Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/GQByoxGJLx6Anb-tpQeePi3ojqU.roa
File: GQByoxGJLx6Anb-tpQeePi3ojqU.roa (raw, json)
Hash identifier: 7YksS3dBCaVR/2+uD2++EhqcMMh2//uFOsxo3skQxrw=
Subject key identifier: 19:00:72:A3:11:89:2F:1E:80:9D:BF:AD:A5:07:9E:3E:2D:E8:8E:A5
Certificate issuer: /CN=05d658594b65364b2c2e56a6a45ebb06847b3849
Certificate serial: 37593AF0
Authority key identifier: 05:D6:58:59:4B:65:36:4B:2C:2E:56:A6:A4:5E:BB:06:84:7B:38:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BdZYWUtlNkssLlampF67BoR7OEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/GQByoxGJLx6Anb-tpQeePi3ojqU.roa
Signing time: Sat 01 Jan 2022 10:59:58 +0000
ROA not before: Sat 01 Jan 2022 10:59:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57348
IP address blocks: 185.67.149.0/24 maxlen: 24
185.67.150.0/24 maxlen: 24
185.67.151.0/24 maxlen: 24
185.67.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 928594672 (0x37593af0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05d658594b65364b2c2e56a6a45ebb06847b3849
Validity
Not Before: Jan 1 10:59:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=190072a311892f1e809dbfada5079e3e2de88ea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e1:fb:04:7e:cc:18:bb:d5:60:22:48:3a:60:
4e:8b:93:00:25:92:65:0d:b9:30:ed:ae:5e:95:3f:
46:5f:d2:dd:e7:67:54:aa:82:8d:00:84:f2:42:0e:
1b:c2:3a:19:04:06:ef:fb:c6:1d:16:cb:ea:9a:24:
ca:b5:64:fe:9c:9a:fb:d2:02:b2:19:d2:90:98:82:
ff:5d:19:3e:de:ce:37:0e:b6:11:d5:64:50:cb:47:
ab:0d:d2:01:68:36:65:9a:a5:60:f9:a8:a6:5f:f2:
61:ba:6d:35:9e:c5:9c:20:97:f4:27:9b:94:dd:14:
ee:a0:49:f2:c2:ff:a7:23:fd:40:b7:77:ce:db:44:
24:f7:7e:33:28:9d:b1:67:28:8d:df:4a:d9:8f:1f:
15:1c:7f:aa:5b:04:78:ce:32:5f:5f:d8:4d:d3:07:
a7:4e:cb:f1:aa:db:6e:42:15:87:ea:40:2a:90:e4:
1d:2f:35:36:da:17:82:74:85:c9:4d:5b:14:67:17:
42:2e:58:2b:9d:86:01:04:a7:7d:fd:a3:4f:b9:b9:
52:bc:e9:bc:a8:cb:5f:1b:29:8b:45:e1:04:65:c3:
37:94:f4:e7:c9:4a:6c:c8:a3:95:ad:fb:8d:6f:a8:
7b:7d:0a:73:d4:aa:3e:64:98:cd:a6:28:60:09:92:
01:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:00:72:A3:11:89:2F:1E:80:9D:BF:AD:A5:07:9E:3E:2D:E8:8E:A5
X509v3 Authority Key Identifier:
keyid:05:D6:58:59:4B:65:36:4B:2C:2E:56:A6:A4:5E:BB:06:84:7B:38:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BdZYWUtlNkssLlampF67BoR7OEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/GQByoxGJLx6Anb-tpQeePi3ojqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/BdZYWUtlNkssLlampF67BoR7OEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.148.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:82:47:f4:7b:40:ca:73:63:a4:aa:45:ce:35:16:5a:13:e4:
85:99:10:1f:21:62:25:7a:44:da:61:98:1c:11:cb:9e:bf:1c:
3e:9a:cf:62:3d:18:78:83:16:9a:91:4f:8a:db:00:ca:6a:48:
1f:04:a8:c8:8d:d4:65:73:9a:61:25:09:ce:0f:75:4e:9d:d4:
3a:81:2a:28:43:1f:95:27:08:53:cb:88:bf:4f:40:bb:83:de:
59:02:38:75:75:6f:50:57:e5:c7:1c:d7:22:0f:c6:91:0d:48:
ed:eb:33:8c:ee:35:84:41:b3:94:64:d5:ae:db:ca:c6:70:0f:
45:48:5f:6f:e4:aa:b2:c6:65:a3:14:74:64:94:ea:03:c0:5a:
84:1a:67:14:22:92:9c:90:6d:c8:b5:cf:2a:71:07:b0:78:33:
54:1c:eb:f2:bb:a4:88:04:81:8d:e2:06:89:65:fd:42:92:26:
3f:ed:18:ef:7f:32:76:15:f5:4d:7a:aa:58:86:6b:47:30:4d:
f5:c7:9d:bd:44:62:5b:6e:94:0e:72:29:1a:23:75:db:f4:58:
54:7b:40:0e:05:83:9b:79:20:85:13:bf:20:95:4d:e7:f8:8c:
58:b5:ed:f1:4d:9c:14:65:01:1f:64:40:51:be:16:93:0c:6e:
83:53:60:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:20 2023 by rpki-client on console-ams.rpki-client.org