Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/GM2Pa734q3b0ezZjrBRYFSkNLrk.roa
File: GM2Pa734q3b0ezZjrBRYFSkNLrk.roa (raw, json)
Hash identifier: TRRcI0CsL1JIP3ehi4yLMK8wrHzolNzw94pD/mutMhA=
Subject key identifier: 18:CD:8F:6B:BD:F8:AB:76:F4:7B:36:63:AC:14:58:15:29:0D:2E:B9
Certificate issuer: /CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Certificate serial: 0FF9EBB6
Authority key identifier: DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/GM2Pa734q3b0ezZjrBRYFSkNLrk.roa
Signing time: Sat 01 Jan 2022 16:04:11 +0000
ROA not before: Sat 01 Jan 2022 16:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39787
IP address blocks: 195.5.112.0/23 maxlen: 23
5.44.64.0/21 maxlen: 21
2a00:e48:8000::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268037046 (0xff9ebb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Validity
Not Before: Jan 1 16:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18cd8f6bbdf8ab76f47b3663ac145815290d2eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fa:d5:7c:ed:1f:1e:15:fd:f0:df:2d:42:f5:
b1:22:73:ea:74:2d:b9:84:61:6f:cf:c1:75:8e:02:
84:06:f8:b4:9d:eb:1f:62:e7:cb:6d:89:34:9e:b6:
c1:ee:f3:c7:8f:ae:92:72:ff:e8:af:25:46:7a:b6:
2d:be:27:53:12:a0:5f:4b:2b:e9:42:10:e0:94:fe:
9a:7c:aa:40:c4:ac:27:a5:1c:bc:a8:9f:92:f5:af:
c4:e3:0f:5b:b8:da:1c:2c:d4:3a:5f:3c:df:fd:6e:
c4:91:f3:20:82:da:41:64:ba:58:c7:a5:f3:1b:fe:
55:bd:2c:c9:58:40:25:84:44:de:cf:4f:3c:c2:80:
7f:55:78:5f:ab:01:e2:53:69:2a:11:83:7e:77:b1:
22:5a:13:e9:62:96:31:9c:56:45:9a:1a:b8:9b:e5:
46:08:f3:13:11:63:b7:0c:67:7b:94:be:6e:74:62:
ec:c2:ec:b0:d4:f9:5e:f2:bd:d8:2a:4b:b3:ce:1a:
c9:87:a7:ee:01:a5:39:f6:38:85:32:1c:39:4b:eb:
49:a7:6a:70:e5:2c:eb:6a:8d:0c:25:ae:50:c3:51:
80:1d:eb:fc:35:04:78:96:aa:a5:c9:45:d1:1d:95:
58:e7:c5:97:97:64:ef:1c:08:4d:48:29:e9:82:de:
cd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CD:8F:6B:BD:F8:AB:76:F4:7B:36:63:AC:14:58:15:29:0D:2E:B9
X509v3 Authority Key Identifier:
keyid:DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/GM2Pa734q3b0ezZjrBRYFSkNLrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.64.0/21
195.5.112.0/23
IPv6:
2a00:e48:8000::/33
Signature Algorithm: sha256WithRSAEncryption
1b:c5:0b:93:df:c8:3b:e4:5b:b9:a3:85:c6:68:a5:91:a3:f5:
7d:e1:83:21:91:68:d5:3f:d1:a4:6c:05:db:43:bf:1d:a5:86:
d6:a8:17:d0:1b:79:a2:d6:b6:b2:ee:03:a4:e8:24:d8:93:c2:
6d:e8:f3:91:17:c4:73:e5:8b:85:99:d5:1f:f4:15:4d:0e:26:
0f:a2:09:7b:1f:12:89:4b:2b:90:f6:0f:fc:af:3f:c9:7c:91:
f3:a6:97:22:b9:c5:2e:16:40:f4:50:fe:6e:ea:8c:81:59:eb:
12:42:02:27:5c:3b:12:dc:85:15:d4:00:ec:6a:14:f0:b0:e2:
a9:a5:28:71:a9:71:85:69:cc:e8:ff:0e:f9:2a:1d:0f:fc:ed:
06:b4:2b:45:3d:2b:3d:c1:a1:c4:6a:8e:62:6b:0b:fd:79:63:
e4:37:76:f4:e8:e9:cd:ce:3a:bf:a5:5f:7e:97:bd:19:c8:bb:
87:a4:74:57:b2:d0:c1:d9:eb:6a:6b:c2:af:95:f0:7b:1c:42:
9a:6a:59:dd:8c:31:20:e1:54:54:ee:06:0b:e7:8b:9e:ec:e3:
7c:58:b3:40:3d:81:7b:d8:32:85:41:9f:e8:24:92:d0:50:04:
a8:16:b8:42:e9:01:60:be:30:c6:25:72:3c:1c:6e:28:da:b6:
a3:44:1c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:26 2024 by rpki-client on console-fra.rpki-client.org