Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/GlYZddn8F7TPcCCwTcViYPBrSxE.roa
File: GlYZddn8F7TPcCCwTcViYPBrSxE.roa (raw, json)
Hash identifier: 8grrQaGIhJn9QiWFl+jgg/dvfWtaQjSTgfopKjyIh+U=
Subject key identifier: 1A:56:19:75:D9:FC:17:B4:CF:70:20:B0:4D:C5:62:60:F0:6B:4B:11
Certificate issuer: /CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Certificate serial: 018A478D69D6130C5776EC05A059F2FFED6F
Authority key identifier: 8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/GlYZddn8F7TPcCCwTcViYPBrSxE.roa
Signing time: Wed 30 Aug 2023 17:46:04 +0000
ROA not before: Wed 30 Aug 2023 17:46:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39130
IP address blocks: 5.102.36.0/24 maxlen: 24
5.102.36.0/23 maxlen: 23
5.102.37.0/24 maxlen: 24
5.102.38.0/24 maxlen: 24
5.102.39.0/24 maxlen: 24
195.222.124.0/24 maxlen: 24
195.222.124.0/22 maxlen: 22
195.222.125.0/24 maxlen: 24
195.222.126.0/24 maxlen: 24
195.222.127.0/24 maxlen: 24
195.5.124.0/24 maxlen: 24
195.5.124.0/23 maxlen: 24
2a10:d80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:8d:69:d6:13:0c:57:76:ec:05:a0:59:f2:ff:ed:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Validity
Not Before: Aug 30 17:46:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a561975d9fc17b4cf7020b04dc56260f06b4b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c0:af:15:13:45:08:3d:64:b8:b0:d1:48:e2:
46:84:86:ec:ed:16:db:1c:f9:7f:d0:55:ae:10:b3:
37:4f:5c:45:8e:58:fe:90:96:3c:06:5c:98:94:fa:
17:4a:a5:41:40:e6:dc:aa:e0:e1:73:64:2f:0f:c9:
8b:f3:68:92:e5:91:b5:7b:ab:29:db:14:65:12:25:
ad:4a:52:6c:f9:46:33:ee:be:c8:df:e6:07:bc:8c:
76:56:ff:f4:c9:3f:b6:f0:a6:52:7f:87:c7:29:8a:
8a:bb:f1:13:96:2b:eb:71:f7:c9:73:6d:28:97:ca:
9c:02:0b:26:9e:a3:4c:07:0b:9f:83:6f:6b:f3:cd:
e3:8b:6f:fe:46:53:f6:43:d9:60:a6:47:50:44:27:
25:25:49:72:f0:d5:5b:48:36:b7:46:ba:de:0b:9e:
fe:72:b4:1b:08:d0:03:be:f1:43:ef:6d:72:22:c3:
4a:0c:7a:c6:e2:fd:b7:3c:33:2b:0c:6f:15:d4:87:
00:43:43:dd:85:1b:70:1f:3c:26:d3:8d:29:83:8c:
0b:ea:7d:9d:2f:87:9a:97:27:87:75:f6:e7:79:ff:
8f:47:d0:29:74:04:89:28:f2:e4:1f:d1:bd:83:5e:
95:bf:30:b2:90:b9:94:a6:a2:1a:1b:10:ee:d9:30:
cf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:56:19:75:D9:FC:17:B4:CF:70:20:B0:4D:C5:62:60:F0:6B:4B:11
X509v3 Authority Key Identifier:
keyid:8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/GlYZddn8F7TPcCCwTcViYPBrSxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.36.0/22
195.5.124.0/23
195.222.124.0/22
IPv6:
2a10:d80::/29
Signature Algorithm: sha256WithRSAEncryption
43:2b:e1:cf:8a:8b:f7:27:7c:0f:77:80:72:80:05:ac:6b:5b:
a2:df:76:f1:75:6c:2a:12:99:8f:c5:a1:0e:f0:3a:39:24:47:
be:50:61:9b:97:ee:54:66:3e:d0:78:23:e0:93:66:f8:be:a6:
4b:a9:13:0f:2e:68:ba:cc:c4:31:bc:31:d3:e2:74:48:d0:19:
23:b1:5c:5a:16:c5:9e:18:8f:35:f1:b1:e1:90:5e:dd:ac:ea:
55:35:a7:56:e2:2d:75:65:a7:25:d6:7a:cd:e7:a8:03:c6:83:
5f:07:b0:07:99:5f:72:54:a6:c5:a7:a8:1f:93:3c:e5:53:e1:
a1:0a:b9:6c:ae:0c:f4:3b:fb:98:e9:de:cf:23:7a:75:ca:26:
97:b8:6e:38:7b:88:9f:cc:8d:31:85:36:2b:34:8b:ad:cf:7e:
b3:d3:bf:af:9b:6a:65:f9:00:47:3e:1a:74:22:0c:b8:79:1d:
82:e5:09:e6:be:ae:c0:e7:30:f0:39:e8:aa:c7:32:64:eb:81:
c3:db:4f:fd:da:03:47:2b:66:2c:70:7c:97:87:92:66:4f:ac:
ce:69:3e:a0:26:a1:6a:70:fd:a7:ce:49:c1:32:a0:84:69:15:
eb:05:69:5a:ac:02:f2:6a:42:29:5c:71:a7:84:21:cb:f3:89:
1e:81:33:aa
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYpHjWnWEwxXduwFoFny/+1vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZGY3NmM1NGI5ZTY5MzVjMzBhOWI0YzliYTkzMDlhYzQ3
MGVjMDIwHhcNMjMwODMwMTc0NjA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTU2MTk3NWQ5ZmMxN2I0Y2Y3MDIwYjA0ZGM1NjI2MGYwNmI0YjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMCvFRNFCD1kuLDRSOJGhIbs7Rbb
HPl/0FWuELM3T1xFjlj+kJY8BlyYlPoXSqVBQObcquDhc2QvD8mL82iS5ZG1e6sp
2xRlEiWtSlJs+UYz7r7I3+YHvIx2Vv/0yT+28KZSf4fHKYqKu/ETlivrcffJc20o
l8qcAgsmnqNMBwufg29r883ji2/+RlP2Q9lgpkdQRCclJUly8NVbSDa3RrreC57+
crQbCNADvvFD721yIsNKDHrG4v23PDMrDG8V1IcAQ0PdhRtwHzwm040pg4wL6n2d
L4ealyeHdfbnef+PR9ApdASJKPLkH9G9g16VvzCykLmUpqIaGxDu2TDP9QIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFBpWGXXZ/Be0z3AgsE3FYmDwa0sRMB8GA1UdIwQY
MBaAFIvfdsVLnmk1wwqbTJupMJrEcOwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTk5MnhVdWVhVFhEQ3B0TW02a3dtc1J3N0FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yMTUxOWUtYjhkYy00MjQwLWFhNzgt
OGQyMTg2NjUwMjdkLzEvR2xZWmRkbjhGN1RQY0NDd1RjVmlZUEJyU3hFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yMTUxOWUtYjhkYy00MjQwLWFhNzgtOGQyMTg2NjUwMjdk
LzEvaTk5MnhVdWVhVFhEQ3B0TW02a3dtc1J3N0FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCBWYkAwQB
wwV8AwQCw958MA0EAgACMAcDBQMqEA2AMA0GCSqGSIb3DQEBCwUAA4IBAQBDK+HP
iov3J3wPd4BygAWsa1ui33bxdWwqEpmPxaEO8Do5JEe+UGGbl+5UZj7QeCPgk2b4
vqZLqRMPLmi6zMQxvDHT4nRI0BkjsVxaFsWeGI818bHhkF7drOpVNadW4i11Zacl
1nrN56gDxoNfB7AHmV9yVKbFp6gfkzzlU+GhCrlsrgz0O/uY6d7PI3p1yiaXuG44
e4ifzI0xhTYrNIutz36z07+vm2pl+QBHPhp0Igy4eR2C5Qnmvq7A5zDwOeiqxzJk
64HD20/92gNHK2YscHyXh5JmT6zOaT6gJqFqcP2nzknBMqCEaRXrBWlarALyakIp
XHGnhCHL84kegTOq
-----END CERTIFICATE-----
Generated at Sun Jun 15 19:09:33 2025 by rpki-client