Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/GlD--jokvLLmvsQ7zI2vEutakZU.roa
File: GlD--jokvLLmvsQ7zI2vEutakZU.roa (raw, json)
Hash identifier: ZwmXzGnAFc9obn3g/61loBos1oPg2Sc6DsBB84aOElI=
Subject key identifier: 1A:50:FE:FA:3A:24:BC:B2:E6:BE:C4:3B:CC:8D:AF:12:EB:5A:91:95
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C5E07009ED389E7F166ABF2FC0B98D8A5
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/GlD--jokvLLmvsQ7zI2vEutakZU.roa
Signing time: Tue 12 Dec 2023 12:36:06 +0000
ROA not before: Tue 12 Dec 2023 12:36:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 92.114.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:07:00:9e:d3:89:e7:f1:66:ab:f2:fc:0b:98:d8:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 12 12:36:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a50fefa3a24bcb2e6bec43bcc8daf12eb5a9195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f3:b5:42:f0:c5:22:ff:3d:95:40:4c:dd:42:
88:c0:26:44:64:6f:68:9a:05:fe:81:6a:d5:c8:b6:
a2:b9:85:d4:84:85:54:fb:17:3b:c5:89:f0:db:26:
a8:9b:43:64:c7:0e:13:6a:a5:1d:9d:6e:57:91:98:
d1:1a:69:a7:ee:41:b6:98:c1:04:75:f4:f5:0a:40:
23:08:eb:1c:d9:0d:e2:59:36:d9:34:a6:54:09:32:
27:fe:d6:6e:90:19:8e:f4:1a:67:65:9e:65:65:79:
44:1c:d3:51:8f:57:f5:b2:8e:d8:fd:cb:99:fe:41:
02:10:5c:15:0a:90:ca:56:26:18:a3:0a:ba:01:85:
3f:69:08:5a:5a:2b:0c:ed:f6:5f:27:25:4d:f7:27:
f3:91:c1:21:e5:79:ba:63:e8:78:1c:55:36:03:bb:
45:5b:dd:9d:49:ce:68:41:cb:6b:4d:45:cb:75:bd:
06:ed:73:74:9c:05:8b:14:34:1b:c5:36:21:b7:c3:
90:d2:4f:fb:5f:d5:4a:94:09:13:fa:82:7e:bd:1b:
ae:8a:ca:73:0a:f4:ab:5f:51:1a:dc:db:e9:9d:68:
5c:92:99:c9:ac:d7:cd:46:8d:83:d5:ed:27:e6:dc:
be:dd:a4:c6:40:13:63:8e:01:09:25:42:ab:50:9c:
6d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:50:FE:FA:3A:24:BC:B2:E6:BE:C4:3B:CC:8D:AF:12:EB:5A:91:95
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/GlD--jokvLLmvsQ7zI2vEutakZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.114.93.0/24
Signature Algorithm: sha256WithRSAEncryption
68:e8:cd:72:13:85:02:d5:9d:dc:f5:0c:d4:37:53:30:f9:55:
4c:0e:c9:2b:a0:2a:1a:62:f5:5f:0e:f6:87:a5:3d:42:a7:a5:
1b:12:70:59:b2:2f:d5:40:dc:cf:08:f1:c0:35:98:a4:be:02:
e0:89:cc:20:8e:7b:b9:8e:b1:c2:ef:2d:fd:61:8b:cd:f9:69:
14:b7:6f:0c:9d:7b:23:bc:ba:8a:af:62:e2:42:58:b3:c6:fd:
31:40:6f:d7:5b:78:76:f4:9e:5e:10:45:c3:b5:f5:25:ae:0b:
46:68:48:69:80:d4:fe:18:bc:5b:8c:f4:73:46:62:b5:44:73:
de:18:8c:fc:3b:ce:31:09:3b:71:54:62:3c:ab:1c:b5:34:4f:
f0:f5:ad:b3:d8:62:84:c8:7f:f3:7b:eb:20:4f:73:a7:26:c0:
53:45:aa:df:aa:32:8c:f6:2f:02:5a:d6:f0:1e:fd:68:ba:dc:
ef:f0:92:3c:86:bb:b1:2c:90:2b:38:27:26:73:fc:e1:6a:49:
9c:3d:c7:10:54:b3:2e:05:47:a3:e2:82:e6:12:e8:9c:47:82:
d9:54:c0:ee:59:4b:f9:f8:98:63:bb:29:e4:c2:38:d4:21:fb:
cd:11:5a:5e:80:67:53:3b:29:97:a9:92:d7:a8:77:db:dc:24:
89:ad:89:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxeBwCe04nn8War8vwLmNilMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMxMjEyMTIzNjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTUwZmVmYTNhMjRiY2IyZTZiZWM0M2JjYzhkYWYxMmViNWE5MTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5fO1QvDFIv89lUBM3UKIwCZEZG9o
mgX+gWrVyLaiuYXUhIVU+xc7xYnw2yaom0Nkxw4TaqUdnW5XkZjRGmmn7kG2mMEE
dfT1CkAjCOsc2Q3iWTbZNKZUCTIn/tZukBmO9BpnZZ5lZXlEHNNRj1f1so7Y/cuZ
/kECEFwVCpDKViYYowq6AYU/aQhaWisM7fZfJyVN9yfzkcEh5Xm6Y+h4HFU2A7tF
W92dSc5oQctrTUXLdb0G7XN0nAWLFDQbxTYht8OQ0k/7X9VKlAkT+oJ+vRuuispz
CvSrX1Ea3NvpnWhckpnJrNfNRo2D1e0n5ty+3aTGQBNjjgEJJUKrUJxteQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBpQ/vo6JLyy5r7EO8yNrxLrWpGVMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvR2xELS1qb2t2TExtdnNRN3pJMnZFdXRha1pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXHJdMA0G
CSqGSIb3DQEBCwUAA4IBAQBo6M1yE4UC1Z3c9QzUN1Mw+VVMDskroCoaYvVfDvaH
pT1Cp6UbEnBZsi/VQNzPCPHANZikvgLgicwgjnu5jrHC7y39YYvN+WkUt28MnXsj
vLqKr2LiQlizxv0xQG/XW3h29J5eEEXDtfUlrgtGaEhpgNT+GLxbjPRzRmK1RHPe
GIz8O84xCTtxVGI8qxy1NE/w9a2z2GKEyH/ze+sgT3OnJsBTRarfqjKM9i8CWtbw
Hv1outzv8JI8hruxLJArOCcmc/zhakmcPccQVLMuBUej4oLmEuicR4LZVMDuWUv5
+JhjuynkwjjUIfvNEVpegGdTOymXqZLXqHfb3CSJrYle
-----END CERTIFICATE-----
Generated at Sun Jun 15 07:39:05 2025 by rpki-client