Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gVO05hp4uyo92SgTysEmymqxuOA.roa
File: gVO05hp4uyo92SgTysEmymqxuOA.roa (raw, json)
Hash identifier: P9Of68QjnHIpSn2erZm38vZzcbebJM95A9Powaoriq0=
Subject key identifier: 81:53:B4:E6:1A:78:BB:2A:3D:D9:28:13:CA:C1:26:CA:6A:B1:B8:E0
Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Certificate serial: 0AA9962E
Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gVO05hp4uyo92SgTysEmymqxuOA.roa
Signing time: Sat 01 Jan 2022 02:57:53 +0000
ROA not before: Sat 01 Jan 2022 02:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20884
IP address blocks: 160.218.96.0/21 maxlen: 21
160.218.104.0/21 maxlen: 21
160.218.112.0/20 maxlen: 20
160.218.176.0/21 maxlen: 21
160.218.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178886190 (0xaa9962e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Validity
Not Before: Jan 1 02:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8153b4e61a78bb2a3dd92813cac126ca6ab1b8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:76:dd:35:ff:6d:d6:fa:43:1a:d2:78:85:d0:
8b:38:26:18:73:39:3f:87:b8:19:6d:3f:d8:e7:df:
b8:78:b5:85:9c:1b:4f:0a:59:51:2c:cb:e8:8c:07:
47:74:0b:6e:dc:a4:81:74:ae:e9:2b:1a:09:6d:b8:
3f:5d:44:94:66:f5:9d:35:36:ec:ca:ce:17:bf:f8:
5b:19:ae:0e:89:9f:77:fa:c7:18:ed:da:17:cc:0d:
c6:f8:a3:a2:58:d5:c8:72:4d:91:b8:fe:ad:77:08:
85:17:fe:cd:57:e7:e8:a7:5a:11:64:e0:03:82:e2:
cf:c0:f5:2a:cf:2e:04:91:f1:b5:4b:09:bd:59:48:
f3:e9:3a:7d:43:a6:ee:95:21:98:3e:24:1c:36:c3:
e9:29:b8:50:47:fa:aa:76:05:b6:1a:52:e8:0f:39:
be:98:f1:20:91:cb:03:a3:34:5c:22:1d:7f:2b:c3:
14:68:ba:54:ff:55:1c:43:bb:8a:da:fa:f2:11:64:
f5:34:35:1e:71:be:69:51:79:1a:d0:ae:db:9d:59:
7d:ac:02:f0:fe:de:0d:d8:71:f7:96:05:d7:45:94:
ce:4e:01:e1:92:80:fe:20:5a:f6:22:a9:e9:23:ef:
1d:dd:51:f0:dd:ec:2c:dd:4e:b6:16:ef:1f:da:ff:
43:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:53:B4:E6:1A:78:BB:2A:3D:D9:28:13:CA:C1:26:CA:6A:B1:B8:E0
X509v3 Authority Key Identifier:
keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/gVO05hp4uyo92SgTysEmymqxuOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.218.96.0/19
160.218.176.0/20
Signature Algorithm: sha256WithRSAEncryption
5b:66:ff:a7:7a:56:70:97:0f:08:dc:b0:20:47:50:e8:d0:c9:
41:eb:b2:aa:37:04:b5:13:96:cb:f2:b7:99:f3:cd:21:17:96:
ad:1c:25:fe:7b:c1:99:5e:5f:89:b0:6b:3e:46:0b:be:9e:ea:
a2:25:71:3c:19:5d:f4:2e:eb:37:45:bc:ad:c3:bc:16:ae:07:
65:35:17:e8:f1:3f:d5:05:cd:10:e9:b7:23:a4:2f:71:be:f6:
0c:5b:f4:a0:01:aa:80:ef:8e:89:3b:89:a2:09:0e:06:e1:56:
60:bc:c5:3e:31:58:4c:3f:0f:18:9d:88:8a:7c:5b:0a:a5:d1:
13:75:8a:39:bf:ef:50:01:db:d8:e6:0c:60:93:6b:ef:24:27:
d1:cc:a2:80:44:6b:7b:9b:45:6d:30:11:a8:e8:2f:51:61:39:
f7:13:8c:c5:ba:e5:a2:1d:1c:c8:55:39:57:c6:b5:52:19:35:
84:c0:5a:e8:1f:93:cd:a0:00:08:d2:cf:c7:c9:71:c7:6f:09:
16:d7:a2:59:22:f6:42:e2:bb:46:ab:0d:91:c0:d9:85:5e:fc:
30:d8:7e:a2:8c:85:f1:82:9e:ad:0a:45:16:49:c9:43:e0:fe:
3d:fa:75:69:2b:2f:cf:a7:e0:30:39:94:b6:51:f9:b4:3b:dd:
b1:6e:3d:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org