Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/Gp0eELU_IkVFW2IbDn6JXgMOnR0.roa
File: Gp0eELU_IkVFW2IbDn6JXgMOnR0.roa (raw, json)
Hash identifier: qGoNpawR3NskQbP9Pjri7zLzNh7P/td9GJH/KV3XZ00=
Subject key identifier: 1A:9D:1E:10:B5:3F:22:45:45:5B:62:1B:0E:7E:89:5E:03:0E:9D:1D
Certificate issuer: /CN=d73e83146a43869f657451e76d0a305f15a7aee9
Certificate serial: 305D1AFC
Authority key identifier: D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/Gp0eELU_IkVFW2IbDn6JXgMOnR0.roa
Signing time: Sat 01 Jan 2022 08:04:28 +0000
ROA not before: Sat 01 Jan 2022 08:04:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9051
IP address blocks: 80.77.176.0/20 maxlen: 24
185.125.152.0/22 maxlen: 24
2a06:b880::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 811408124 (0x305d1afc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d73e83146a43869f657451e76d0a305f15a7aee9
Validity
Not Before: Jan 1 08:04:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a9d1e10b53f2245455b621b0e7e895e030e9d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4f:55:86:2e:90:70:fc:2a:67:69:57:b4:3a:
c1:7f:6f:31:85:5d:53:96:46:48:b7:de:07:f7:b3:
bf:32:8b:c5:54:c3:d6:14:b9:e3:8c:48:86:6d:79:
5d:2f:3e:d7:dd:c3:45:39:64:9c:dc:5b:84:a8:01:
6f:f6:d0:7c:12:52:8f:b8:af:f4:58:e4:90:2b:c9:
63:72:a3:69:7e:fd:66:89:a7:14:c6:fc:2d:4a:68:
96:1d:0d:dd:03:a5:6c:4b:65:2f:7b:16:7e:84:f0:
84:46:34:2e:87:d8:f6:94:11:ba:1c:8f:c2:de:f0:
6e:ba:dc:31:ab:76:03:15:76:35:cd:22:50:97:51:
08:a5:54:0c:ce:7c:d9:db:4f:85:0a:f5:02:96:65:
c6:2e:8f:c9:ed:69:59:8b:66:f4:80:37:1c:24:c1:
23:36:1e:7b:54:49:1c:40:ac:72:c2:b0:97:da:7a:
e5:92:fd:b8:0b:2a:5e:8a:c6:93:88:fa:a6:7c:db:
f0:31:37:50:26:0c:60:ca:f8:61:29:69:0c:30:1c:
d5:c4:3e:00:8e:5c:f9:95:bc:03:b5:41:3f:e5:7d:
30:e8:ec:7e:c4:1e:c7:24:24:05:76:ec:2e:04:b0:
09:c7:3a:48:94:e8:3f:d0:61:f4:5e:b1:69:73:20:
be:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:9D:1E:10:B5:3F:22:45:45:5B:62:1B:0E:7E:89:5E:03:0E:9D:1D
X509v3 Authority Key Identifier:
keyid:D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/Gp0eELU_IkVFW2IbDn6JXgMOnR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/1z6DFGpDhp9ldFHnbQowXxWnruk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.176.0/20
185.125.152.0/22
IPv6:
2a06:b880::/29
Signature Algorithm: sha256WithRSAEncryption
81:88:12:c2:12:61:61:ba:ce:0c:32:e0:96:96:47:f6:55:a1:
e4:1a:77:ce:81:1d:8d:8d:3c:8b:82:ad:69:43:48:48:bf:3e:
3a:8f:52:31:59:4e:e4:f5:b0:81:6e:44:0e:5b:d5:67:76:90:
d6:cb:b9:51:ed:dd:00:cc:f6:d6:df:5f:22:64:06:59:67:6b:
be:f2:83:cf:bd:a6:e5:5b:eb:20:f8:36:02:3c:35:19:ba:dc:
e1:65:9e:54:ea:92:3b:79:79:02:c2:7f:3b:9e:f7:0f:a2:87:
d4:2c:7a:5d:01:40:aa:c0:8c:dc:37:6a:5b:9f:39:eb:a5:f9:
95:17:d4:67:e9:25:15:b2:c5:e0:db:c6:08:aa:c7:38:d0:65:
66:fd:1c:93:17:7f:4f:43:f5:88:ff:39:f3:bf:58:59:4e:a1:
01:bf:29:53:29:24:b4:a0:a1:29:96:34:f0:b7:a2:79:85:5a:
64:66:62:d2:2c:07:a0:a8:41:9b:7e:e1:b3:22:8d:44:25:c8:
b8:a4:ce:9b:bc:0b:d4:14:21:42:5c:e2:32:c0:6c:77:11:24:
02:31:f1:f8:e1:e9:7a:56:7d:ae:b2:ec:58:1e:81:e1:3b:7a:
36:78:57:23:f8:1e:0b:12:69:08:fc:9a:ca:62:13:50:92:ec:
0b:5e:78:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:26 2024 by rpki-client on console-ams.rpki-client.org