViNDFmNmEwZjFmMDE1NzM1OTFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGYqYjbdboMY0QxnYonDj0m7hBBA
Q8t9oWkUk3fmkN7FyzGpir51h0moA0hyfXoSCsRmchrT2xnB+/eL39BgOFsHbXLH
t8kJz+5GQi/8xdg6mRqemgP8piW82pLKTysLKi8jvp6fiH6citvav4XuyYofPfmp
SGPGLQ9sVSQam7wn98h6JsgoPA/ojwvhe+XtUHZcJ9oEBfU2Nuf8EyWTBQNnLD0u
FeNjxVh30VsJipSb5Oywnm9KiZHpw5cglFpIbCZlDBPExt+hTz0KlZ0a48jOgKv3
DBZ0sb3lvYYX+scPRwWhbm5eo5+gP+e8ayOWpYwe05zM4gpQOeCuZAo8HQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIEyU5S6BtRyFknrQfag8fAVc1kdMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvZ1RKVGxMb0cxSElXU2V0QjlxRHg4QlZ6V1IwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVwtMA0G
CSqGSIb3DQEBCwUAA4IBAQCtm6NNtYiRf+MkqeOglNY7JnH9NxcJrrGg9HYTMerh
T19hNpc8D9DRG14M2W3+6J6Ux428eX5uWOq8txhpVS7fnzCF/jvUVNrK++XY5+yy
AfiiPlkDwymljJBVEyzsLfDSg6SJ7RVJ2UYPwy9QfaAA/krLQ55WEo+0ss0QWbbP
1YcIkrqNBsnK7DEq9Og4JG/hRgqyFyVNBepJuFoMSHT0S73SaEEQuuJwLjFAUtZl
y1Hf1XC4o6hmgz3UUJbow2J1fIsyX7H1VVPoaj5YXFu1Flb1VJiPWg50LEynuSXV
by6yGkIgnrQ2eaxSMMuMhDyTvSzQn+J+x/DZkA0p/qQT
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org