Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/GZypuwNLf2agvGUhWQhSSMhsg70.roa
File: GZypuwNLf2agvGUhWQhSSMhsg70.roa (raw, json)
Hash identifier: j92tz6cGN5uBKTYYTQEEJrVCCz3BzKB2/ySDktLmsss=
Subject key identifier: 19:9C:A9:BB:03:4B:7F:66:A0:BC:65:21:59:08:52:48:C8:6C:83:BD
Certificate issuer: /CN=4eaefc49e6cd67e25996a2c0fc57b80cc23dba44
Certificate serial: 103ACFF0
Authority key identifier: 4E:AE:FC:49:E6:CD:67:E2:59:96:A2:C0:FC:57:B8:0C:C2:3D:BA:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq78SebNZ-JZlqLA_Fe4DMI9ukQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/GZypuwNLf2agvGUhWQhSSMhsg70.roa
Signing time: Sat 01 Jan 2022 11:53:44 +0000
ROA not before: Sat 01 Jan 2022 11:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.41.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272289776 (0x103acff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eaefc49e6cd67e25996a2c0fc57b80cc23dba44
Validity
Not Before: Jan 1 11:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=199ca9bb034b7f66a0bc652159085248c86c83bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:14:8b:54:e5:72:ab:61:a9:44:86:5d:de:
fc:50:ce:10:e5:1b:8c:f1:d7:ef:1a:b2:bf:5c:79:
92:ac:44:2f:79:c0:63:6a:5a:49:a6:c6:01:36:1f:
a7:cd:cb:46:b7:9b:83:a1:ca:aa:cf:8c:fc:4a:38:
af:0f:f0:db:13:dc:f0:96:fb:c1:65:74:fa:ac:99:
30:3d:86:a3:36:dc:c8:e4:df:f3:ed:3f:7e:91:9c:
aa:eb:55:2c:f8:90:8c:c0:b7:c8:85:e0:ca:ab:02:
e9:a0:75:e7:58:78:e7:70:89:e2:9b:c6:33:c0:13:
01:09:0b:d7:70:62:e3:a6:5a:b0:72:40:12:78:2a:
3a:33:45:cf:ea:37:48:3f:e2:7b:fb:60:d5:b7:67:
ec:d8:28:4d:67:80:e0:57:f9:5a:74:5c:3c:f5:42:
e5:55:cf:9e:fd:ee:16:07:21:8c:5b:27:95:32:03:
d0:bf:c9:46:24:f8:cf:62:1d:63:0f:51:8e:db:7e:
71:77:9d:2e:92:5a:12:6b:fa:ef:83:e7:bc:a6:a5:
e2:73:1a:2a:74:bf:d2:45:ce:e3:88:1e:7b:52:f8:
cc:18:56:74:95:f4:93:84:8a:b6:c1:38:c7:02:ab:
a8:c0:c3:cc:b0:b1:0f:54:82:87:71:a0:dc:15:b4:
7e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9C:A9:BB:03:4B:7F:66:A0:BC:65:21:59:08:52:48:C8:6C:83:BD
X509v3 Authority Key Identifier:
keyid:4E:AE:FC:49:E6:CD:67:E2:59:96:A2:C0:FC:57:B8:0C:C2:3D:BA:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq78SebNZ-JZlqLA_Fe4DMI9ukQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/GZypuwNLf2agvGUhWQhSSMhsg70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9f58f2-7919-4bfc-8f73-e7073cfe134f/1/Tq78SebNZ-JZlqLA_Fe4DMI9ukQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.41.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:ed:a8:8f:7a:53:cf:60:dc:dc:90:c2:f3:4c:2f:cc:88:69:
0e:94:34:d2:0d:e1:ad:02:f9:21:c3:41:29:ef:25:cb:9c:0c:
3d:b9:ae:b2:79:07:5b:7f:80:4a:6a:f6:f5:da:eb:22:ac:67:
96:45:ce:32:d7:59:5d:51:d4:fa:1f:d4:2c:16:9b:a8:c2:8f:
7b:c2:1f:b0:3a:69:f2:cb:30:88:7f:71:43:8f:a9:c5:bc:f9:
b0:70:9e:3e:b3:34:76:ba:54:3a:6a:2c:c2:8e:51:e5:27:5e:
f6:50:7a:f1:1e:b1:f8:76:f3:dd:48:4f:7e:24:fb:e6:49:7f:
22:06:1f:57:bb:90:2d:f7:0c:db:6f:59:27:d9:20:7c:e1:42:
29:9a:9e:1f:fc:bd:bf:aa:55:19:a7:25:c1:07:f2:34:c5:93:
bd:5c:ee:ca:72:97:06:ea:f8:fb:a7:b6:8e:f6:76:43:21:df:
02:6d:91:b1:14:76:b6:30:a9:c9:fa:40:67:0a:45:25:c1:27:
64:d8:c1:27:3c:35:a5:74:e2:3e:b4:da:da:80:0d:ce:6c:b3:
2d:62:b3:0b:85:39:59:85:e7:dd:fb:9d:7b:5e:1b:b7:af:74:
94:78:57:9a:9e:28:cd:87:a9:27:d8:04:27:90:bb:35:81:60:
a2:5d:17:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:05 2024 by rpki-client on console-ams.rpki-client.org