Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/gKdy3qdpZwQ9To3NV7Glb9JGa6o.roa
File: gKdy3qdpZwQ9To3NV7Glb9JGa6o.roa (raw, json)
Hash identifier: oVkgGI1kSGstVETTtMwptQs3xSYBtb/H0bsnLFnUpns=
Subject key identifier: 80:A7:72:DE:A7:69:67:04:3D:4E:8D:CD:57:B1:A5:6F:D2:46:6B:AA
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 1A2C8E94
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/gKdy3qdpZwQ9To3NV7Glb9JGa6o.roa
Signing time: Sat 01 Jan 2022 12:55:16 +0000
ROA not before: Sat 01 Jan 2022 12:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30535
IP address blocks: 185.162.73.0/24 maxlen: 24
185.162.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439127700 (0x1a2c8e94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 12:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80a772dea76967043d4e8dcd57b1a56fd2466baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:39:a3:13:a4:47:aa:cb:80:3c:1c:4e:7e:08:
f5:be:98:bc:11:e7:1c:d2:a1:e6:ac:f9:d3:90:7a:
eb:b2:ee:d2:6d:02:6f:85:23:fe:bf:a1:42:d1:a2:
85:a9:65:ed:46:bb:fb:b9:be:ec:82:27:42:07:e3:
49:a2:2a:6a:10:58:44:f9:52:c0:c7:b1:88:ae:66:
5b:d1:b2:31:8c:fe:06:f5:ec:f1:f9:4d:42:40:69:
3f:a7:1d:c8:e0:e4:c6:49:ba:66:18:09:42:af:5f:
a6:00:a8:1d:eb:87:af:b0:cd:31:29:f1:c5:b5:6a:
cf:2d:08:f9:04:e9:27:17:fe:eb:31:57:40:30:09:
ef:67:70:c5:be:c3:38:8a:fc:76:d8:73:13:4d:6c:
88:75:3b:23:c7:cc:e8:72:7b:64:8f:14:32:1a:ce:
71:f9:54:b7:3f:22:ec:a8:50:42:5f:92:cb:f6:e7:
b1:5d:56:15:16:59:98:9f:4e:88:fa:79:4c:ac:49:
19:c9:61:af:ba:cc:31:fc:64:f1:46:83:e1:99:69:
3e:62:13:85:b5:42:cb:ab:65:48:2e:02:3b:fe:6c:
fa:08:04:2c:43:16:0d:eb:a0:bc:92:bd:05:c0:7b:
7d:49:94:9c:a9:be:59:90:33:4d:65:74:83:8f:75:
49:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A7:72:DE:A7:69:67:04:3D:4E:8D:CD:57:B1:A5:6F:D2:46:6B:AA
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/gKdy3qdpZwQ9To3NV7Glb9JGa6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.72.0/23
Signature Algorithm: sha256WithRSAEncryption
61:a4:d3:b8:97:c7:bb:72:4a:12:5b:21:f1:42:18:84:15:23:
3f:44:c6:0d:66:a0:04:65:94:19:2f:88:f1:b6:38:7b:d3:0c:
c2:c6:b7:47:76:34:7d:bd:7a:62:45:da:c5:1e:c0:93:b1:e2:
d7:86:d9:be:8c:12:d6:1d:1d:ad:56:36:9b:22:47:4c:e9:ad:
b1:24:73:6f:6a:9f:d4:1f:f6:4e:fe:eb:b7:ff:67:a2:19:10:
f0:9f:73:18:71:97:c5:e5:c5:8c:74:32:d6:11:e8:39:4f:a0:
18:cb:33:e4:17:74:87:53:67:77:e8:be:d5:cd:a6:98:e2:cc:
94:ee:3e:30:3f:d3:52:26:6c:11:b6:1b:ee:43:44:69:f3:20:
19:80:49:ef:e5:da:10:14:bc:03:27:07:7b:8d:77:18:1d:74:
93:9c:ef:08:b4:00:83:31:c4:69:cb:27:a9:20:34:b8:5e:bd:
c7:9e:a0:6e:9a:9f:ba:1c:7f:42:b6:1c:c6:d2:bd:aa:40:cc:
1b:5d:a9:81:64:6a:b2:4c:73:f4:59:7a:e0:93:24:d1:b0:da:
e0:50:43:f0:7d:4a:ba:66:65:57:22:c5:81:89:2f:10:f9:77:
d2:65:03:0e:60:de:f0:fe:bd:c2:d0:35:75:e2:f2:10:03:47:
75:ba:fc:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org