Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gADsL9OjcSLeYGjYA6t97hFgp60.roa
File: gADsL9OjcSLeYGjYA6t97hFgp60.roa (raw, json)
Hash identifier: SP9OSodS2eXIjRTlQNjpy+PvTw/K8Do7tQx6n+r0Ebg=
Subject key identifier: 80:00:EC:2F:D3:A3:71:22:DE:60:68:D8:03:AB:7D:EE:11:60:A7:AD
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A54F9D0
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gADsL9OjcSLeYGjYA6t97hFgp60.roa
Signing time: Sat 01 Jan 2022 14:56:29 +0000
ROA not before: Sat 01 Jan 2022 14:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60320
IP address blocks: 5.160.78.0/24 maxlen: 24
46.209.0.0/24 maxlen: 24
46.209.0.0/23 maxlen: 23
46.209.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 978647504 (0x3a54f9d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8000ec2fd3a37122de6068d803ab7dee1160a7ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:59:0a:6f:02:b1:d7:12:19:f3:14:c1:88:57:
54:1c:94:d8:77:95:9f:1a:f8:eb:87:31:65:ac:b5:
26:d8:53:ea:cd:d7:de:26:94:3d:8e:eb:8b:a2:49:
0f:dc:42:40:a8:5c:c2:66:6e:aa:96:6f:99:03:9d:
8a:08:46:fa:65:dc:8d:d4:8f:b6:32:f9:ad:bf:46:
3a:90:85:d4:f4:20:ea:0d:a5:4a:9c:3f:45:23:9b:
c8:8d:20:28:5d:21:83:7a:75:62:dc:bf:bc:18:ba:
85:36:44:35:5b:20:9e:17:4e:2c:56:21:39:60:74:
e7:49:46:76:f5:e7:e2:e8:7c:72:81:72:0f:14:3a:
0d:81:5e:45:1f:27:33:09:5b:d8:1b:aa:96:6e:c7:
34:23:3e:9b:7b:e5:30:cd:3c:97:e9:53:81:47:2b:
5f:35:8f:42:b9:cb:48:8c:8c:bf:e2:72:af:86:06:
66:47:f0:f6:66:0e:ed:b6:7f:5a:a1:22:5c:f7:74:
d1:f2:f2:74:1f:ce:cf:85:1f:5e:38:9a:6c:f0:1c:
76:5d:11:3d:10:75:20:92:15:b7:a1:81:d3:03:3c:
25:76:46:0a:05:ea:d0:e2:12:7c:f2:75:2a:95:d0:
ae:13:47:37:9e:3f:57:95:72:61:bc:7a:9d:30:9c:
19:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:00:EC:2F:D3:A3:71:22:DE:60:68:D8:03:AB:7D:EE:11:60:A7:AD
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gADsL9OjcSLeYGjYA6t97hFgp60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.78.0/24
46.209.0.0/23
Signature Algorithm: sha256WithRSAEncryption
33:4f:7a:4c:f3:27:4d:98:81:c1:24:fc:0c:29:5b:02:76:14:
52:10:2e:38:92:ed:db:97:bf:1d:c3:e9:ce:25:a1:ea:5c:06:
4a:c5:48:09:57:0d:88:46:d9:28:59:68:36:66:43:63:3b:7f:
9a:26:b7:64:82:f8:ed:25:0c:99:6e:94:f3:47:df:34:63:1c:
dc:c0:c6:c8:e9:39:25:4b:e8:69:78:69:a7:0b:a6:e9:f9:1a:
e4:3d:b3:6f:ae:81:14:bc:14:84:a5:8d:64:ee:e1:f3:a2:88:
cc:b0:d0:ec:8b:0b:21:42:e7:da:57:8c:03:16:76:5f:ac:9f:
63:ed:54:97:c9:45:e6:39:c4:be:89:1a:29:44:4c:9e:47:4f:
88:74:0a:8b:87:a6:ca:43:46:f3:d5:53:6e:07:86:a4:41:c2:
47:a3:19:0e:fb:10:1c:4a:95:bf:94:56:24:48:9d:6b:9a:79:
b6:cc:12:c9:4f:5e:6c:81:df:b3:4f:27:21:be:64:0c:9a:f9:
fd:f2:26:a9:39:0a:d4:af:8b:be:5d:81:9a:5f:e2:f3:e1:92:
1b:8b:7a:ab:49:14:82:c1:38:a5:7e:db:0a:b6:82:b9:17:c2:
50:76:68:16:d1:82:97:c7:96:16:c7:c6:8c:45:89:d5:e9:39:
2f:9e:f0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:06 2023 by rpki-client on console-ams.rpki-client.org