Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/GnpZZAaaKWdLW1kWhOXvXu0vACA.roa
File: GnpZZAaaKWdLW1kWhOXvXu0vACA.roa (raw, json)
Hash identifier: zCFv08TFCaiWfGHMtiIYnj/umGDhendC7u0sTEoFgMM=
Subject key identifier: 1A:7A:59:64:06:9A:29:67:4B:5B:59:16:84:E5:EF:5E:ED:2F:00:20
Certificate issuer: /CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Certificate serial: 05A11986
Authority key identifier: BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/GnpZZAaaKWdLW1kWhOXvXu0vACA.roa
Signing time: Sat 01 Jan 2022 09:58:16 +0000
ROA not before: Sat 01 Jan 2022 09:58:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25251
IP address blocks: 81.94.37.0/24 maxlen: 24
81.94.32.0/22 maxlen: 22
81.94.40.0/23 maxlen: 23
81.94.44.0/24 maxlen: 24
81.94.42.0/24 maxlen: 24
81.94.39.0/24 maxlen: 24
81.94.45.0/24 maxlen: 24
81.94.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94443910 (0x5a11986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Validity
Not Before: Jan 1 09:58:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a7a5964069a29674b5b591684e5ef5eed2f0020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c5:15:91:2e:8b:18:e3:0e:3c:27:ac:97:7a:
84:ea:74:e6:52:c5:e1:c1:08:52:68:67:aa:49:71:
72:a8:dc:54:62:69:12:8b:d3:e2:2a:de:a4:2a:93:
eb:b7:2d:c3:a1:be:50:ef:e0:fb:82:64:bb:80:a8:
f1:8a:cf:3d:a0:a6:7c:a9:08:45:e1:e5:7a:c8:5a:
57:c9:25:75:d8:f6:8f:90:92:89:92:c8:2a:f1:5a:
e7:b4:39:ef:7d:73:7d:f8:6b:85:dc:b7:3d:0e:e9:
e6:3c:5f:32:38:52:8e:30:0d:ff:1d:b7:44:3e:83:
66:b0:99:a7:d8:02:e8:25:8e:cc:ac:6a:1b:0c:e2:
ab:d4:2a:3d:1b:ea:54:a7:f8:f0:8d:fc:af:d3:5a:
cb:fb:fa:04:93:48:99:a1:f7:40:98:17:b2:5f:3c:
52:43:d8:ce:e2:b3:52:77:7b:96:96:79:c6:f7:d8:
b7:bc:76:69:b9:e2:ef:98:d9:a9:55:8d:3a:e6:c3:
38:49:8b:67:68:e0:d6:4b:15:de:53:26:2b:2a:c3:
ee:53:34:b3:9c:f4:d6:aa:b4:91:70:d5:8f:4c:96:
2e:50:3e:dd:9e:5a:44:d4:4e:b2:7a:32:ef:9d:b2:
88:b1:ec:dd:18:57:ee:34:15:68:44:e2:2e:f8:5e:
06:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7A:59:64:06:9A:29:67:4B:5B:59:16:84:E5:EF:5E:ED:2F:00:20
X509v3 Authority Key Identifier:
keyid:BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/GnpZZAaaKWdLW1kWhOXvXu0vACA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/vGyMBtLTwoAfBUWPyDQT2wpd360.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.94.32.0/22
81.94.37.0/24
81.94.39.0-81.94.42.255
81.94.44.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:66:2d:e0:54:96:ca:0e:67:cd:8c:0e:74:e6:62:82:8b:e2:
ce:c3:ce:b9:34:4e:10:af:d5:ae:61:0a:0d:4f:4c:f7:fa:4d:
54:2b:b8:78:10:d5:03:37:20:03:5a:91:06:1f:3d:e8:42:29:
64:b5:4d:1a:e9:5a:27:16:7a:2a:5f:c0:c7:05:c6:ee:21:8e:
10:dd:14:0a:86:37:60:07:25:18:7a:4b:ca:64:c5:5b:a2:08:
e4:c9:d4:e7:8b:97:3e:95:a5:5f:22:3a:ff:2a:c7:40:4f:ea:
42:76:f4:7c:19:22:ac:fa:db:e9:4d:da:13:25:ed:68:cd:61:
89:bf:3e:2c:f4:6b:06:fa:f7:9c:a3:c7:d6:36:39:c0:96:cc:
69:1a:a9:01:77:36:fb:7f:46:bc:86:39:01:6f:ea:da:17:70:
8a:3a:39:ff:b1:c5:d1:5d:0a:28:3e:37:7d:e2:af:cb:22:1b:
ab:13:bd:15:f1:56:18:62:1e:32:8e:ce:15:eb:b7:81:71:6a:
a1:0a:72:f5:ce:ca:c8:d0:d6:cb:af:0d:ae:15:ea:de:73:d3:
82:04:24:76:c8:ac:a3:11:62:40:a7:73:11:c4:d4:21:81:77:
92:af:1f:0c:4e:1e:c8:90:b4:60:26:89:c9:29:99:68:64:f1:
8f:10:33:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:06 2024 by rpki-client on console-ams.rpki-client.org