Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a01f82-9193-4199-95a8-83ae5d9c832f/1/gOvBSZRQBQeEC24DnAt7CLk9wpU.roa
File: gOvBSZRQBQeEC24DnAt7CLk9wpU.roa (raw, json)
Hash identifier: jBrbu3F6XD6kznUHRPklCFKbn2UWmIkGEBf6FqWDlXs=
Subject key identifier: 80:EB:C1:49:94:50:05:07:84:0B:6E:03:9C:0B:7B:08:B9:3D:C2:95
Certificate issuer: /CN=a59ac8323ebb6be20fae89d098ca24138f8c9005
Certificate serial: 378EC0FF
Authority key identifier: A5:9A:C8:32:3E:BB:6B:E2:0F:AE:89:D0:98:CA:24:13:8F:8C:90:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZrIMj67a-IPronQmMokE4-MkAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a01f82-9193-4199-95a8-83ae5d9c832f/1/gOvBSZRQBQeEC24DnAt7CLk9wpU.roa
Signing time: Sat 01 Jan 2022 11:54:51 +0000
ROA not before: Sat 01 Jan 2022 11:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24595
IP address blocks: 85.159.96.0/21 maxlen: 21
185.94.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932102399 (0x378ec0ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59ac8323ebb6be20fae89d098ca24138f8c9005
Validity
Not Before: Jan 1 11:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80ebc14994500507840b6e039c0b7b08b93dc295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:49:a6:78:53:ce:b8:03:11:2e:df:92:97:4a:
6f:09:fe:31:51:23:07:d1:30:69:e2:85:8f:59:43:
43:cf:dd:3c:f3:04:9e:5e:ee:c3:10:e3:80:b6:ad:
f1:68:c1:bc:54:94:5e:c9:e6:e2:92:b2:4a:11:2c:
3c:cf:14:70:a8:46:d7:b3:be:3e:4f:e3:8d:d0:32:
3d:9d:52:56:7f:b9:7d:2a:90:b0:0b:35:77:5c:8c:
a1:cc:64:83:12:36:d3:0a:b9:ff:47:05:ac:a5:1a:
f1:a8:1a:91:0e:2d:13:1c:01:28:7f:c5:d4:15:53:
e7:78:e4:ce:ec:57:85:16:19:93:66:75:f8:55:bb:
33:f5:74:ac:40:42:3a:41:48:9a:78:be:67:d7:a8:
35:b4:27:f8:62:e8:42:78:2b:45:81:21:b1:98:5c:
00:3a:64:b9:4f:dc:24:b8:35:1d:2e:db:64:41:da:
86:6a:0c:44:79:ab:44:58:72:7b:a0:28:0b:c3:79:
9d:7e:5f:08:e4:02:ca:65:1e:16:97:9e:77:9c:42:
ab:5b:6f:19:56:6c:cf:9e:a9:be:d7:d8:a9:d0:2d:
94:df:8e:3b:33:73:14:b0:8b:49:03:5d:ae:6b:8b:
3c:0b:50:3a:0d:7c:73:3f:a9:eb:db:91:d7:88:e6:
f4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EB:C1:49:94:50:05:07:84:0B:6E:03:9C:0B:7B:08:B9:3D:C2:95
X509v3 Authority Key Identifier:
keyid:A5:9A:C8:32:3E:BB:6B:E2:0F:AE:89:D0:98:CA:24:13:8F:8C:90:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZrIMj67a-IPronQmMokE4-MkAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a01f82-9193-4199-95a8-83ae5d9c832f/1/gOvBSZRQBQeEC24DnAt7CLk9wpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a01f82-9193-4199-95a8-83ae5d9c832f/1/pZrIMj67a-IPronQmMokE4-MkAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.96.0/21
185.94.120.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:e5:ee:68:a7:40:18:42:14:6b:90:b5:ec:e9:d4:36:02:4a:
17:9d:f4:18:e2:c9:28:18:b7:98:0e:26:76:53:39:ab:18:cb:
88:6a:94:8d:1f:dd:5b:38:d6:a2:05:80:f1:c2:55:d2:fe:a6:
38:c7:0d:e7:66:28:c6:a6:3d:4a:14:a5:68:1b:e9:76:1e:34:
68:47:48:05:66:c3:e1:af:30:01:a6:d7:7b:a9:e5:b7:c3:cf:
75:e0:64:01:aa:06:5d:ca:54:48:ef:7a:4f:78:c4:ee:50:3f:
6a:3b:74:15:2c:76:52:fb:54:79:57:20:93:0b:49:d3:1c:75:
3c:b3:de:c4:10:40:ab:3e:01:4c:1b:af:d3:34:b7:4f:2b:99:
fa:82:30:be:d5:76:46:b2:5d:79:8b:7e:50:b0:81:33:45:36:
b5:54:e1:92:07:b6:86:a3:26:3c:99:e2:bf:61:1d:9b:a5:ac:
ed:c7:71:81:47:d7:1d:74:f4:08:37:04:2b:d1:2b:02:31:b0:
80:0a:b9:35:60:e8:3f:81:fc:28:e7:6b:c9:c7:11:64:df:cd:
1b:97:7c:7d:bf:6a:63:22:43:45:72:81:c6:79:92:5a:1c:24:
a7:8f:d1:93:ca:a3:6f:6e:7e:d4:b6:f4:df:02:07:3d:1d:96:
f9:e2:ea:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:27 2024 by rpki-client on console-ams.rpki-client.org