Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/GSPujrRfi4sanNzV3FuIDtOd5Ws.roa
File: GSPujrRfi4sanNzV3FuIDtOd5Ws.roa (raw, json)
Hash identifier: CIHGrs0CRtiD+yp+nczApJeK752AjlO+OubYOEk8ZYY=
Subject key identifier: 19:23:EE:8E:B4:5F:8B:8B:1A:9C:DC:D5:DC:5B:88:0E:D3:9D:E5:6B
Certificate issuer: /CN=f0c49c2178e82fdc1f419f5a7c51721df53d7a48
Certificate serial: 0535D339
Authority key identifier: F0:C4:9C:21:78:E8:2F:DC:1F:41:9F:5A:7C:51:72:1D:F5:3D:7A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MScIXjoL9wfQZ9afFFyHfU9ekg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/GSPujrRfi4sanNzV3FuIDtOd5Ws.roa
Signing time: Sat 01 Jan 2022 12:57:28 +0000
ROA not before: Sat 01 Jan 2022 12:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20495
IP address blocks: 185.52.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87413561 (0x535d339)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c49c2178e82fdc1f419f5a7c51721df53d7a48
Validity
Not Before: Jan 1 12:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1923ee8eb45f8b8b1a9cdcd5dc5b880ed39de56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:2e:e9:40:ec:cc:53:0f:71:7e:42:b0:e8:
b4:3e:0e:4a:fe:07:6c:e9:b3:7f:a3:e6:57:eb:06:
df:4f:04:d3:b3:0d:fa:f7:49:b0:3a:db:01:9b:cb:
f1:69:39:f8:c5:f2:5e:2a:14:25:aa:c1:0a:97:ea:
02:fa:06:7c:0e:64:f4:7c:fe:43:f3:37:d9:b3:4d:
eb:b1:68:07:c4:a2:ee:c5:a3:2f:25:c1:f7:13:36:
02:b7:54:07:76:a0:de:2c:fb:8f:11:09:f3:6f:ab:
55:ee:a6:10:74:64:61:29:5f:ec:e4:e0:a7:b7:7d:
40:f7:66:4d:9d:89:94:37:d5:06:97:99:b7:4e:41:
7c:93:05:e6:da:96:d9:fd:1f:e5:b2:a7:a5:95:82:
9f:bd:dc:50:5b:d7:fa:0f:c1:90:09:71:33:b2:49:
f0:52:ce:3b:a7:34:40:4a:66:2e:75:bb:b1:71:1e:
b0:57:d0:c6:25:b7:f8:12:9f:7c:75:19:d7:a2:5a:
83:99:b8:51:75:81:ff:ed:0c:51:bf:57:40:c3:c9:
a4:9a:a9:90:aa:64:4f:b4:d6:20:4a:a2:67:3d:76:
ad:2f:d0:89:2d:3d:5c:f6:a9:8b:2f:a4:e6:cc:01:
6d:ca:62:fb:3e:ed:4c:14:0b:78:85:d0:10:19:c5:
a2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:23:EE:8E:B4:5F:8B:8B:1A:9C:DC:D5:DC:5B:88:0E:D3:9D:E5:6B
X509v3 Authority Key Identifier:
keyid:F0:C4:9C:21:78:E8:2F:DC:1F:41:9F:5A:7C:51:72:1D:F5:3D:7A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MScIXjoL9wfQZ9afFFyHfU9ekg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/GSPujrRfi4sanNzV3FuIDtOd5Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e22fea-84d0-406a-8a6f-46f5fa2c9303/1/8MScIXjoL9wfQZ9afFFyHfU9ekg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.60.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:2e:06:c9:63:6c:19:5f:30:5d:44:49:3c:b1:10:e0:50:e4:
8e:1b:33:0d:7a:ec:bd:82:99:1d:99:10:0a:a7:d0:32:7b:97:
6a:6b:53:3a:69:ce:54:01:7e:2d:84:b0:e0:77:90:c5:fa:72:
95:12:f2:ec:ed:42:f7:7f:ca:c3:28:e6:9b:7f:0f:03:58:4d:
11:dc:6a:6b:7a:9e:87:14:bf:c0:c3:49:8d:0b:3b:b0:0a:0b:
7e:10:3f:84:1f:5e:60:bc:fa:7d:8d:0b:cb:b3:5b:fa:6a:25:
69:0a:bd:64:5e:be:d1:8c:76:9a:50:10:d2:0e:63:a8:ff:ff:
0e:63:43:67:31:f3:c5:59:23:87:ac:50:95:88:cd:6d:c7:62:
50:9e:23:81:fd:ef:80:85:62:0c:e2:f0:e0:03:01:88:f4:3a:
68:9e:22:85:a6:c6:1b:e4:b3:70:6f:df:a0:33:76:76:12:04:
40:00:84:dc:8b:bf:61:ac:1a:1c:81:19:13:b0:99:ad:d2:b1:
06:53:19:35:79:e8:e6:58:8b:87:7b:80:07:9d:b9:d3:b5:38:
b0:7e:b2:32:af:b8:15:33:c8:31:03:d3:3e:14:1c:24:15:8e:
f1:d7:46:d1:21:e4:ab:13:0d:d7:ef:54:cd:fe:67:b8:80:b1:
8c:ca:23:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:38 2024 by rpki-client on console-fra.rpki-client.org