Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/gc0IxZncXZ75FAmzpPbjlsi5vls.roa
File: gc0IxZncXZ75FAmzpPbjlsi5vls.roa (raw, json)
Hash identifier: GKS3gmPaQPbEwFDnjmOgOZU+hkF/yHeKZ8mf+qxqTuI=
Subject key identifier: 81:CD:08:C5:99:DC:5D:9E:F9:14:09:B3:A4:F6:E3:96:C8:B9:BE:5B
Certificate issuer: /CN=325a8b688deadbb91efbe0772308bac9f304a533
Certificate serial: 0515DFA8
Authority key identifier: 32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/gc0IxZncXZ75FAmzpPbjlsi5vls.roa
Signing time: Sat 01 Jan 2022 04:02:18 +0000
ROA not before: Sat 01 Jan 2022 04:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213158
IP address blocks: 91.205.231.0/24 maxlen: 24
2a0b:6640::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85319592 (0x515dfa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=325a8b688deadbb91efbe0772308bac9f304a533
Validity
Not Before: Jan 1 04:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81cd08c599dc5d9ef91409b3a4f6e396c8b9be5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7b:90:57:8b:68:92:f3:7b:fe:7f:81:75:19:
ce:3d:8b:64:07:54:cf:2d:58:72:e4:0d:17:90:85:
16:e0:f4:dd:ca:9b:47:78:a6:fa:fe:2f:59:c5:cb:
de:34:87:95:a9:7e:ae:3f:93:19:d3:5f:6a:f2:45:
d2:e0:4a:5a:21:f8:a4:41:47:67:b2:c2:31:aa:27:
8c:eb:72:f2:f0:0f:00:63:ff:58:e1:37:e2:6b:ba:
59:ec:61:18:9d:8a:57:f3:3a:0a:2d:7d:7c:e3:12:
72:c6:19:54:0b:71:44:f4:7d:99:21:7b:22:54:6a:
33:1a:17:1c:7c:54:ba:2b:5f:83:72:b6:f3:e1:b4:
2e:6c:21:41:f9:57:63:4d:51:51:a5:44:e0:ff:93:
16:69:f2:94:18:dc:a4:4a:3b:27:d3:16:e0:f3:eb:
93:5f:88:a9:55:c7:3e:79:4e:48:79:c0:5c:d6:38:
69:10:79:f6:6a:bb:fc:4b:10:ab:e6:cf:1b:10:bc:
aa:2d:00:30:5c:e6:b3:6d:b4:0b:5b:ef:3e:9e:05:
bb:30:61:1c:86:55:6a:18:4d:7a:73:d7:10:04:f0:
33:bb:a8:42:44:ed:b9:22:53:6b:18:b1:72:70:49:
7c:3e:14:b3:1b:a1:71:b8:56:01:65:1e:2e:a8:f3:
56:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CD:08:C5:99:DC:5D:9E:F9:14:09:B3:A4:F6:E3:96:C8:B9:BE:5B
X509v3 Authority Key Identifier:
keyid:32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/gc0IxZncXZ75FAmzpPbjlsi5vls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/MlqLaI3q27ke--B3Iwi6yfMEpTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.231.0/24
IPv6:
2a0b:6640::/29
Signature Algorithm: sha256WithRSAEncryption
9a:8c:6c:42:fe:4a:44:65:60:c1:e6:aa:eb:d2:fb:f3:82:2b:
2f:01:e2:6c:7b:f0:92:cd:1d:a4:99:54:6c:7e:cf:c5:0c:7b:
d8:e3:7c:56:b2:03:71:5a:f3:f7:4b:5d:36:ff:1d:23:28:a9:
87:07:09:cc:17:77:c3:57:c7:51:1e:c2:73:7e:fb:4d:c6:3b:
4b:2c:a5:c0:b5:9b:34:ad:5b:88:da:31:2b:8e:cf:57:5c:ca:
d8:ca:62:15:f0:0c:b0:c6:fe:50:7e:3c:c8:17:d6:15:59:fe:
93:6b:a1:c1:ce:3f:83:e2:51:60:b5:5e:da:27:aa:ff:dc:60:
29:71:d8:84:3b:01:2c:be:a1:67:b8:ac:fe:b7:9d:5e:c1:05:
88:97:48:16:13:e4:d7:1d:49:32:87:75:28:51:43:35:fd:c1:
4c:b6:c9:56:e7:6c:98:f3:45:94:6b:2d:e4:38:03:79:67:57:
7e:e1:f1:37:0c:51:ce:9a:31:7a:ab:ce:e3:ed:bc:02:02:5e:
55:9c:cc:26:fa:dd:3a:2e:3f:9b:4a:df:d9:8c:cb:92:09:31:
3d:89:6e:fa:9a:c5:86:42:e5:d3:32:4d:a8:3a:12:4c:b4:fd:
e4:66:6f:a5:86:f1:a7:ce:2b:1e:8e:7d:91:8b:02:ff:e9:29:
63:97:be:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:48 2024 by rpki-client on console-ams.rpki-client.org