Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/Gn6PC4SLpT2OkLNH30FHiET2hbo.roa
File: Gn6PC4SLpT2OkLNH30FHiET2hbo.roa (raw, json)
Hash identifier: uZqd8OL+7DpiIEO2qtS8D9wdswSdRfx4hRHMoxXNnBs=
Subject key identifier: 1A:7E:8F:0B:84:8B:A5:3D:8E:90:B3:47:DF:41:47:88:44:F6:85:BA
Certificate issuer: /CN=0265ad94e797135906b3e11a847c8eafd094e745
Certificate serial: 0A1730D4
Authority key identifier: 02:65:AD:94:E7:97:13:59:06:B3:E1:1A:84:7C:8E:AF:D0:94:E7:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmWtlOeXE1kGs-EahHyOr9CU50U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/Gn6PC4SLpT2OkLNH30FHiET2hbo.roa
Signing time: Sat 01 Jan 2022 01:53:46 +0000
ROA not before: Sat 01 Jan 2022 01:53:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60641
IP address blocks: 185.45.172.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169291988 (0xa1730d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0265ad94e797135906b3e11a847c8eafd094e745
Validity
Not Before: Jan 1 01:53:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a7e8f0b848ba53d8e90b347df41478844f685ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:53:30:a2:2d:c2:22:2d:5c:e2:dc:b2:fc:86:
75:cb:26:78:b7:1a:db:ff:9d:df:7d:54:2e:6f:2e:
e3:c1:c4:54:31:98:45:ed:90:af:ba:6f:4a:c0:17:
3c:3d:f6:54:20:b4:59:8d:ab:fc:2b:b9:b0:95:c9:
ca:b4:b3:a6:c8:16:5d:3b:80:de:dc:25:2a:6e:72:
70:97:88:64:28:d4:17:5c:98:e9:a4:f0:a2:c9:8a:
33:76:ae:fc:3e:ef:07:93:a0:bc:21:52:8d:50:3f:
e2:3e:94:5d:3a:6d:8f:38:30:12:7f:57:a4:17:23:
85:b3:41:69:8c:aa:10:11:7f:28:bf:d5:ad:fe:cb:
63:08:c6:8a:80:76:e5:66:b5:3c:6e:63:ee:3d:cb:
a2:28:ce:aa:a0:a8:5f:b0:fb:eb:15:a6:20:24:13:
67:93:f3:cf:47:a1:63:33:3d:86:c5:a5:87:79:e1:
37:ed:27:30:a3:f9:45:f3:38:06:40:bb:33:54:f7:
ee:d5:c6:7d:4e:eb:b1:d3:e5:4b:6f:3a:1e:a5:29:
59:29:00:16:cb:cc:11:a0:31:8f:e8:a0:75:3e:06:
f0:e2:dc:da:3f:83:c3:3d:fe:b2:b5:7f:2d:8c:82:
99:3b:23:d2:d4:1d:ec:f8:7e:7a:4a:3c:be:ac:92:
e2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7E:8F:0B:84:8B:A5:3D:8E:90:B3:47:DF:41:47:88:44:F6:85:BA
X509v3 Authority Key Identifier:
keyid:02:65:AD:94:E7:97:13:59:06:B3:E1:1A:84:7C:8E:AF:D0:94:E7:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmWtlOeXE1kGs-EahHyOr9CU50U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/Gn6PC4SLpT2OkLNH30FHiET2hbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/AmWtlOeXE1kGs-EahHyOr9CU50U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.172.0/23
Signature Algorithm: sha256WithRSAEncryption
77:dc:ca:cb:ff:72:0f:7e:80:23:6b:b2:44:8d:04:a4:a9:dc:
4b:23:43:3c:68:31:d7:39:ae:50:c9:d2:c8:3f:f1:8b:e6:83:
58:46:dd:78:2a:06:37:d4:51:60:e9:d2:50:75:80:02:85:83:
11:3f:f4:02:56:42:f0:92:b3:3a:7c:2c:32:3d:50:75:cf:77:
5e:38:a8:eb:ea:53:e3:7d:b9:74:46:ad:b5:c5:ba:4a:d4:83:
1d:4b:4e:63:9c:8f:68:94:36:27:5d:35:e9:09:a8:7e:de:f1:
6b:b4:b7:11:e5:1f:8d:04:3a:d4:36:d3:1f:a4:9e:c2:59:58:
c9:ac:9c:55:73:f0:01:d1:f2:5c:ce:1f:0d:60:6c:a1:97:23:
5f:83:51:c0:05:aa:ff:61:ea:39:3a:42:f8:9b:3e:7b:1c:14:
70:6c:6e:08:13:a9:0a:88:15:65:94:3f:2d:01:82:a2:3a:3a:
54:96:18:23:74:e6:95:8a:86:71:62:18:76:78:5a:09:1a:ba:
dd:e5:5f:8b:f2:af:99:b0:5c:5c:65:20:68:56:97:ec:d8:64:
e5:e8:d5:e8:64:16:2a:6a:a8:20:ae:1a:43:1c:b7:80:3b:4f:
0c:f0:72:54:49:52:61:34:5f:3d:09:2f:ab:0c:d0:b2:ca:32:
c8:71:93:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:14 2024 by rpki-client on console-ams.rpki-client.org