Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/GOshY57039H02yD-ojghXPM9e4I.roa
File: GOshY57039H02yD-ojghXPM9e4I.roa (raw, json)
Hash identifier: lrEalYwOZQLp0AKur56aQx649EbJ5p9qYAkHC1WJ6cw=
Subject key identifier: 18:EB:21:63:9E:F4:DF:D1:F4:DB:20:FE:A2:38:21:5C:F3:3D:7B:82
Certificate issuer: /CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Certificate serial: 386CABFC
Authority key identifier: A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/GOshY57039H02yD-ojghXPM9e4I.roa
Signing time: Wed 30 Mar 2022 05:24:12 +0000
ROA not before: Wed 30 Mar 2022 05:24:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41568
IP address blocks: 217.9.10.0/24 maxlen: 24
217.9.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 946646012 (0x386cabfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Validity
Not Before: Mar 30 05:24:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18eb21639ef4dfd1f4db20fea238215cf33d7b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:aa:51:42:0e:8e:fd:34:52:19:03:08:9f:37:
f8:0c:98:03:ce:43:7b:36:50:ce:53:fc:09:6c:d2:
d0:92:21:da:89:db:71:fd:c8:46:9b:7b:14:b5:c9:
55:35:85:10:26:f6:c9:21:99:24:2d:e4:4d:c3:16:
8b:5e:ee:e5:cf:2b:20:fe:68:6b:91:ad:ff:b5:34:
6e:5a:7b:9b:00:e7:bb:d2:f6:5d:45:e6:90:71:ec:
f7:5a:d8:19:2d:5d:b0:61:c3:cb:96:ac:ed:f7:b3:
b6:41:da:fc:42:e8:64:e9:81:de:98:13:c3:06:f7:
ff:d6:89:b2:16:c5:7e:20:f0:ef:7a:de:8e:94:ec:
a4:5b:c2:2c:26:86:c0:33:6a:62:cc:84:9f:2b:d6:
bc:17:7b:db:27:6e:2b:5c:3a:a7:e7:e5:cc:a0:41:
c7:dc:89:eb:d2:7c:36:ea:de:68:93:48:39:16:a3:
ad:e6:d9:4f:8f:8d:b5:cd:38:5c:18:b8:ee:e4:0c:
3b:06:20:64:e3:22:c4:1e:a3:26:4e:27:c5:7f:9b:
5c:06:d2:98:a3:fa:a8:ec:48:65:f8:96:6d:0e:21:
26:d1:1d:fb:39:31:d4:b9:25:86:bd:ca:a3:47:85:
8f:c1:5f:46:ad:31:94:21:38:42:25:59:c9:47:3a:
7f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:EB:21:63:9E:F4:DF:D1:F4:DB:20:FE:A2:38:21:5C:F3:3D:7B:82
X509v3 Authority Key Identifier:
keyid:A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/GOshY57039H02yD-ojghXPM9e4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.9.9.0-217.9.10.255
Signature Algorithm: sha256WithRSAEncryption
92:84:af:a4:ed:35:53:1e:f8:07:cd:00:27:df:bb:43:fc:bb:
01:53:78:35:28:dc:54:f7:76:93:7c:0e:26:94:0e:64:43:89:
5e:50:c7:72:10:85:c5:bb:46:8a:ed:4f:af:ac:c1:81:2d:eb:
3d:97:8d:23:f5:ca:a4:27:e9:b6:5c:44:72:aa:46:4c:1d:0f:
e2:e8:d1:18:0c:97:d1:49:59:25:f0:c8:2e:6b:48:c7:cd:a3:
48:27:4c:65:3d:05:ac:3b:2b:76:d7:e8:e3:39:97:83:08:fb:
f9:eb:cb:46:f9:80:73:8c:cd:f0:85:c2:f3:ba:80:c3:d7:39:
f8:db:74:b3:e8:0a:a7:05:30:24:63:af:e8:92:54:5b:0b:f6:
c3:68:8f:67:b9:ac:8c:47:cf:5a:f3:57:e7:82:00:ce:4a:7b:
df:f4:28:49:d0:15:81:8c:ee:85:03:b0:ed:38:c4:51:e5:55:
7e:9e:b4:58:04:1d:a5:28:47:df:4e:ea:94:23:71:d5:fc:32:
26:e4:ea:43:88:27:a6:9c:12:f8:08:30:15:7d:a8:ca:e8:68:
d8:c7:74:94:3d:cd:11:7c:b3:75:74:9d:ac:c4:c2:c7:12:49:
85:77:06:82:f2:e8:07:4e:0b:9c:65:33:91:51:61:f2:02:fb:
c3:e2:e6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:34:33 2025 by rpki-client