Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/GMduoq37ic8IXoccemqQ6CyDKuo.roa
File: GMduoq37ic8IXoccemqQ6CyDKuo.roa (raw, json)
Hash identifier: g70tXaQBIzIpcjd6Cu4FXOrhJI5BSAU6Sj9xE4d6D0s=
Subject key identifier: 18:C7:6E:A2:AD:FB:89:CF:08:5E:87:1C:7A:6A:90:E8:2C:83:2A:EA
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 0103E259
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/GMduoq37ic8IXoccemqQ6CyDKuo.roa
Signing time: Wed 08 Jun 2022 05:34:03 +0000
ROA not before: Wed 08 Jun 2022 05:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.244.107.0/24 maxlen: 24
45.155.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17031769 (0x103e259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jun 8 05:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18c76ea2adfb89cf085e871c7a6a90e82c832aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9b:d6:75:bd:a0:97:ce:0b:08:7c:aa:ba:b1:
7a:75:c7:47:12:79:a1:5f:5e:82:e8:15:fb:7e:50:
67:f8:50:a2:1b:4b:b1:a7:50:6f:10:ab:cf:14:e7:
25:59:18:92:73:32:0a:31:8b:76:74:70:35:0f:71:
c3:a3:d6:4c:61:90:15:bb:61:8c:df:98:bf:d0:2f:
02:d4:13:a4:d8:5a:b9:14:7a:1c:68:33:e2:f7:47:
7b:ab:fc:0a:a9:d7:d9:ca:92:25:d9:03:81:57:0d:
49:4e:fd:54:19:06:29:04:8e:0e:8c:39:71:f8:84:
6f:e1:7b:7d:0c:22:37:7e:c3:f7:0d:6b:c3:0f:2a:
52:26:bf:6a:83:65:3c:d3:d3:de:be:75:b8:e3:6f:
b6:bc:b3:53:f7:3b:89:74:06:b9:45:18:da:34:de:
3a:00:ef:35:47:d9:d9:3c:32:ca:25:52:ef:66:59:
b0:68:7f:4a:02:f4:d5:e2:0d:ec:7d:0d:83:fc:47:
9c:2c:62:87:53:97:e9:54:d6:58:00:d4:c6:dc:0b:
6b:5c:f6:2c:db:32:45:3e:c0:9a:03:bd:6c:c6:44:
94:f5:91:e9:e4:cd:44:8e:0c:bc:4a:d4:1c:4c:34:
be:7f:7b:3c:aa:16:66:83:1b:d2:24:5f:c0:e4:1c:
a6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C7:6E:A2:AD:FB:89:CF:08:5E:87:1C:7A:6A:90:E8:2C:83:2A:EA
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/GMduoq37ic8IXoccemqQ6CyDKuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.66.0/24
185.244.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:59:ff:28:1f:f4:30:60:e4:53:11:11:95:d7:4f:ee:71:ec:
2a:75:70:82:b1:07:fc:2e:28:5e:ff:ec:6b:94:76:70:a8:0a:
66:60:83:6e:da:62:6d:80:93:22:b6:cb:a8:8c:96:8b:cd:4f:
8c:82:63:f8:f9:4e:51:b8:9b:f9:97:7f:18:01:92:96:5b:8c:
a7:b4:95:fe:b6:11:72:e0:94:5f:8e:9d:8d:15:8b:13:28:c4:
81:ee:60:4e:96:e5:3b:cf:db:b7:5f:ae:bd:40:04:5e:e4:2b:
83:ad:d4:94:1d:24:3f:15:0d:be:c0:4b:de:30:7f:4b:b8:ed:
80:bf:35:e9:ce:67:70:8e:b0:27:7e:0a:55:a3:13:95:67:ac:
dd:fd:be:de:56:2b:63:ef:22:7a:f8:96:a1:0f:e8:d5:26:ba:
91:c7:b3:36:9a:7f:b9:1d:b7:cf:94:1e:c7:8c:61:9f:41:5f:
5b:28:04:b0:de:9d:80:00:9a:e6:2c:4c:37:27:1f:d5:e7:44:
42:29:0d:c6:af:54:7e:db:c5:b4:cb:83:08:6e:07:d8:45:6a:
07:fa:a3:b5:b8:71:80:fa:65:b8:b8:8b:3e:8b:96:42:9c:39:
ea:6f:97:af:70:98:e3:92:79:1a:f4:93:d7:6c:cf:88:75:5c:
e0:4c:5e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org