Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/GpZZ3eb51QolpMZIguMNqjvp5zM.roa
File: GpZZ3eb51QolpMZIguMNqjvp5zM.roa (raw, json)
Hash identifier: YKq8+LwrLsdJw5QN+1UXLlT60QPLVLKXrI6wZRzgLT8=
Subject key identifier: 1A:96:59:DD:E6:F9:D5:0A:25:A4:C6:48:82:E3:0D:AA:3B:E9:E7:33
Certificate issuer: /CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Certificate serial: 088B6C4C
Authority key identifier: 0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/GpZZ3eb51QolpMZIguMNqjvp5zM.roa
Signing time: Sat 01 Jan 2022 07:00:43 +0000
ROA not before: Sat 01 Jan 2022 07:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64491
IP address blocks: 185.162.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143354956 (0x88b6c4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Validity
Not Before: Jan 1 07:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a9659dde6f9d50a25a4c64882e30daa3be9e733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b3:72:76:50:61:e7:e4:de:de:c0:e9:03:6f:
0e:27:50:27:69:85:2e:65:d0:2b:9c:56:20:8b:58:
7f:f6:52:f5:9c:9d:93:5c:10:f6:b5:62:fa:e0:6a:
18:0a:71:fa:96:5e:c5:2c:84:3d:67:b2:ff:dd:db:
7b:4b:88:39:ad:ae:82:1d:33:21:4a:39:b2:b7:76:
02:b4:55:ad:c7:03:9f:fd:e8:2d:6f:0d:20:65:bc:
f5:ce:6c:eb:6f:dc:06:30:71:fc:1b:f4:1b:86:12:
9f:75:2e:36:89:46:60:b4:0e:ae:ab:9d:82:31:95:
03:f8:77:5b:60:35:c8:ce:1f:61:da:26:4a:09:4d:
32:44:0b:4c:08:02:3f:c9:05:6e:45:35:4b:7a:13:
93:d8:4a:44:3f:01:24:96:74:3c:60:a6:52:31:57:
f8:fa:db:36:2d:f0:61:04:cb:dd:15:33:24:98:05:
69:36:07:81:34:8e:fe:dd:8d:e2:f6:a5:80:5e:78:
53:1e:5b:90:b0:5a:d7:57:60:f9:9a:2b:f4:63:08:
c0:18:44:ba:86:dd:7b:ae:2f:58:e7:dd:1a:a1:1f:
0d:6f:28:10:9d:ca:68:8d:2f:38:5d:d6:a4:3b:38:
b5:1e:7c:a7:cf:8a:23:41:c1:6d:e3:10:6c:0c:09:
58:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:96:59:DD:E6:F9:D5:0A:25:A4:C6:48:82:E3:0D:AA:3B:E9:E7:33
X509v3 Authority Key Identifier:
keyid:0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/GpZZ3eb51QolpMZIguMNqjvp5zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.234.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:b8:33:ce:9d:85:19:a6:3f:90:10:66:1a:dd:11:1b:4e:0b:
7d:62:18:10:4d:88:c2:8f:a1:00:bd:9d:ca:f2:c5:87:69:ca:
a2:bb:73:db:93:57:f7:61:05:88:2d:ae:31:97:55:17:ef:dc:
6a:c3:5d:72:6a:74:2e:9a:fb:4a:ce:17:05:9d:f0:4b:81:f6:
44:2c:a7:97:0d:a3:72:da:a9:3e:94:cb:d9:a5:82:dc:3d:d7:
93:5b:d0:93:ad:13:c3:06:a4:4b:20:2d:c7:92:c8:e8:c7:f9:
df:c0:af:2e:5d:19:00:49:d1:60:9e:51:88:29:9c:db:ff:ac:
ca:bb:db:9a:83:10:9a:db:6e:69:c5:ee:af:7d:c6:8d:e3:f7:
41:cb:48:49:08:0a:51:a1:10:b1:4c:13:05:b9:74:b9:6a:45:
1c:3d:7e:65:bd:0f:54:01:bb:7c:4c:07:d4:6a:0a:de:7b:f1:
40:75:36:6a:32:86:c5:60:ca:b2:6b:a7:c5:ac:80:58:b4:db:
79:a9:1d:e9:4b:04:f8:32:b2:f6:95:c9:11:da:3b:1c:e0:ac:
2a:ec:16:61:4c:c7:58:16:fc:46:c8:cf:a2:96:2d:65:31:ec:
f4:96:d8:62:03:18:ef:ed:f1:03:a6:1b:67:49:95:d7:64:73:
25:0d:c2:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:06 2024 by rpki-client on console-ams.rpki-client.org