Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/gtPJcOaz9AXooyV2ZqlxjAVEkyY.roa
File: gtPJcOaz9AXooyV2ZqlxjAVEkyY.roa (raw, json)
Hash identifier: rcGMWmjlmqhOLtgLm2891FUCKi1t5WFr/0CoDNsEA60=
Subject key identifier: 82:D3:C9:70:E6:B3:F4:05:E8:A3:25:76:66:A9:71:8C:05:44:93:26
Certificate issuer: /CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Certificate serial: 1DA36651
Authority key identifier: 4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/gtPJcOaz9AXooyV2ZqlxjAVEkyY.roa
Signing time: Sat 01 Jan 2022 05:52:09 +0000
ROA not before: Sat 01 Jan 2022 05:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55497
IP address blocks: 5.42.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 497247825 (0x1da36651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Validity
Not Before: Jan 1 05:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82d3c970e6b3f405e8a3257666a9718c05449326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:46:f4:c2:2e:36:a0:c3:00:ab:1e:89:97:68:
48:0d:a5:23:18:7c:6f:37:41:9e:89:fa:a5:72:2c:
7c:9b:6c:24:ce:57:3a:a5:41:3c:99:0a:7a:50:bc:
82:1f:55:cd:27:a8:2d:d4:2f:35:75:ab:75:44:87:
f5:cf:84:42:86:32:57:f9:61:36:bb:f0:8a:c5:55:
82:8a:2f:63:e9:3d:9c:20:fa:76:3a:f0:a7:d0:5b:
37:8e:d2:03:1e:cd:00:2c:9d:6d:ae:31:07:ab:4b:
33:c5:55:02:9f:4d:0a:d6:33:0b:55:68:f6:ee:7e:
6a:68:dc:53:4e:ce:ae:cd:1f:cd:55:51:5c:88:5f:
e5:db:f8:27:b9:28:3d:9a:39:ad:cf:80:ee:4b:97:
07:1d:f1:3d:9c:a5:29:ae:14:16:1a:b9:88:fc:cf:
41:b6:55:79:2c:0c:2b:c0:a1:af:1e:75:c7:91:4f:
62:2d:62:6e:6a:3d:75:ca:92:65:5c:55:a5:2d:45:
13:50:3e:cf:09:59:82:33:a4:48:5a:47:d3:3b:9c:
b7:cf:b1:c5:59:5c:b3:48:c2:6f:0a:3c:a8:dd:20:
e6:f4:88:f9:82:59:c7:e1:b5:14:c5:2e:e5:7f:c5:
de:26:56:f4:61:13:ec:a2:9c:2a:42:4f:62:43:c5:
73:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D3:C9:70:E6:B3:F4:05:E8:A3:25:76:66:A9:71:8C:05:44:93:26
X509v3 Authority Key Identifier:
keyid:4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/gtPJcOaz9AXooyV2ZqlxjAVEkyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/S_P7j_jdr9qJ2zlwX3j2QY79H-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.160.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:b0:38:3c:0f:b9:76:a3:11:24:d1:7e:b9:f3:f7:1b:de:00:
70:dd:35:2f:d2:16:e9:5a:2e:4e:08:80:41:10:de:c0:75:cc:
22:46:63:29:bd:57:71:fd:5d:e2:7b:50:82:5e:db:e6:62:a0:
eb:ad:ce:06:b0:78:a1:c8:af:81:cb:d3:96:12:c7:2a:07:b8:
73:81:39:84:37:1e:db:b8:38:12:12:5d:d8:01:b9:25:00:61:
c3:e1:8a:41:bb:ee:0a:73:eb:95:2a:f1:ba:5f:ab:43:1d:44:
71:06:b3:53:31:39:20:a3:16:41:24:23:54:ba:c4:86:df:4a:
fb:7c:d0:8b:32:dd:d6:49:30:11:e4:6a:6f:9f:ff:ab:b0:5e:
2b:1b:dc:cd:0a:69:4f:92:5e:28:a6:d2:91:13:ff:36:48:80:
50:19:0b:a9:cd:b1:4b:0c:84:aa:90:88:9c:a0:32:82:69:9c:
b2:7e:3e:af:9b:77:87:3f:0b:ff:ef:cd:67:b9:7b:a7:8e:fd:
86:f0:b7:c5:bf:b8:b5:af:c2:10:d7:74:59:b8:af:63:5b:b1:
fc:66:96:f0:c7:4e:12:2e:07:6a:1c:bb:57:61:ac:c2:d1:f1:
17:95:17:53:bc:c2:51:cf:3f:28:4e:78:aa:1b:f5:3e:01:64:
48:31:3c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:45 2024 by rpki-client on console-fra.rpki-client.org