Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c8e214-8e45-4c96-8a79-de6187b7298a/1/GMTVM5GSo5Yh3yt2wJrE-XWCd7s.roa
File: GMTVM5GSo5Yh3yt2wJrE-XWCd7s.roa (raw, json)
Hash identifier: vRnr80y0AqYmKinRugNbjFxN27/eqDTkvp1OZ+2VaiQ=
Subject key identifier: 18:C4:D5:33:91:92:A3:96:21:DF:2B:76:C0:9A:C4:F9:75:82:77:BB
Certificate issuer: /CN=633e752ca0dc423c74f508405ba5228a8c2e5157
Certificate serial: 0185F2F73EB8AD9647A26E44EFC02161C499
Authority key identifier: 63:3E:75:2C:A0:DC:42:3C:74:F5:08:40:5B:A5:22:8A:8C:2E:51:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yz51LKDcQjx09QhAW6UiiowuUVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c8e214-8e45-4c96-8a79-de6187b7298a/1/GMTVM5GSo5Yh3yt2wJrE-XWCd7s.roa
Signing time: Fri 27 Jan 2023 11:22:47 +0000
ROA not before: Fri 27 Jan 2023 11:22:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15694
IP address blocks: 194.49.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f2:f7:3e:b8:ad:96:47:a2:6e:44:ef:c0:21:61:c4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633e752ca0dc423c74f508405ba5228a8c2e5157
Validity
Not Before: Jan 27 11:22:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18c4d5339192a39621df2b76c09ac4f9758277bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:aa:90:0b:c2:ed:24:11:62:49:08:1e:a6:
98:8f:fd:0d:f9:38:e0:66:99:a0:65:e8:c4:06:90:
f8:ac:dc:33:a1:d0:7f:e2:38:28:84:07:08:95:95:
70:c1:28:0d:eb:ec:14:02:aa:40:98:13:3c:0d:cc:
9d:50:4c:f7:62:a5:31:60:16:16:ec:39:92:28:1d:
63:2b:ad:21:cc:1e:ee:47:fd:75:01:46:dc:01:28:
3c:9c:58:68:7c:82:d9:2b:88:a3:17:b8:cf:1d:bb:
65:cf:d5:54:e3:f6:e2:12:61:d6:e0:52:bc:7b:40:
60:48:e0:bd:ea:b9:d7:ff:24:c8:43:48:03:db:ca:
5b:a7:7d:38:dd:98:82:2d:99:91:d8:d1:41:8d:c7:
43:4a:4d:b1:fd:93:c1:44:9e:43:db:58:6e:98:31:
fe:de:14:d5:2c:ad:01:b8:d8:bb:1a:b6:12:5a:57:
b2:48:29:9a:f7:c2:dc:20:49:f6:b7:23:c4:b1:74:
c5:2c:36:4d:9b:9a:7f:a9:aa:b4:3f:8c:64:2b:e8:
80:1b:5e:81:3c:bf:05:05:a0:b4:9d:21:e3:c3:ee:
b3:8e:f0:52:df:a0:69:43:fa:15:6d:dd:12:f3:a4:
46:0b:42:ef:a4:bf:86:91:fa:9d:8c:8f:18:e0:fc:
f7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C4:D5:33:91:92:A3:96:21:DF:2B:76:C0:9A:C4:F9:75:82:77:BB
X509v3 Authority Key Identifier:
keyid:63:3E:75:2C:A0:DC:42:3C:74:F5:08:40:5B:A5:22:8A:8C:2E:51:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yz51LKDcQjx09QhAW6UiiowuUVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c8e214-8e45-4c96-8a79-de6187b7298a/1/GMTVM5GSo5Yh3yt2wJrE-XWCd7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c8e214-8e45-4c96-8a79-de6187b7298a/1/Yz51LKDcQjx09QhAW6UiiowuUVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.124.0/24
Signature Algorithm: sha256WithRSAEncryption
73:fa:2a:90:88:96:1f:2f:87:81:8f:71:45:28:a1:18:16:19:
bc:40:f5:a1:fe:e8:ab:f0:a6:da:83:ae:97:94:73:d2:d2:63:
ea:d1:6c:41:13:65:cc:2c:14:85:f9:00:5f:95:07:56:69:6f:
10:e2:55:bf:00:65:19:a6:2c:35:d2:45:b4:3b:c9:61:1e:42:
60:d4:bf:53:51:df:e5:77:f7:3f:78:94:77:3b:6e:13:f7:3d:
3a:8a:97:fe:35:d3:30:4b:65:b1:96:2d:85:f3:dc:a2:ba:b8:
0b:31:ea:69:65:57:25:50:56:c8:9e:d3:94:c5:93:38:0b:8e:
4d:fe:4d:15:e3:35:2a:49:f6:82:1b:6f:f2:1e:8c:8d:39:cf:
b9:98:fb:ae:82:31:9f:eb:f4:06:af:a9:12:0a:e6:2a:ec:e4:
8a:49:22:28:da:8a:71:89:f0:30:72:28:61:30:b1:8d:83:84:
bb:46:01:15:a1:91:73:c0:60:1a:11:43:72:8c:d3:1a:7e:c0:
3d:7a:5b:89:22:ba:cf:f9:03:ea:8f:90:52:8f:56:4d:f1:88:
27:1f:13:e5:3d:a0:96:f5:41:63:ec:2b:f4:12:d8:bd:51:87:
3e:8b:69:c4:1e:56:7e:18:b1:a8:92:ef:ec:bc:b9:f2:78:e0:
e2:e8:b0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:07 2025 by rpki-client