Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/gTSLNj19rpMA33HZYm2ATHLmb78.roa
File: gTSLNj19rpMA33HZYm2ATHLmb78.roa (raw, json)
Hash identifier: P6D/f2PKOl3UbJEoKCQjKmAlzvfPbdM7+3fLmDIHf6o=
Subject key identifier: 81:34:8B:36:3D:7D:AE:93:00:DF:71:D9:62:6D:80:4C:72:E6:6F:BF
Certificate issuer: /CN=617252ebbb33484adcec7405adea4de08a0afb04
Certificate serial: 0183332FBD334565BBF96D32D60486373109
Authority key identifier: 61:72:52:EB:BB:33:48:4A:DC:EC:74:05:AD:EA:4D:E0:8A:0A:FB:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YXJS67szSErc7HQFrepN4IoK-wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/gTSLNj19rpMA33HZYm2ATHLmb78.roa
Signing time: Mon 12 Sep 2022 19:31:50 +0000
ROA not before: Mon 12 Sep 2022 19:31:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34420
IP address blocks: 195.149.119.0/24 maxlen: 24
195.170.167.0/24 maxlen: 24
2a0b:8bc7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:33:2f:bd:33:45:65:bb:f9:6d:32:d6:04:86:37:31:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=617252ebbb33484adcec7405adea4de08a0afb04
Validity
Not Before: Sep 12 19:31:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81348b363d7dae9300df71d9626d804c72e66fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:46:fa:13:fd:c2:e7:68:bc:e4:60:e7:f8:ee:
eb:56:7e:1b:49:25:83:38:17:8c:2f:0c:e6:cd:40:
cd:7e:98:1f:28:19:60:b9:97:96:6d:bf:dd:fd:8b:
9a:f5:a9:6c:e2:4e:d8:fc:37:6a:09:66:af:18:48:
a5:00:35:ce:e6:58:4f:65:a5:a6:64:13:4f:be:a7:
42:03:f3:5c:fb:61:d9:85:2f:40:bf:e2:83:e1:7b:
f2:df:9c:4a:de:09:8f:1e:33:47:7d:57:02:7f:c9:
94:3c:46:a1:79:08:99:96:d9:1e:60:bf:8d:0e:72:
02:57:51:d7:7d:fe:13:5f:94:96:3e:c0:2d:bf:e7:
a2:bd:8d:6b:d9:da:6c:48:8a:c2:e9:dc:55:e2:1a:
6d:99:56:c4:0e:39:40:66:16:c6:b4:a3:f4:ab:a7:
23:70:6c:21:52:8f:6d:71:9f:16:74:33:a5:1e:ef:
38:a0:39:7d:19:cf:b3:ab:e9:8f:31:cf:b8:95:1a:
a1:4d:2a:8d:ca:25:78:0e:30:5e:1a:a0:2a:0e:a1:
c5:7e:00:8b:54:fa:65:a3:e3:90:73:d5:8e:37:08:
25:61:ae:b4:41:7b:4b:5b:18:96:72:f2:93:c2:f8:
79:61:04:c0:a8:0d:b5:c2:3e:db:b2:33:17:ec:ff:
59:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:34:8B:36:3D:7D:AE:93:00:DF:71:D9:62:6D:80:4C:72:E6:6F:BF
X509v3 Authority Key Identifier:
keyid:61:72:52:EB:BB:33:48:4A:DC:EC:74:05:AD:EA:4D:E0:8A:0A:FB:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YXJS67szSErc7HQFrepN4IoK-wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/gTSLNj19rpMA33HZYm2ATHLmb78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/YXJS67szSErc7HQFrepN4IoK-wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.119.0/24
195.170.167.0/24
IPv6:
2a0b:8bc7::/32
Signature Algorithm: sha256WithRSAEncryption
55:a0:e8:83:cc:bd:d8:08:8b:6d:23:50:93:d2:91:12:22:2c:
03:9d:d0:11:79:f8:ec:88:37:a3:3b:49:33:e1:ac:f4:5e:13:
b0:16:ab:56:f5:c1:4a:db:e7:bb:d2:f1:d8:45:d4:64:40:0a:
75:d5:c1:ab:52:f6:16:ab:32:ff:7e:54:50:26:22:69:c1:17:
80:b8:90:86:55:e6:73:94:d8:3f:66:0c:56:e9:05:46:cb:20:
7d:8c:ae:25:9d:74:f1:5c:44:ad:1a:66:e8:f1:97:74:21:12:
f7:b7:9a:f6:c5:15:90:5f:c2:49:a7:80:26:62:70:61:51:e5:
81:45:e5:71:df:94:19:bf:91:b9:5f:bf:df:92:19:0a:3a:af:
be:64:7a:8c:5c:ea:61:5d:bc:4f:bf:ab:7c:d1:8c:1b:c1:a3:
21:6f:d8:f3:f8:81:d3:de:6a:23:01:a3:5f:bd:5b:b3:65:92:
a5:e2:07:34:5a:65:a7:73:f7:0d:67:91:00:bf:26:8e:0e:cf:
a8:90:8a:84:4c:84:27:aa:93:da:dc:18:da:07:27:91:91:1c:
cd:a5:4f:1b:18:f9:06:1b:2e:13:ca:f7:d4:4d:b6:1a:05:9a:
34:60:92:68:cc:30:10:43:91:c4:b9:55:a7:33:7a:85:cf:a4:
41:78:f4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:02 2024 by rpki-client on console-ams.rpki-client.org