Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/gsr1qhEgscegS7s0r8LuE7pbv6M.roa
File: gsr1qhEgscegS7s0r8LuE7pbv6M.roa (raw, json)
Hash identifier: hv9RfV6vCHzrnyqat0nX+PKkE7O8ZYevbFeAu9dHy6M=
Subject key identifier: 82:CA:F5:AA:11:20:B1:C7:A0:4B:BB:34:AF:C2:EE:13:BA:5B:BF:A3
Certificate issuer: /CN=ec05986897d024e48c7cd25e1891c4208ff3bbb2
Certificate serial: 012F56A2
Authority key identifier: EC:05:98:68:97:D0:24:E4:8C:7C:D2:5E:18:91:C4:20:8F:F3:BB:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7AWYaJfQJOSMfNJeGJHEII_zu7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/gsr1qhEgscegS7s0r8LuE7pbv6M.roa
Signing time: Sat 01 Jan 2022 13:02:30 +0000
ROA not before: Sat 01 Jan 2022 13:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35740
IP address blocks: 195.170.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19879586 (0x12f56a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec05986897d024e48c7cd25e1891c4208ff3bbb2
Validity
Not Before: Jan 1 13:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82caf5aa1120b1c7a04bbb34afc2ee13ba5bbfa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7f:ca:6a:2c:5f:ba:b0:3c:55:03:18:c0:a2:
94:af:8f:95:3f:ed:53:da:b6:83:90:fd:53:71:a8:
b0:5d:09:a5:d8:89:93:00:b6:c2:00:8b:9c:a3:80:
99:d9:53:ed:45:1a:43:5d:6d:a4:91:f6:e8:47:04:
f5:da:78:d5:22:43:d6:9e:41:5b:f7:47:e9:1b:16:
de:4b:b7:5b:01:88:dd:32:12:68:4c:27:16:62:c7:
9e:41:2f:f4:9c:40:6e:24:d6:71:ce:ad:06:2f:38:
6b:e0:f9:69:f3:bd:de:12:ed:36:30:db:46:9f:d6:
c0:9f:0f:c3:01:72:fc:0d:8e:43:91:7f:89:ed:82:
22:92:43:50:44:7a:84:86:40:27:61:a6:20:08:72:
8d:eb:a1:f2:64:4d:19:f0:d4:76:cd:d3:12:f1:8a:
72:23:a2:d1:f4:ae:fe:83:85:a1:26:43:59:f0:11:
93:f1:12:54:da:14:19:9f:0a:95:9f:87:86:ff:55:
eb:30:44:f5:db:b8:9e:b4:95:54:51:42:42:24:0f:
e7:61:21:29:1b:bb:56:ac:ed:d9:0f:39:3b:dd:71:
60:44:99:25:fb:62:0a:b9:d8:9f:23:d0:37:d7:37:
f2:ad:ea:f2:6c:bc:ad:11:5a:81:8a:c8:33:a5:62:
e7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CA:F5:AA:11:20:B1:C7:A0:4B:BB:34:AF:C2:EE:13:BA:5B:BF:A3
X509v3 Authority Key Identifier:
keyid:EC:05:98:68:97:D0:24:E4:8C:7C:D2:5E:18:91:C4:20:8F:F3:BB:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7AWYaJfQJOSMfNJeGJHEII_zu7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/gsr1qhEgscegS7s0r8LuE7pbv6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/ad6af0-005f-43a3-aa9d-766d1f32433c/1/7AWYaJfQJOSMfNJeGJHEII_zu7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.170.0/24
Signature Algorithm: sha256WithRSAEncryption
40:35:a4:85:dc:88:a6:c8:f4:09:d8:24:03:a3:34:04:57:d6:
63:2e:93:88:04:a0:34:45:eb:1f:9a:67:47:93:30:80:22:8f:
de:55:ff:1f:38:88:fc:1e:f1:ac:01:90:b5:2a:71:cc:e7:46:
b1:dc:a8:4b:0a:0f:07:0b:b7:10:8c:94:0f:37:22:90:87:1d:
36:7e:41:93:ec:1d:4a:8b:60:65:40:4e:e9:af:84:c9:cd:0a:
4b:24:20:f4:5d:f3:97:ba:13:83:fe:c2:0f:8e:c0:95:07:67:
49:ed:09:f8:5c:9c:3a:6c:d1:3e:86:43:f5:26:f4:55:cc:91:
eb:37:b4:33:51:6e:40:72:ef:3e:61:80:32:fc:01:86:d6:92:
69:3d:37:c0:0f:08:52:00:07:02:e5:11:71:d2:bb:52:1f:5b:
8e:54:de:cf:eb:91:ea:d4:66:70:1b:9d:cd:6d:89:b5:af:90:
fe:a4:80:1d:28:99:12:37:33:df:d3:06:2e:bf:aa:bf:84:1a:
d2:8a:f8:67:51:60:d7:52:b2:09:90:74:fe:29:0d:19:60:a8:
36:77:38:48:26:ba:76:bd:a8:28:2f:4f:fc:05:57:79:d6:f7:
59:2b:5c:ca:00:33:d0:24:bd:9f:15:b4:87:ac:05:4e:e0:00:
68:c7:96:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:07 2023 by rpki-client on console-ams.rpki-client.org