Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/gfssh28bRumaVR-sPR--xF0K0wU.roa
File: gfssh28bRumaVR-sPR--xF0K0wU.roa (raw, json)
Hash identifier: rZJ5hCYr0Jc+oPcGgL4n97ZP6EPTqudHAcmH5RtOEOE=
Subject key identifier: 81:FB:2C:87:6F:1B:46:E9:9A:55:1F:AC:3D:1F:BE:C4:5D:0A:D3:05
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 059212A2
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/gfssh28bRumaVR-sPR--xF0K0wU.roa
Signing time: Mon 11 Apr 2022 05:01:47 +0000
ROA not before: Mon 11 Apr 2022 05:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20803
IP address blocks: 80.66.70.0/24 maxlen: 24
80.66.66.0/24 maxlen: 24
80.66.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93459106 (0x59212a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Apr 11 05:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81fb2c876f1b46e99a551fac3d1fbec45d0ad305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:56:17:57:0b:11:30:08:e1:b6:44:38:f0:
13:e9:14:1d:dd:3d:c6:98:0f:55:ed:e1:c9:70:6d:
db:75:2b:d0:5b:86:bd:e4:1f:94:0e:e7:ec:e7:c5:
d0:9a:6e:af:db:11:78:02:07:32:8d:7d:54:33:04:
bd:29:02:f2:19:7e:e6:cd:a5:e2:08:6e:82:95:07:
d8:ce:76:b4:64:ab:e3:d0:7c:02:67:76:fd:4c:9f:
70:37:1a:67:e8:00:37:8c:63:03:8d:57:ef:6f:db:
f4:c7:8a:5e:72:22:b8:d0:01:0a:30:4f:57:15:47:
3e:0a:09:5b:cc:bc:9f:ef:bd:43:36:c0:4b:a1:ef:
4b:5a:aa:e2:17:05:59:50:b9:f1:50:d8:92:d9:d3:
4c:d6:21:d9:52:83:ed:a3:22:34:f8:c4:1d:56:da:
d9:8c:eb:6e:06:dd:0f:92:43:50:f5:e7:83:2b:c7:
37:93:db:d3:b6:eb:59:e6:af:61:7d:4f:a7:78:89:
ed:75:9d:63:7e:9d:7e:2d:27:97:6a:1d:2d:7f:f4:
31:5f:99:a1:e6:5f:94:ee:df:a9:91:d9:31:58:d3:
1a:0b:83:51:20:78:a6:0f:91:72:48:76:28:a6:1a:
0f:e6:74:c3:21:27:d0:39:1f:21:1c:55:50:a5:4a:
1a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FB:2C:87:6F:1B:46:E9:9A:55:1F:AC:3D:1F:BE:C4:5D:0A:D3:05
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/gfssh28bRumaVR-sPR--xF0K0wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.66.0/24
80.66.70.0/24
80.66.75.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c2:3f:5f:0c:8d:86:2e:48:e7:09:b2:96:57:28:87:02:a0:
ac:d6:2b:0b:a6:48:25:39:f2:33:bc:70:d9:4d:42:2f:28:8e:
df:38:16:d6:ce:ab:3f:da:37:9c:1e:d2:d5:66:5f:a2:52:36:
4a:f7:02:da:0f:da:13:55:0a:b4:ca:ee:b5:24:d4:1c:62:37:
fa:29:68:8a:5f:3a:a2:52:b5:95:d0:90:36:b4:6f:e6:0b:c3:
ae:98:85:40:0d:cf:7b:80:0d:6e:f9:35:bb:f1:91:fc:bd:c2:
c8:87:bb:56:28:ff:f5:65:ac:95:a7:9d:97:35:00:96:c7:3f:
c0:eb:c6:45:63:73:89:7a:f8:97:ad:20:6c:23:2b:26:76:b7:
1d:95:38:c3:ae:4a:38:69:9a:05:a1:6b:6f:a6:68:b0:68:07:
3f:e6:b2:8f:47:55:7e:70:c4:37:f9:7e:e7:bd:8b:6b:ef:a8:
b6:12:8b:91:1f:c9:fb:db:96:72:30:90:1e:ef:a1:7c:ce:bc:
d9:fa:72:0f:14:7e:28:e9:a5:88:88:b6:73:01:a4:6a:97:87:
7f:16:97:15:63:0b:49:2c:e3:ee:87:40:0d:0a:99:59:d0:8a:
fc:c9:14:90:18:bc:7d:5f:01:fd:76:35:74:c8:9f:2a:75:88:
ef:90:58:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:36 2023 by rpki-client on console-ams.rpki-client.org