Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Gp_Gds7j9rk-cdCyWJBSpHjSgjc.roa
File: Gp_Gds7j9rk-cdCyWJBSpHjSgjc.roa (raw, json)
Hash identifier: GolovXjbpB1d7viLgx9nTp6Cpm2fNyzdAAZa2N/ju9E=
Subject key identifier: 1A:9F:C6:76:CE:E3:F6:B9:3E:71:D0:B2:58:90:52:A4:78:D2:82:37
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 10D1A0EC
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Gp_Gds7j9rk-cdCyWJBSpHjSgjc.roa
Signing time: Wed 18 May 2022 14:04:00 +0000
ROA not before: Wed 18 May 2022 14:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13075
IP address blocks: 195.208.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282173676 (0x10d1a0ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: May 18 14:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a9fc676cee3f6b93e71d0b2589052a478d28237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:46:59:44:ef:bd:f4:b9:e0:77:70:ea:29:5b:
60:3b:da:1d:a6:ca:9e:74:54:9b:61:8b:53:0b:33:
01:ea:35:99:d0:c4:54:1b:24:e6:20:bc:4f:b2:c3:
32:44:ce:5b:70:89:d2:49:bf:fb:b5:a3:84:6d:88:
23:5c:1e:e7:d4:5a:00:2c:1f:ce:63:00:f6:1f:43:
48:e4:e9:9c:97:cb:25:04:37:c6:57:ab:39:e2:47:
1a:18:31:b7:ce:b2:ed:d2:d8:b2:f2:08:18:8a:0b:
f8:11:49:7a:c0:70:d6:db:a8:b7:b6:2f:c9:cd:26:
2e:53:bf:45:da:07:3e:b1:1a:80:fe:ed:22:d3:41:
27:0d:ca:a6:62:d6:4f:37:14:67:9f:1c:66:49:95:
d4:f0:32:7c:3a:38:9f:9a:89:3e:26:89:2d:d4:5b:
35:94:6a:a2:5f:9a:3f:62:0b:67:2e:0c:71:b5:40:
e4:75:a0:1b:89:65:9b:88:3f:cc:f4:41:14:09:be:
bc:ce:c4:12:59:78:43:a7:74:4e:e2:6d:23:24:1a:
b8:a6:aa:66:e4:e7:de:47:1f:e1:c4:d2:63:9b:b1:
e4:db:dc:41:16:4f:4f:d2:7b:fe:50:f1:c0:6c:3e:
b7:23:67:04:36:d7:f9:3b:cf:d3:c2:9f:a7:d8:a5:
1e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:9F:C6:76:CE:E3:F6:B9:3E:71:D0:B2:58:90:52:A4:78:D2:82:37
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Gp_Gds7j9rk-cdCyWJBSpHjSgjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.208.38.0/24
Signature Algorithm: sha256WithRSAEncryption
01:cf:aa:c0:77:87:7b:85:0a:b6:15:5b:0f:92:c5:3a:4a:72:
28:d4:0d:1a:a3:e9:3a:28:4f:ca:c4:c6:2d:06:88:0e:63:88:
27:b9:e1:cb:5c:42:b5:64:de:bc:da:31:58:9e:07:b8:a1:c7:
b2:a8:c7:2b:8c:5e:4c:2c:0c:66:78:58:62:d4:3b:a8:e1:7f:
04:fe:29:2b:35:df:54:f3:33:ff:18:b0:df:23:1c:43:e4:46:
35:f7:de:d7:52:d5:42:21:a9:e4:23:4a:39:b5:94:5f:aa:78:
6c:04:36:41:d8:db:e6:7d:5b:ad:70:30:da:d0:36:a2:39:0f:
69:c1:57:24:c7:ec:88:c2:2a:2c:d9:90:5f:12:53:f0:94:8f:
9b:36:85:e4:29:ba:41:5d:74:0e:0a:c3:89:a2:f4:80:e0:3f:
a1:21:23:a9:d7:1a:b5:61:55:03:da:15:95:cf:8b:76:44:2f:
28:0f:7d:01:56:5e:c3:97:60:1a:5c:25:58:e8:d8:b3:3b:a1:
39:d5:d3:d1:74:94:f9:bc:01:5c:ce:72:bd:f5:d5:4b:18:21:
b6:62:6c:a1:cc:98:dc:95:0b:7f:52:44:5c:04:b5:e8:bb:e4:
21:92:77:d3:82:a2:45:f6:5e:45:5d:af:0e:3a:30:5f:ca:68:
1a:a7:a8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org