Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/GpAnDVdyXjHyVXA4OxCa2NjDIvA.roa
File: GpAnDVdyXjHyVXA4OxCa2NjDIvA.roa (raw, json)
Hash identifier: ptpkfo1FA0BSZ2nLkvH46Tmfr91YM23OiY9Qh7bx7xU=
Subject key identifier: 1A:90:27:0D:57:72:5E:31:F2:55:70:38:3B:10:9A:D8:D8:C3:22:F0
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0185103F31752378EED2674F356D8A36DC4C
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/GpAnDVdyXjHyVXA4OxCa2NjDIvA.roa
Signing time: Wed 14 Dec 2022 10:47:34 +0000
ROA not before: Wed 14 Dec 2022 10:47:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 217.113.24.0/21 maxlen: 24
217.113.18.0/23 maxlen: 23
45.133.104.0/22 maxlen: 22
5.134.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:3f:31:75:23:78:ee:d2:67:4f:35:6d:8a:36:dc:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Dec 14 10:47:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a90270d57725e31f25570383b109ad8d8c322f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fe:bc:4a:c0:d4:91:66:92:98:42:e4:20:91:
98:c1:14:0d:96:a2:7c:a1:a2:b3:25:b6:ce:c8:55:
cf:79:25:bc:dd:ff:45:d1:6a:87:83:db:57:9a:2a:
de:0d:be:a0:54:0a:66:95:d3:0b:3a:f9:34:cf:99:
49:c3:81:60:53:b3:0e:c1:e6:3f:1f:f5:ed:67:20:
63:e9:46:cc:38:a7:68:65:1a:b7:7c:9e:23:13:5e:
05:b4:1b:07:61:95:67:db:2a:4a:2a:8e:56:31:0e:
95:9a:1a:cb:14:fc:90:c0:b2:a8:7b:df:1e:49:d7:
33:d3:a8:04:2d:ed:68:3f:bb:08:90:27:81:26:35:
f9:57:9f:c9:f0:e4:6b:6f:20:ae:54:94:5d:44:b3:
f2:42:c2:54:96:b1:19:1a:cc:31:d0:4b:d6:d3:11:
69:fe:58:34:db:5a:e2:a4:9a:79:c7:04:41:e8:98:
9a:81:ed:63:64:c0:87:32:f7:fb:73:f4:59:6a:eb:
06:80:4f:ba:3c:5b:a8:58:ce:36:ef:6a:55:68:06:
03:14:a9:97:d8:48:d0:d5:8e:11:3d:ab:ac:fe:1b:
4c:76:a6:85:a9:8f:d9:18:d1:05:56:4d:18:c6:e1:
1f:43:db:9b:10:c4:f1:3c:e3:3a:13:94:18:b1:8d:
4f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:90:27:0D:57:72:5E:31:F2:55:70:38:3B:10:9A:D8:D8:C3:22:F0
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/GpAnDVdyXjHyVXA4OxCa2NjDIvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.84.0/22
45.133.104.0/22
217.113.18.0/23
217.113.24.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:d8:f3:b1:0b:8b:04:4f:23:26:f1:e6:0a:63:a2:91:79:7e:
fd:99:55:d4:fa:da:d6:88:42:48:b4:07:0c:1f:72:47:34:10:
26:fc:9b:2a:2c:97:9d:f2:38:9e:1f:29:ea:f0:68:a9:73:d5:
52:69:90:e1:bd:ce:aa:49:68:48:36:fd:2f:aa:6e:ed:e4:ea:
74:fc:9f:15:5f:71:0c:a9:9a:04:76:17:33:a6:67:2c:36:d0:
3c:c1:f6:2c:a0:38:49:c2:bb:06:3f:76:8d:fc:99:e7:12:b6:
6e:f7:da:74:ae:a9:e8:39:84:c5:ad:21:9e:cb:d4:e6:43:42:
1a:7f:0c:b2:69:c2:af:5c:ac:8a:e2:71:a8:46:1b:00:8c:e9:
e9:8d:28:96:37:b7:2c:34:2b:5c:ac:e2:38:95:ae:60:46:e9:
b0:67:a5:b7:3d:9e:54:43:f9:8a:7b:95:f9:fb:61:0d:26:81:
74:63:db:43:11:ad:35:b7:19:f8:e3:d0:ca:04:c4:d4:93:54:
39:b1:c3:04:d0:b4:4a:74:c7:a8:dd:9f:b2:fe:6d:7c:86:6c:
ff:1b:81:13:6e:41:2f:3e:30:91:81:16:7b:ce:c4:0a:a2:70:
3f:b2:ac:ce:4e:1e:52:6d:30:d4:70:e9:8a:51:90:23:f5:2d:
c8:3d:08:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org