Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/GlCoJzAg39Y5I_LrCXUD8J8uJJs.roa
File: GlCoJzAg39Y5I_LrCXUD8J8uJJs.roa (raw, json)
Hash identifier: Nwe0llRGKlzqF79iIol8kcQPDmJBShZBVE0+k5/VVjQ=
Subject key identifier: 1A:50:A8:27:30:20:DF:D6:39:23:F2:EB:09:75:03:F0:9F:2E:24:9B
Certificate issuer: /CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Certificate serial: 0184898A7974D7462275B6F4BB53B97617F8
Authority key identifier: E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/GlCoJzAg39Y5I_LrCXUD8J8uJJs.roa
Signing time: Fri 18 Nov 2022 07:01:04 +0000
ROA not before: Fri 18 Nov 2022 07:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211563
IP address blocks: 185.27.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:8a:79:74:d7:46:22:75:b6:f4:bb:53:b9:76:17:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Validity
Not Before: Nov 18 07:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a50a8273020dfd63923f2eb097503f09f2e249b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:28:1d:3e:e5:fc:09:2e:c2:cf:13:a9:5d:47:
6f:f9:e6:3c:c6:7d:64:08:8c:b7:6e:b8:21:05:c3:
de:e2:f2:28:70:d2:cf:3c:54:bb:2c:9e:2b:fd:65:
6a:e0:f5:4f:8f:6a:d1:85:12:81:0e:a8:ca:40:43:
4a:b7:ef:fa:0d:d2:03:96:c8:fa:c8:b0:71:cb:31:
ca:7b:a0:e1:a9:3d:dd:0b:3e:71:b2:4f:5b:ad:4b:
24:48:dc:84:48:97:68:dd:bf:c5:7d:2d:35:db:51:
a3:3f:1f:59:f2:6a:78:3e:63:af:2b:8c:6f:7e:7d:
c3:03:c5:a5:6d:3f:c1:e1:50:d4:d0:d4:65:08:f1:
75:82:89:70:aa:65:18:6a:0f:3b:95:71:03:88:fd:
49:c0:d4:5a:84:00:e9:c9:83:7d:64:36:7b:36:68:
9a:a0:7a:6c:1c:35:ef:d2:b7:5e:0f:ea:6d:47:85:
2e:c3:a9:14:91:53:7f:90:ee:24:5d:2d:0d:b1:7e:
4a:b8:c7:9c:a6:a1:8c:42:d1:26:ee:ab:5b:dd:8b:
c1:91:a1:89:3e:3a:71:9f:5a:6f:bc:9f:27:52:e2:
c5:6f:e8:6a:e4:8e:e7:dd:a2:e9:77:d0:35:aa:d4:
59:3e:a1:e2:4e:c3:fe:26:39:67:83:ba:22:d5:dc:
fb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:50:A8:27:30:20:DF:D6:39:23:F2:EB:09:75:03:F0:9F:2E:24:9B
X509v3 Authority Key Identifier:
keyid:E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/GlCoJzAg39Y5I_LrCXUD8J8uJJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/5SBEb3n_wtfDqe80DOneJXI6cZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.82.0/24
Signature Algorithm: sha256WithRSAEncryption
17:9b:53:38:35:c0:12:21:e2:8d:e0:99:65:29:68:ff:a6:fb:
37:dc:d1:9b:6c:ec:46:86:79:a1:4a:e2:65:76:c3:24:7e:23:
12:33:82:a8:b4:f0:28:7b:3d:3d:a4:58:f7:c0:5c:f2:79:02:
28:93:0b:96:31:8e:9e:2d:7a:a2:59:cd:40:51:c0:be:db:0b:
46:96:75:bb:5c:ee:7f:8a:a9:04:04:d8:3d:01:cc:93:3e:26:
ab:4f:a4:a3:2d:ad:33:40:08:d1:d1:2d:fc:09:9f:0d:92:1e:
aa:92:46:fd:66:2d:73:68:8a:26:1e:98:22:37:d3:11:8e:46:
a8:b0:f3:af:7c:09:42:d5:25:86:67:0a:10:ed:2f:18:aa:ac:
c5:53:6d:20:f8:4c:71:76:6b:9c:6f:f9:69:58:33:00:9e:11:
84:7e:42:27:b9:8e:0a:14:42:14:79:81:6a:34:37:66:9d:7d:
53:5d:b0:2b:d7:ef:68:df:1e:c8:41:2b:89:9a:10:62:68:34:
28:91:0c:48:17:8f:79:91:87:f5:9c:0c:85:1d:a7:4b:8a:91:
5d:fb:81:00:80:ff:17:82:8f:3f:29:5e:14:a7:fd:59:08:6e:
05:71:06:8d:60:42:2f:43:e8:2f:de:14:9a:8c:28:4e:ad:c7:
28:12:05:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:25 2024 by rpki-client on console-ams.rpki-client.org