Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/a1cd9c-c31e-4abf-b089-9e792b6f235d/1/GmzKOpQJn00B0NEAJK_6BYdsOvQ.roa
File: GmzKOpQJn00B0NEAJK_6BYdsOvQ.roa (raw, json)
Hash identifier: uYektAUWpO36b4MJeXLZxMrznofIrorh/rOSO/Aox4I=
Subject key identifier: 1A:6C:CA:3A:94:09:9F:4D:01:D0:D1:00:24:AF:FA:05:87:6C:3A:F4
Certificate issuer: /CN=cf8975746cbf1ff75ddec6cdb80acc85218184ce
Certificate serial: 1003FEEE
Authority key identifier: CF:89:75:74:6C:BF:1F:F7:5D:DE:C6:CD:B8:0A:CC:85:21:81:84:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z4l1dGy_H_dd3sbNuArMhSGBhM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/a1cd9c-c31e-4abf-b089-9e792b6f235d/1/GmzKOpQJn00B0NEAJK_6BYdsOvQ.roa
Signing time: Sat 01 Jan 2022 03:57:55 +0000
ROA not before: Sat 01 Jan 2022 03:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15943
IP address blocks: 194.55.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268697326 (0x1003feee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf8975746cbf1ff75ddec6cdb80acc85218184ce
Validity
Not Before: Jan 1 03:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a6cca3a94099f4d01d0d10024affa05876c3af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a5:78:71:ba:6e:3c:52:8f:54:d1:b5:e8:01:
2f:70:7a:e3:bd:5d:2f:a9:e8:3c:36:cd:8d:98:61:
08:5b:9d:e2:bb:2e:8e:25:d4:9b:ec:97:d2:37:f6:
e5:dd:ba:f0:2b:33:28:1d:b6:3e:06:d6:16:e9:4d:
20:f0:82:60:5a:f1:f5:19:fe:cb:6d:59:00:be:8e:
db:ff:90:6c:b5:c0:bf:76:51:7c:fe:67:86:af:f8:
c9:94:0e:0e:49:de:6a:4c:55:a0:9a:bd:43:9d:0d:
2e:8a:7e:c0:7c:a9:ae:c0:ca:ad:53:5a:a2:02:34:
d7:5d:1c:df:bf:d5:5b:f1:43:50:d6:5b:63:a1:98:
16:21:a8:90:a7:42:5d:24:3b:d0:83:54:c1:8b:df:
3b:03:66:34:dc:ad:5d:21:b9:92:4b:6b:85:91:f0:
10:7a:6b:e4:9f:d4:76:24:72:d1:1e:18:44:18:7c:
38:15:39:82:af:6b:f7:42:20:80:c9:3d:bc:b0:5d:
e3:69:1b:6a:8f:f4:ab:36:f4:bd:40:f4:57:2d:7c:
05:8d:8e:86:67:78:97:ae:c4:98:f4:f0:da:b8:ff:
7a:43:15:c3:a2:be:b6:12:50:e9:67:18:b5:22:1f:
77:de:c1:21:8d:8b:68:6b:55:61:f4:f8:81:cc:82:
de:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:6C:CA:3A:94:09:9F:4D:01:D0:D1:00:24:AF:FA:05:87:6C:3A:F4
X509v3 Authority Key Identifier:
keyid:CF:89:75:74:6C:BF:1F:F7:5D:DE:C6:CD:B8:0A:CC:85:21:81:84:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z4l1dGy_H_dd3sbNuArMhSGBhM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/a1cd9c-c31e-4abf-b089-9e792b6f235d/1/GmzKOpQJn00B0NEAJK_6BYdsOvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/a1cd9c-c31e-4abf-b089-9e792b6f235d/1/z4l1dGy_H_dd3sbNuArMhSGBhM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.55.144.0/22
Signature Algorithm: sha256WithRSAEncryption
81:11:86:30:42:e6:43:82:23:a6:5b:fe:1e:44:e1:f1:f0:3b:
73:35:fb:41:21:e5:93:b6:e1:5b:68:3a:53:fd:6c:4f:30:9f:
68:ff:34:f8:a6:71:48:c0:1a:b5:c1:68:3a:51:25:5f:17:f4:
c0:83:19:65:51:2f:dd:5a:6b:1a:67:f6:37:9b:fa:30:8d:42:
c3:61:27:ad:7b:4f:cc:6f:12:ac:41:42:04:2e:9f:fc:d2:a1:
c1:eb:05:1e:6d:28:20:01:29:8c:a5:a4:df:41:86:65:a4:10:
b9:f2:16:cd:7a:3d:ac:26:db:95:cf:7c:88:58:94:35:d3:a2:
cf:ff:d6:39:c5:34:25:62:71:7c:ee:f7:13:90:a2:94:bd:2b:
63:be:1e:fa:ec:2b:cb:92:0c:41:da:57:cf:89:b9:0f:e5:01:
f1:39:09:28:11:3d:cb:28:03:74:5b:5d:7b:1b:e6:8c:fd:94:
19:96:ee:89:4e:2c:32:82:97:65:cf:a0:c4:68:73:c8:08:66:
b8:40:59:f1:e6:ba:90:29:d1:00:ac:b9:0f:5c:2c:27:22:46:
e9:1b:e0:c6:f4:2e:ab:31:07:96:62:ce:ac:75:e5:c8:f4:8d:
4f:0b:e4:64:85:2e:a9:05:0f:97:55:7a:f6:b3:f7:97:01:1c:
42:da:c7:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:39 2024 by rpki-client on console-ams.rpki-client.org