Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/GDAPaOdfP-P5NWDWwsJH5VnJcV4.roa
File: GDAPaOdfP-P5NWDWwsJH5VnJcV4.roa (raw, json)
Hash identifier: cSJcGSjCOHuv/gQ0nz3mowkX5RI6FQh4/n/VECUfMQA=
Subject key identifier: 18:30:0F:68:E7:5F:3F:E3:F9:35:60:D6:C2:C2:47:E5:59:C9:71:5E
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1B288384
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/GDAPaOdfP-P5NWDWwsJH5VnJcV4.roa
Signing time: Fri 11 Feb 2022 16:28:11 +0000
ROA not before: Fri 11 Feb 2022 16:28:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40028
IP address blocks: 45.43.87.0/24 maxlen: 24
107.181.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455639940 (0x1b288384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Feb 11 16:28:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18300f68e75f3fe3f93560d6c2c247e559c9715e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0f:9a:f6:e0:13:21:53:95:b8:05:b0:a3:c1:
0a:e1:dc:c6:5b:97:7e:e9:6a:d3:e7:ea:ad:cc:a5:
eb:fa:99:0d:a1:d8:43:47:52:50:6d:20:f8:6d:ea:
43:73:77:8c:cc:13:3c:30:4a:40:75:4c:b5:c9:5e:
00:2c:3a:a0:92:51:be:9a:a6:92:f8:67:80:7a:58:
4d:a6:07:ff:60:31:99:c4:62:64:80:47:f1:ae:d4:
18:81:47:1e:a0:f4:4d:ca:4e:1b:a6:44:53:ad:23:
e0:24:9a:fd:78:be:e4:45:ca:45:a2:cf:49:fc:34:
70:d0:62:b4:16:d0:e1:b8:b9:00:79:bf:07:70:2e:
9e:7e:57:25:30:25:cf:fb:d2:80:63:08:ac:ac:50:
b7:74:61:9c:6c:3b:2d:8c:f0:c9:1d:2a:4c:ee:d9:
41:44:8a:7f:72:84:d2:a9:31:72:e7:7c:51:72:8d:
ad:ab:1f:f7:68:36:24:60:70:d5:53:41:1b:59:41:
10:8a:86:c6:35:fb:37:6b:39:c6:f1:90:ba:d8:19:
f2:93:eb:dc:08:a1:4e:4a:90:e7:0d:77:a7:bb:eb:
5d:f1:bd:7b:3c:ee:fd:ca:30:2a:07:8f:23:8c:a7:
fb:dc:3a:d6:97:3d:42:0b:81:7a:40:ec:4e:21:21:
6a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:30:0F:68:E7:5F:3F:E3:F9:35:60:D6:C2:C2:47:E5:59:C9:71:5E
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/GDAPaOdfP-P5NWDWwsJH5VnJcV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.87.0/24
107.181.150.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:3d:45:2a:04:f5:56:0f:d2:b8:0c:40:a4:fd:09:2b:fe:c5:
ca:a5:cd:77:3a:f0:34:e1:20:b7:f7:7d:d4:09:44:7d:29:e3:
2e:a1:12:02:eb:b4:4b:31:36:cf:c7:74:63:8e:37:ac:06:90:
e7:5c:bc:7e:7b:38:2d:71:fe:a4:ee:4f:81:90:07:78:8e:e4:
82:a3:f3:75:c5:1f:e6:38:33:15:fa:8b:e9:b2:1f:08:ab:01:
c1:c8:09:68:bb:17:2e:89:06:25:7b:7d:c4:a3:2c:5e:c9:67:
b3:b6:25:e5:9b:de:29:11:23:74:91:ee:f9:d4:cc:d9:d7:e0:
40:62:b5:0a:2e:8f:c0:70:14:63:34:75:d2:db:9f:a1:2e:57:
c2:92:dd:c8:90:0e:60:fc:09:05:68:e1:bd:5e:a7:28:b5:10:
0d:1d:a0:c0:89:c7:e1:12:90:0d:a7:c6:a5:c0:b8:8a:a8:4a:
d9:54:e8:78:31:24:ef:f3:f0:a8:b4:b5:6b:36:66:72:3e:b1:
51:b7:dd:cd:7e:25:96:d5:93:c1:53:10:29:c9:29:e7:85:e5:
28:73:73:1d:9d:da:57:92:2f:61:8e:22:1f:40:63:3e:d0:07:
1a:f6:40:9b:09:db:01:f5:38:df:fe:91:90:8f:71:ab:4e:42:
16:ab:db:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:20 2023 by rpki-client on console-fra.rpki-client.org