Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/gLBhyGI1Eyapk1CivjTbrIugoeY.roa
File: gLBhyGI1Eyapk1CivjTbrIugoeY.roa (raw, json)
Hash identifier: cHMALTkDvlNmOvIjDfKJCjQZy3Ll1gNGOcXv5677IMM=
Subject key identifier: 80:B0:61:C8:62:35:13:26:A9:93:50:A2:BE:34:DB:AC:8B:A0:A1:E6
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 0185E3DEA3D2DE9D34A267CE1C33BA5CDC60
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/gLBhyGI1Eyapk1CivjTbrIugoeY.roa
Signing time: Tue 24 Jan 2023 13:01:36 +0000
ROA not before: Tue 24 Jan 2023 13:01:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200181
IP address blocks: 45.159.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e3:de:a3:d2:de:9d:34:a2:67:ce:1c:33:ba:5c:dc:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Jan 24 13:01:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80b061c862351326a99350a2be34dbac8ba0a1e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f1:d2:fa:d9:a2:1c:33:c0:3b:75:b2:d2:32:
81:00:5c:81:c9:7d:cb:d9:71:cb:d9:32:54:c5:ec:
ad:04:44:b5:92:5e:67:0c:71:7c:76:ea:f7:e5:93:
1f:39:15:1c:e5:36:06:6a:d6:7a:88:d9:0d:6c:10:
b4:99:7c:d0:bd:b0:a9:aa:5e:26:45:f0:fb:b7:b0:
fe:02:7c:e7:6a:c0:b4:65:49:e2:e9:1f:6b:ee:e0:
d3:42:2e:7d:f5:83:cd:a3:99:d4:a0:5d:75:f8:2c:
73:0f:58:c0:b5:4a:8e:2a:70:97:1d:f7:10:1f:3f:
7d:28:de:0f:3b:e0:35:67:5a:7d:38:b1:b8:71:c9:
51:1f:33:a7:b0:2a:a3:e2:df:e8:fe:72:c0:5f:87:
0d:f2:55:0b:a9:2a:ce:cf:43:55:d6:00:c7:d9:fd:
67:ef:ee:12:b5:5b:ac:8f:ef:57:84:d8:40:d8:40:
ac:11:92:57:b7:2f:a0:b7:62:5c:d1:2b:c7:39:d1:
6a:c3:b9:bc:cb:bc:68:d4:3e:9c:be:91:68:c7:7f:
3c:a5:2e:28:b8:8d:d2:8c:f9:8b:67:45:57:c1:89:
40:fa:3b:a8:1b:91:a2:c8:e9:e5:53:3e:90:be:78:
fe:cb:a8:ac:33:43:1b:08:18:7a:31:1d:bb:65:0c:
fb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B0:61:C8:62:35:13:26:A9:93:50:A2:BE:34:DB:AC:8B:A0:A1:E6
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/gLBhyGI1Eyapk1CivjTbrIugoeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.92.0/22
Signature Algorithm: sha256WithRSAEncryption
17:77:ac:cd:60:ce:e8:94:4b:8d:1d:f6:22:b9:b1:9a:3e:19:
31:be:3d:8d:81:5a:a3:21:bb:e6:59:cb:80:9d:c6:cb:5d:e7:
3f:f4:3a:21:2f:e7:ad:32:59:a2:03:f7:57:8d:6d:f9:99:33:
50:54:1d:d0:6e:48:31:38:c9:20:9e:d2:fb:9f:d3:8b:ef:55:
87:88:a2:38:04:82:76:0c:9e:f2:1a:88:83:f8:5c:c9:5b:78:
55:c3:8c:a6:9b:0d:ed:d4:e2:28:47:07:90:60:8e:d1:48:43:
d9:4d:42:44:b9:23:eb:09:5e:b1:af:45:d1:87:6f:10:e1:7d:
37:59:8e:33:8b:e8:01:d1:10:38:d2:b9:e6:68:a9:3b:bd:4f:
8a:03:0e:f2:a3:a4:67:fb:fa:e2:d1:f4:96:1a:dc:52:ca:3f:
38:db:19:f0:f7:bc:f2:24:74:c0:f6:84:0b:d7:9c:07:02:c0:
89:11:77:d7:d6:9c:a5:d4:0d:3c:d3:84:14:db:59:87:c7:a5:
71:b1:91:79:2e:2c:da:ac:c8:41:7b:15:15:ef:f2:e0:00:80:
61:21:8a:1b:db:84:a4:a8:f7:38:7f:e7:11:7c:d4:1c:dd:d0:
7d:e6:1c:78:1e:1f:ee:3e:fb:86:cf:b3:ca:37:ca:d7:26:97:
fb:5f:2b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:04 2025 by rpki-client