Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/GxCSopFRG55ddOQzwW4DR-whoF4.roa
File: GxCSopFRG55ddOQzwW4DR-whoF4.roa (raw, json)
Hash identifier: L0+PBEShIYiHkQ0kgM7vRYlKa+Sygsx7oU4zvrzjnyo=
Subject key identifier: 1B:10:92:A2:91:51:1B:9E:5D:74:E4:33:C1:6E:03:47:EC:21:A0:5E
Certificate issuer: /CN=bdef8a8ad007aa4dc81d7736189a182b0282bc18
Certificate serial: 01B1C0D3
Authority key identifier: BD:EF:8A:8A:D0:07:AA:4D:C8:1D:77:36:18:9A:18:2B:02:82:BC:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ve-KitAHqk3IHXc2GJoYKwKCvBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/GxCSopFRG55ddOQzwW4DR-whoF4.roa
Signing time: Sat 01 Jan 2022 15:02:13 +0000
ROA not before: Sat 01 Jan 2022 15:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205310
IP address blocks: 185.220.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28426451 (0x1b1c0d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdef8a8ad007aa4dc81d7736189a182b0282bc18
Validity
Not Before: Jan 1 15:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b1092a291511b9e5d74e433c16e0347ec21a05e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cc:9e:ef:95:38:a2:07:93:15:d1:4b:a8:25:
13:6e:5f:06:5e:76:6d:f5:91:6a:d9:6b:be:4a:90:
ff:14:2f:28:6c:0b:3d:5c:5a:d2:d8:78:42:12:9f:
1e:ad:56:b1:34:5b:a4:08:0b:42:be:5d:ef:b9:14:
53:f0:08:e2:fe:b4:f5:ea:fd:2c:56:48:3b:25:a2:
29:a1:46:fa:32:98:c3:0f:d3:ba:22:06:08:16:6e:
65:77:0c:d5:2b:9d:61:b1:64:b9:fb:fd:2a:fc:34:
93:a0:99:70:3b:d0:b5:50:2c:c0:a9:ce:52:5d:a7:
a9:cd:0b:4b:14:8d:ab:48:3a:a3:15:d0:6f:94:aa:
62:c5:e7:72:15:14:15:0b:d2:ae:53:9f:5a:78:e0:
08:1f:bc:f3:7d:40:c7:cd:c1:8c:ea:40:c1:49:05:
c1:0d:03:c5:1b:3c:47:e7:1e:1b:86:e1:92:46:bd:
e3:3f:20:83:9e:60:ee:e8:93:0c:24:e0:d0:7d:75:
43:5b:30:4d:21:b7:df:3a:b6:40:42:28:26:fa:19:
24:5c:d8:0e:29:6f:77:34:43:54:d1:c4:42:55:dc:
db:28:4b:3d:a6:40:82:d1:fa:7d:b7:66:d6:80:33:
ed:a7:d5:69:3e:db:92:87:02:85:59:69:b3:6c:5d:
db:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:10:92:A2:91:51:1B:9E:5D:74:E4:33:C1:6E:03:47:EC:21:A0:5E
X509v3 Authority Key Identifier:
keyid:BD:EF:8A:8A:D0:07:AA:4D:C8:1D:77:36:18:9A:18:2B:02:82:BC:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ve-KitAHqk3IHXc2GJoYKwKCvBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/GxCSopFRG55ddOQzwW4DR-whoF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/ve-KitAHqk3IHXc2GJoYKwKCvBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.228.0/22
Signature Algorithm: sha256WithRSAEncryption
55:45:17:6e:10:0f:de:d3:ab:c5:78:6f:93:08:b2:33:58:b8:
4c:85:db:ec:08:27:16:ac:e7:73:77:1b:ce:44:09:2b:1e:73:
4f:bb:52:2f:da:56:59:f8:b8:89:f8:19:f9:24:d1:90:81:44:
0b:f6:83:71:54:5e:d8:7f:26:e0:b9:b4:78:80:53:eb:d6:b8:
34:b8:ca:28:ce:fc:7a:65:1a:a8:69:a1:b8:ed:41:76:e2:bd:
c7:40:11:a1:83:04:b6:dc:ff:3f:b2:68:1a:c9:e3:d9:4c:9c:
d9:75:1f:67:32:0f:61:78:97:44:80:b9:e5:ce:72:6a:b4:93:
91:d7:d1:fb:06:57:3d:5a:22:57:65:28:f1:cd:16:89:45:64:
48:b2:4e:78:9b:a4:38:4a:18:8b:df:dd:3b:0d:76:c6:56:b6:
06:90:31:23:26:d0:6b:0d:6e:2b:c1:aa:3f:b2:2b:cd:8b:86:
d8:bd:98:d4:af:47:ec:b4:f2:e5:6a:08:ee:5b:2f:23:e6:1e:
56:25:5a:38:a8:0d:8b:21:4b:d5:29:80:50:ff:9c:b5:42:0a:
3d:6e:93:11:88:ce:51:38:1d:f4:41:72:69:71:16:64:db:3b:
5f:dc:f6:d8:fb:a4:d4:38:12:c7:2c:1f:c4:f0:e4:3f:19:3a:
ac:f1:31:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:08 2024 by rpki-client on console-ams.rpki-client.org