Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c75a39-afca-4fbd-ab99-c339ccaf3a1e/1/gDvy2qmfR5-VWpu2dTuq0qodGyg.roa
File: gDvy2qmfR5-VWpu2dTuq0qodGyg.roa (raw, json)
Hash identifier: xOQaz4GBXTslaTn/rFQUklIZjCHomFkV1JaLLDKJmts=
Subject key identifier: 80:3B:F2:DA:A9:9F:47:9F:95:5A:9B:B6:75:3B:AA:D2:AA:1D:1B:28
Certificate issuer: /CN=0424c1165818a432f797c8ddf4b5307b1e5aef74
Certificate serial: 41A10FF2
Authority key identifier: 04:24:C1:16:58:18:A4:32:F7:97:C8:DD:F4:B5:30:7B:1E:5A:EF:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCTBFlgYpDL3l8jd9LUwex5a73Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c75a39-afca-4fbd-ab99-c339ccaf3a1e/1/gDvy2qmfR5-VWpu2dTuq0qodGyg.roa
Signing time: Sat 01 Jan 2022 02:00:41 +0000
ROA not before: Sat 01 Jan 2022 02:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39104
IP address blocks: 158.255.64.0/21 maxlen: 21
185.8.28.0/22 maxlen: 22
195.60.188.0/23 maxlen: 23
2a03:c580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1101074418 (0x41a10ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0424c1165818a432f797c8ddf4b5307b1e5aef74
Validity
Not Before: Jan 1 02:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=803bf2daa99f479f955a9bb6753baad2aa1d1b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:90:3d:0f:55:a3:51:73:91:fb:80:97:f5:01:
aa:63:31:f5:5e:5b:74:ac:6f:5d:8e:e8:70:3a:7f:
72:d4:a3:29:25:56:1c:d6:04:30:9e:c1:e7:c6:03:
cb:4f:1c:2d:a5:da:0c:de:3e:c9:ad:97:03:2d:e4:
77:62:44:3d:85:34:cb:df:c0:6b:e6:e6:21:ca:2d:
99:f2:20:58:4a:d4:a7:ae:7f:32:ed:e3:f4:76:9e:
f1:cf:ae:92:f3:4d:4b:21:8e:5c:a7:b8:a6:95:ca:
db:58:a4:a0:ad:6c:7b:bb:cf:bb:4b:e9:05:82:40:
78:c3:0e:dc:07:8f:a9:28:4d:d4:30:c8:0c:6e:72:
e9:b8:2e:29:2d:ef:32:fb:64:6c:4e:d1:55:3a:b3:
f9:01:a7:43:9c:12:d9:eb:b3:28:0f:6a:66:0c:b6:
8a:31:46:d0:ce:65:57:6b:cc:bb:a4:9e:5d:1a:18:
3c:45:6d:d7:b1:56:38:19:c4:6f:ef:4e:1b:25:49:
c4:8d:9d:26:1b:3f:db:93:e4:ad:ac:ac:e0:9d:0f:
2e:18:cf:46:40:43:e6:99:16:4e:80:b8:67:00:2e:
35:71:bd:37:07:e2:58:41:72:fb:92:8e:40:02:f3:
0b:a0:de:23:15:0e:36:46:18:0f:c1:1e:d4:67:3d:
32:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3B:F2:DA:A9:9F:47:9F:95:5A:9B:B6:75:3B:AA:D2:AA:1D:1B:28
X509v3 Authority Key Identifier:
keyid:04:24:C1:16:58:18:A4:32:F7:97:C8:DD:F4:B5:30:7B:1E:5A:EF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCTBFlgYpDL3l8jd9LUwex5a73Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c75a39-afca-4fbd-ab99-c339ccaf3a1e/1/gDvy2qmfR5-VWpu2dTuq0qodGyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c75a39-afca-4fbd-ab99-c339ccaf3a1e/1/BCTBFlgYpDL3l8jd9LUwex5a73Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.255.64.0/21
185.8.28.0/22
195.60.188.0/23
IPv6:
2a03:c580::/32
Signature Algorithm: sha256WithRSAEncryption
4e:7e:56:06:5e:46:f4:ad:d1:bb:ce:47:1b:30:63:db:97:24:
e8:37:c3:26:c4:d0:e3:d1:7c:d6:de:fa:a0:03:61:13:0b:2a:
1f:45:3b:5a:a3:fe:82:4b:14:df:24:5c:25:e2:ec:2f:ae:ea:
2f:e8:de:b3:42:c5:f9:b8:6e:4b:e9:58:14:8d:3a:0c:eb:32:
20:20:aa:5a:bd:89:95:4c:6f:35:33:1d:ef:d9:f7:84:6e:2b:
9f:35:86:1f:40:37:3d:33:5a:45:19:bb:b6:ad:14:1e:fa:51:
7e:f0:81:9b:5c:08:f7:9a:e5:0f:fc:9c:aa:62:4f:ff:76:88:
90:dc:d6:67:07:2a:f9:91:05:c4:d2:9d:1b:01:3b:30:13:8e:
26:a6:92:78:cd:b8:0c:e3:0e:f6:05:a9:43:70:24:c1:f1:b8:
ca:86:64:03:40:b6:9d:20:28:3d:a0:2f:6a:3b:6f:67:dd:d1:
51:7e:43:7b:40:7d:55:24:74:09:60:97:28:8b:2e:fb:94:32:
37:c6:16:9c:7a:81:cd:62:c3:bb:0e:80:49:24:d2:47:8c:dd:
6e:f9:ac:fa:e6:b8:9e:35:89:be:4b:46:37:a7:db:81:4c:0e:
01:2d:1e:9e:21:e7:80:6d:ee:08:6a:0b:14:21:af:00:3b:e9:
4a:31:63:0c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:11 2024 by rpki-client on console-ams.rpki-client.org