Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Ggrk1UuQOWLk4g8pj9let-Ulaxo.roa
File: Ggrk1UuQOWLk4g8pj9let-Ulaxo.roa (raw, json)
Hash identifier: mivmI99WFOxj713grysHwXQv39UnZ0VeGm12DFjWlfY=
Subject key identifier: 1A:0A:E4:D5:4B:90:39:62:E4:E2:0F:29:8F:D9:5E:B7:E5:25:6B:1A
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0182FA7D76701560246F357D707B0C8209D0
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Ggrk1UuQOWLk4g8pj9let-Ulaxo.roa
Signing time: Thu 01 Sep 2022 19:18:22 +0000
ROA not before: Thu 01 Sep 2022 19:18:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27323
IP address blocks: 185.255.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fa:7d:76:70:15:60:24:6f:35:7d:70:7b:0c:82:09:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Sep 1 19:18:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a0ae4d54b903962e4e20f298fd95eb7e5256b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:70:de:f1:ba:cd:ea:b7:09:f1:6f:04:3a:
e1:b9:5e:a8:79:fd:24:ac:53:a6:98:56:b4:9d:a1:
ba:8b:03:f1:db:cd:0d:77:79:73:55:c8:1b:3c:2d:
ca:bf:b2:bd:81:2d:ed:31:5f:78:7c:32:4e:88:9f:
ed:9e:96:6f:64:e5:6b:10:00:03:6e:e2:db:fd:df:
f2:67:7e:2c:1e:b3:25:a5:9d:ba:ab:c2:5a:c5:1e:
00:ce:d0:85:0a:ac:94:f6:93:e3:5b:fd:67:90:43:
d6:37:cc:c2:e0:d2:f6:df:b4:ae:c4:b3:4d:e4:ce:
29:d1:7a:14:31:d3:88:64:16:1c:bd:d7:36:00:26:
f6:46:4b:d0:4c:f1:16:f6:55:7a:5d:19:04:6f:d9:
a5:05:72:29:c2:0c:24:f7:3f:12:c0:03:12:e0:a0:
48:33:79:68:92:0c:eb:61:6b:f2:ad:05:06:a3:90:
e0:2c:6c:1a:72:5a:6b:ea:c8:30:e0:b2:3d:d5:1d:
99:24:6c:33:23:a6:ae:f5:55:d1:4e:0a:f6:82:c9:
0c:b5:e3:b8:03:b1:98:31:d6:80:65:c6:bd:b4:d5:
a7:1a:5d:b6:36:ab:14:e4:ba:35:3f:66:18:14:7c:
72:c1:6a:74:97:10:bf:38:da:c5:d8:4c:84:7b:ef:
58:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0A:E4:D5:4B:90:39:62:E4:E2:0F:29:8F:D9:5E:B7:E5:25:6B:1A
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Ggrk1UuQOWLk4g8pj9let-Ulaxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.115.0/24
Signature Algorithm: sha256WithRSAEncryption
60:e1:9b:94:1c:3d:f4:69:16:de:ec:b6:2e:d7:f2:cf:3a:ec:
2d:0e:92:bd:f0:a1:d2:8f:45:cf:7e:72:bf:42:7c:3c:1b:0c:
3d:8e:3d:0e:25:34:68:b7:7d:f1:3f:6f:a8:0e:a6:35:7d:c1:
69:d4:71:4d:38:29:49:10:0e:5e:76:19:7e:07:3e:19:c1:1f:
c6:f7:1e:9c:19:a1:28:2b:0a:8c:59:35:f6:91:6c:94:d4:73:
3a:5a:81:81:8b:bd:2e:82:6d:a6:fa:f9:5e:60:89:2f:f3:ee:
05:fe:0d:06:fc:da:89:37:f3:95:d7:b0:33:02:35:5c:b4:19:
1e:b9:17:8b:9b:0f:1f:2b:e9:31:40:0d:e2:d9:4a:c8:69:71:
b2:87:00:3d:ce:91:de:38:b2:ea:9d:70:99:21:cf:ff:04:cf:
1c:eb:44:13:e2:11:5c:3a:f1:6f:dc:06:3f:d0:1e:1e:95:94:
df:6e:f7:1e:b8:37:73:c0:aa:c0:0e:a9:55:75:96:80:98:95:
49:5a:94:82:1f:95:91:41:72:92:a3:ac:07:8c:09:1b:48:65:
87:31:d0:76:e5:a2:83:15:58:4e:11:22:3b:9e:ce:e6:8a:78:
36:fd:08:59:7d:78:7f:d7:b9:6d:c9:62:e5:76:ab:27:a2:aa:
6b:a6:4d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org