Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/Gj3T57K0CKAmMyEF8ZYHRXds6uk.roa
File: Gj3T57K0CKAmMyEF8ZYHRXds6uk.roa (raw, json)
Hash identifier: xYdWwjHlWEB321xJNSqRI2s9u09F5Z29yc0PS53Pszs=
Subject key identifier: 1A:3D:D3:E7:B2:B4:08:A0:26:33:21:05:F1:96:07:45:77:6C:EA:E9
Certificate issuer: /CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Certificate serial: 018485FCB045A68CD8AFDE29B32A1A8C703B
Authority key identifier: D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/Gj3T57K0CKAmMyEF8ZYHRXds6uk.roa
Signing time: Thu 17 Nov 2022 14:27:20 +0000
ROA not before: Thu 17 Nov 2022 14:27:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48940
IP address blocks: 5.182.84.0/22 maxlen: 24
46.254.92.0/23 maxlen: 24
77.232.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:85:fc:b0:45:a6:8c:d8:af:de:29:b3:2a:1a:8c:70:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Validity
Not Before: Nov 17 14:27:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a3dd3e7b2b408a026332105f1960745776ceae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4c:7b:85:ef:b2:8e:c1:f4:39:d4:6c:96:35:
b5:07:f5:02:71:02:b2:7f:c4:08:b2:e6:24:0c:79:
93:5f:f3:4b:73:f1:2b:0b:a0:fc:0b:96:cf:71:30:
0b:b5:80:d3:80:0c:c6:18:00:f0:43:66:07:de:8d:
29:a0:c7:c5:1f:27:fe:c8:0a:9a:5f:2e:f7:90:95:
d3:64:c5:08:78:d4:bc:08:92:fa:ce:18:8e:fc:8a:
5f:f0:72:4a:65:c1:e5:90:10:e8:24:ab:6a:3c:58:
57:56:cc:71:aa:c2:b2:2a:62:45:d2:d3:21:49:21:
a8:9b:91:46:9b:ea:2b:6f:5e:b6:c0:0a:da:86:68:
fb:d7:23:2b:fb:f8:ba:b6:86:64:26:d1:8a:a1:bb:
8b:c2:d4:e4:3b:64:25:40:b7:f5:f3:e8:28:c9:14:
f4:2b:a2:40:ad:0b:1c:71:42:ac:e1:bc:ca:b8:98:
29:eb:92:17:2b:23:8b:98:05:e5:15:5c:cf:9d:fb:
00:cd:ad:5f:0d:34:31:d4:d9:10:56:3e:1b:17:a6:
1c:c4:81:dc:ca:f2:da:2f:ca:2c:cd:fd:ce:55:63:
34:5f:57:7f:65:e9:7a:d9:d8:63:40:77:29:1d:31:
15:98:86:08:fb:c8:26:77:6e:c0:6f:bf:ad:4f:0b:
2c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3D:D3:E7:B2:B4:08:A0:26:33:21:05:F1:96:07:45:77:6C:EA:E9
X509v3 Authority Key Identifier:
keyid:D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/Gj3T57K0CKAmMyEF8ZYHRXds6uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.84.0/22
46.254.92.0/23
77.232.140.0/22
Signature Algorithm: sha256WithRSAEncryption
33:15:51:7d:75:e7:da:be:fc:81:db:5e:84:39:57:d0:7c:a8:
4c:5f:9a:a8:df:8e:2f:58:a2:fa:5b:a6:56:dd:c6:80:e6:f4:
a9:84:73:fe:2b:01:e0:62:c2:2e:32:53:ae:94:b0:c3:83:4f:
3b:c6:a9:aa:8e:77:85:5c:86:e3:fc:d5:9a:8a:9d:1e:45:7f:
c4:c5:c0:3f:3e:32:df:4c:49:b9:aa:f9:f3:5e:35:23:40:e3:
cc:66:74:7f:ba:bd:8b:07:48:f6:94:64:92:9a:74:2b:d5:dd:
ca:c3:9f:76:35:34:34:84:b2:f6:fe:01:c8:83:78:f9:36:76:
53:8a:cd:83:9c:96:0d:33:db:2a:7e:34:f3:2e:9c:66:13:b2:
99:9c:0c:cd:a5:a2:b8:b4:dd:eb:f2:c2:a5:85:9b:dc:d8:e0:
7b:2d:95:f4:78:f6:44:55:84:97:4c:41:ca:09:63:14:d6:d6:
5c:1f:59:14:ca:18:e0:06:8b:74:77:02:c8:33:70:1c:fd:d6:
b3:1a:ef:19:8c:09:cc:99:14:c0:82:8e:87:3f:5b:63:96:73:
29:2e:75:51:91:4c:be:6e:b3:69:cb:c5:8e:cb:36:ab:d0:87:
67:b3:b5:86:49:83:ac:7c:23:c3:9e:b2:2b:e7:08:bf:f4:bf:
29:b4:90:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:51 2023 by rpki-client on console-ams.rpki-client.org