Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/gbIFoxQGU8TXdTNsdgbAAbxDBFc.roa
File: gbIFoxQGU8TXdTNsdgbAAbxDBFc.roa (raw, json)
Hash identifier: qc/QUUee0NIs9fts7OuwIErWK/UMxL+HXNerGXPS9ws=
Subject key identifier: 81:B2:05:A3:14:06:53:C4:D7:75:33:6C:76:06:C0:01:BC:43:04:57
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 070BEAAB
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/gbIFoxQGU8TXdTNsdgbAAbxDBFc.roa
Signing time: Sat 01 Jan 2022 03:54:14 +0000
ROA not before: Sat 01 Jan 2022 03:54:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211632
IP address blocks: 5.181.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118221483 (0x70beaab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81b205a3140653c4d775336c7606c001bc430457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:1b:88:de:aa:c4:5b:e7:6f:be:23:9e:3b:
34:08:8e:45:68:aa:32:9a:70:54:27:8f:c7:05:7e:
2e:65:28:c0:76:90:1f:95:df:3c:d8:98:3d:56:20:
d5:49:47:92:94:73:b3:00:b1:2b:38:2e:b1:1e:6b:
4c:f5:7e:f2:86:ef:7c:a5:95:15:61:9a:4d:54:64:
5a:80:06:56:82:a1:1b:fc:47:3a:54:f6:dd:0e:e8:
c0:52:ea:4a:fa:c8:ee:16:b7:8e:c2:19:68:42:a0:
7f:0e:84:a4:0c:c4:7e:62:c3:f1:36:d9:16:34:26:
46:22:2c:4a:ff:55:d6:2e:ab:50:ae:33:0d:c9:cb:
7f:7e:bd:92:fd:36:8a:a1:39:dd:c8:65:b1:3e:36:
6f:3d:77:19:fd:a7:fc:ad:44:a8:1b:be:95:21:9c:
10:ad:80:4d:9c:79:16:a2:33:cc:23:84:b9:a9:8a:
54:57:f3:cd:ad:97:85:49:5e:3f:ba:69:ce:bf:9a:
9a:b5:22:d4:a0:66:18:4b:3a:48:39:42:f3:64:ed:
67:96:bd:40:c3:fb:b0:d4:94:d3:7d:ed:2b:45:24:
c2:5f:98:3e:25:9a:e9:46:3e:7b:72:60:a1:e1:b9:
b9:5f:ed:12:57:18:62:62:73:53:d0:87:37:5d:ec:
4e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B2:05:A3:14:06:53:C4:D7:75:33:6C:76:06:C0:01:BC:43:04:57
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/gbIFoxQGU8TXdTNsdgbAAbxDBFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.86.0/24
Signature Algorithm: sha256WithRSAEncryption
15:c5:23:f6:80:14:8b:1e:b4:82:ec:04:86:dd:78:15:bb:13:
ac:5f:55:86:ff:18:45:5b:85:bf:b1:d6:13:fd:c3:47:18:ef:
4b:c6:be:f6:38:d6:f4:e0:e4:a0:37:d7:f3:3f:d4:ac:32:76:
cc:a7:04:d6:24:e6:59:67:57:01:23:26:48:80:82:1c:18:fc:
5f:5f:80:51:41:14:b1:60:03:b0:a6:85:e1:57:c0:b4:42:88:
aa:e4:af:27:c3:22:0f:8c:aa:d3:a4:43:94:ec:f5:80:f2:7c:
3f:af:74:3f:d0:55:34:b9:ad:d6:f4:70:35:66:39:66:6c:a0:
ee:1a:3d:d7:fd:4b:eb:70:00:35:3d:29:2b:c7:87:38:04:c4:
92:36:d3:7b:ad:01:30:f1:62:e5:0a:1b:55:8b:42:c3:30:4e:
1e:ca:1a:b5:ee:1d:01:4d:c6:5c:12:56:86:04:e7:c3:7e:22:
d3:85:e6:f4:e1:05:3d:fe:de:57:95:95:16:67:fc:af:09:bf:
67:fd:3c:11:e4:88:f4:be:53:c2:02:6e:0a:da:40:9d:b3:d0:
9b:28:a3:36:5a:23:2d:ad:ba:4b:ed:2c:21:29:75:12:e9:f6:
f7:68:78:7e:ba:90:26:ad:07:c8:63:06:23:eb:44:d8:05:76:
09:e8:31:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org