Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/_GoxVJ3GSfUIxx42zJuZbxy1Aqw.roa
File: _GoxVJ3GSfUIxx42zJuZbxy1Aqw.roa (raw, json)
Hash identifier: u2PdptRm5lweqqH2zpIzDp+u3Q4ciev2lshbYtZcdzI=
Subject key identifier: FC:6A:31:54:9D:C6:49:F5:08:C7:1E:36:CC:9B:99:6F:1C:B5:02:AC
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 018770589DA90140F3AB7317279BE6E780DE
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/_GoxVJ3GSfUIxx42zJuZbxy1Aqw.roa
Signing time: Tue 11 Apr 2023 12:44:28 +0000
ROA not before: Tue 11 Apr 2023 12:44:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199058
IP address blocks: 2.59.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:58:9d:a9:01:40:f3:ab:73:17:27:9b:e6:e7:80:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Apr 11 12:44:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc6a31549dc649f508c71e36cc9b996f1cb502ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:61:8d:b8:e3:59:19:3f:56:7d:02:89:05:0f:
ff:5d:57:6b:24:52:be:23:c2:5e:07:6d:3f:d5:3b:
54:7c:78:c8:20:64:65:1f:94:5f:2f:36:4d:82:4f:
e2:61:fd:b3:07:0a:fe:06:28:93:04:83:bf:85:18:
1f:4c:89:d9:3b:4b:57:52:68:3f:e1:f1:7e:ce:1e:
ac:58:7b:c5:3f:f9:83:55:41:a3:1b:c9:78:34:1f:
c6:40:41:18:67:05:f5:0c:24:b9:af:3d:ea:69:6b:
9e:7c:ef:96:88:1b:c8:d3:ea:0c:7d:c5:82:c8:3e:
c3:cf:7c:d6:e1:ca:e5:17:2e:37:65:6b:de:6c:33:
6d:6d:9f:b7:39:8e:15:5e:27:12:7c:ae:28:c5:13:
e4:3d:06:d0:dc:52:59:7b:52:72:80:c0:77:7e:20:
77:a1:4d:4c:e9:b4:2f:25:82:f2:47:85:3d:d8:92:
6d:e6:51:65:e1:1f:10:ed:30:19:25:2c:17:79:64:
8e:73:3d:40:ca:99:a5:69:b3:93:bd:e3:8d:6d:3f:
45:b8:97:59:9a:9d:7e:3d:78:4b:69:be:aa:91:e8:
bd:c6:04:a7:62:89:89:50:02:08:6b:ec:a5:6e:f6:
26:43:35:11:82:dd:be:62:a2:ae:5e:49:69:37:1c:
61:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:6A:31:54:9D:C6:49:F5:08:C7:1E:36:CC:9B:99:6F:1C:B5:02:AC
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/_GoxVJ3GSfUIxx42zJuZbxy1Aqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.183.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:08:16:11:d3:94:b7:a8:13:bb:6d:08:33:64:5a:b9:1c:5a:
f7:6b:38:9d:95:c3:6c:de:0d:22:b6:94:6f:0a:d3:f4:cc:e3:
64:e6:45:f1:66:64:6b:d7:0e:cd:b3:bd:15:41:38:1a:cb:f1:
12:ef:e2:80:ce:61:a4:80:d0:72:50:d9:c2:e8:d2:6c:55:8e:
1a:b6:3c:74:20:b1:fd:b1:d8:07:ab:35:25:8b:0a:35:66:18:
85:56:b2:c8:f3:0e:70:eb:ee:7f:28:a4:6b:17:19:5c:cc:eb:
c8:34:82:c8:e0:c0:d0:5e:d5:33:ff:d5:73:96:d8:1b:5a:1a:
79:9f:44:fb:58:10:26:f7:46:10:6d:4e:73:6a:ff:ba:ee:68:
f0:4b:08:f3:7b:43:2d:98:72:06:9d:0d:db:f6:44:78:45:26:
df:75:04:4b:8b:b2:4c:10:fc:d2:39:64:f2:84:25:58:e4:ac:
f1:a9:ac:68:d9:a8:99:ec:0b:c1:a3:44:5f:d0:67:7f:46:58:
ce:b4:54:76:48:e8:d6:3b:20:ee:c1:f9:b0:9e:7f:34:75:b6:
7e:3b:16:ca:65:23:1e:41:b8:db:23:c8:e4:85:3a:14:53:c4:
0a:69:f5:56:26:96:eb:4b:3d:21:11:20:61:ae:b3:53:7a:d5:
1a:99:3e:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdwWJ2pAUDzq3MXJ5vm54DeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2
OTczY2YwHhcNMjMwNDExMTI0NDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzZhMzE1NDlkYzY0OWY1MDhjNzFlMzZjYzliOTk2ZjFjYjUwMmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2GNuONZGT9WfQKJBQ//XVdrJFK+
I8JeB20/1TtUfHjIIGRlH5RfLzZNgk/iYf2zBwr+BiiTBIO/hRgfTInZO0tXUmg/
4fF+zh6sWHvFP/mDVUGjG8l4NB/GQEEYZwX1DCS5rz3qaWuefO+WiBvI0+oMfcWC
yD7Dz3zW4crlFy43ZWvebDNtbZ+3OY4VXicSfK4oxRPkPQbQ3FJZe1JygMB3fiB3
oU1M6bQvJYLyR4U92JJt5lFl4R8Q7TAZJSwXeWSOcz1AypmlabOTveONbT9FuJdZ
mp1+PXhLab6qkei9xgSnYomJUAIIa+ylbvYmQzURgt2+YqKuXklpNxxh0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPxqMVSdxkn1CMceNsybmW8ctQKsMB8GA1UdIwQY
MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It
MzQwZDYyNWM2ZGJhLzEvX0dveFZKM0dTZlVJeHg0MnpKdVpieHkxQXF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh
LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAju3MA0G
CSqGSIb3DQEBCwUAA4IBAQC6CBYR05S3qBO7bQgzZFq5HFr3azidlcNs3g0itpRv
CtP0zONk5kXxZmRr1w7Ns70VQTgay/ES7+KAzmGkgNByUNnC6NJsVY4atjx0ILH9
sdgHqzUliwo1ZhiFVrLI8w5w6+5/KKRrFxlczOvINILI4MDQXtUz/9VzltgbWhp5
n0T7WBAm90YQbU5zav+67mjwSwjze0MtmHIGnQ3b9kR4RSbfdQRLi7JMEPzSOWTy
hCVY5Kzxqaxo2aiZ7AvBo0Rf0Gd/RljOtFR2SOjWOyDuwfmwnn80dbZ+OxbKZSMe
QbjbI8jkhToUU8QKafVWJpbrSz0hESBhrrNTetUamT7x
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:58:50 2025 by rpki-client