Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Glqk75-pcOpQrF_lppZ22m2CgGM.roa
File: Glqk75-pcOpQrF_lppZ22m2CgGM.roa (raw, json)
Hash identifier: yRkHKxlUGun/4zb2O7xPYhyqJdope25GkLWOhmGr5go=
Subject key identifier: 1A:5A:A4:EF:9F:A9:70:EA:50:AC:5F:E5:A6:96:76:DA:6D:82:80:63
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0184F15FD68DAE0477B8031016B0FEAC62B2
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Glqk75-pcOpQrF_lppZ22m2CgGM.roa
Signing time: Thu 08 Dec 2022 10:55:00 +0000
ROA not before: Thu 08 Dec 2022 10:55:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399471
IP address blocks: 45.13.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:5f:d6:8d:ae:04:77:b8:03:10:16:b0:fe:ac:62:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 8 10:55:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a5aa4ef9fa970ea50ac5fe5a69676da6d828063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1f:09:70:3c:f4:ae:85:59:87:e0:87:0f:29:
a7:46:ae:66:01:7a:be:5e:50:bc:fe:37:3a:fc:6c:
02:57:6a:42:f3:52:1c:df:86:18:28:94:e2:21:fb:
bf:3f:c6:2f:e2:eb:5c:7d:64:58:1b:d1:bf:cb:03:
8a:fc:95:71:e5:d0:79:58:5e:cc:0f:7d:4a:cf:2a:
d4:2b:81:41:0b:7d:a3:ee:43:71:8a:1e:f8:3e:2f:
9a:4f:aa:9b:68:84:a1:32:0a:a9:ba:ee:6c:b7:2e:
89:be:e8:66:95:56:80:5a:5b:46:8f:9f:62:eb:12:
4b:69:23:03:b3:92:8f:20:71:67:62:80:e7:6f:a0:
1d:58:77:ac:20:5f:83:d9:8a:ea:01:3d:11:a4:89:
f2:1b:96:dd:b3:da:a8:66:0c:6c:dd:ec:83:81:45:
9a:af:ac:88:88:7c:10:04:bc:59:56:c5:2d:c0:ac:
d2:44:e5:a4:29:26:49:01:5d:d2:3a:07:87:a1:98:
45:90:8c:74:bc:b0:6a:11:1c:d2:d2:3c:21:6c:a7:
0a:12:5e:82:a3:ce:20:ea:9a:56:38:a8:68:52:72:
30:0a:b3:d4:69:dd:3a:38:65:92:ee:54:ad:9b:e0:
35:e6:db:82:7f:6f:97:b0:99:33:7f:88:4e:21:73:
ce:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5A:A4:EF:9F:A9:70:EA:50:AC:5F:E5:A6:96:76:DA:6D:82:80:63
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Glqk75-pcOpQrF_lppZ22m2CgGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.188.0/24
Signature Algorithm: sha256WithRSAEncryption
80:29:5d:f6:ce:20:91:3b:ae:48:20:ed:07:3e:e0:7e:55:cd:
c5:57:66:a1:7b:86:f8:28:a2:63:1d:64:ee:c1:19:06:ea:62:
f4:bb:e5:d8:88:b8:34:42:df:dc:79:01:3c:76:23:ad:09:73:
a8:1c:53:68:0c:bf:6c:1d:5d:c5:90:a2:dd:b5:9a:48:08:24:
0f:f9:6d:f2:d9:7d:b9:fc:f5:3c:d9:cf:9c:5a:b3:79:7c:3f:
b0:ba:1b:26:68:29:28:42:78:9e:16:59:d5:01:f9:e9:26:b5:
9a:4d:00:00:19:90:93:a7:55:b1:88:96:e6:25:01:1d:c6:95:
ca:21:b5:a1:b6:7e:9e:88:cb:b4:ff:0f:97:9a:0d:50:1c:4c:
ed:07:fe:54:db:02:6d:75:10:5e:af:8d:bf:3a:f2:2d:42:db:
23:10:e7:d2:21:a2:4a:90:cc:b3:c6:22:58:ef:d2:9a:c9:49:
9f:d1:c2:85:b2:46:b7:c8:d6:d7:cb:1a:ff:9e:ff:f7:13:ce:
11:8a:31:f0:95:87:51:de:7f:91:c4:fa:40:71:46:de:13:bc:
0e:3e:83:96:86:c8:c0:66:48:93:71:c6:f9:69:79:c5:65:42:
15:a1:c8:63:cc:e1:78:52:51:c8:e8:7c:20:4a:0b:47:55:dd:
86:08:3b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org