Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/GnWLbJDPfiRK3YVJjN05m9fltWA.roa
File: GnWLbJDPfiRK3YVJjN05m9fltWA.roa (raw, json)
Hash identifier: eLHd2NSxdOwhdB4qtOZdwkhmMW6c/R8T06H/pjKmzs4=
Subject key identifier: 1A:75:8B:6C:90:CF:7E:24:4A:DD:85:49:8C:DD:39:9B:D7:E5:B5:60
Certificate issuer: /CN=9e42ca46688a837b575234ce6a1a326587d6c204
Certificate serial: 0185069AE92DA03783BDF68996FE72CEFA9B
Authority key identifier: 9E:42:CA:46:68:8A:83:7B:57:52:34:CE:6A:1A:32:65:87:D6:C2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkLKRmiKg3tXUjTOahoyZYfWwgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/GnWLbJDPfiRK3YVJjN05m9fltWA.roa
Signing time: Mon 12 Dec 2022 13:51:33 +0000
ROA not before: Mon 12 Dec 2022 13:51:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8881
IP address blocks: 45.13.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:9a:e9:2d:a0:37:83:bd:f6:89:96:fe:72:ce:fa:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e42ca46688a837b575234ce6a1a326587d6c204
Validity
Not Before: Dec 12 13:51:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a758b6c90cf7e244add85498cdd399bd7e5b560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5c:98:0b:a3:ab:c7:95:36:4b:82:53:2f:6f:
6b:b8:89:f2:1d:33:cf:f7:fe:23:4a:85:cd:30:80:
6c:76:c1:fb:e2:40:4f:37:0d:ce:06:9e:9b:0e:f3:
94:bd:2f:20:85:0c:bd:08:a8:a6:7a:71:a5:98:f8:
aa:d5:f5:a9:22:48:d3:c7:c2:fb:10:9a:d9:79:27:
dd:67:0e:ee:b9:4f:32:d3:8d:7f:af:eb:4e:d8:8a:
b1:2d:16:dc:75:56:7d:f9:b4:e9:22:7e:28:1d:a1:
e3:93:d5:52:19:bb:af:c4:83:ae:6c:b0:a9:cc:ae:
9b:a8:f9:43:a9:1b:72:82:f2:31:6a:25:ed:fe:ac:
35:6c:10:81:68:0a:6e:1b:9c:21:4a:fc:ed:e4:1a:
e3:21:6a:79:84:8b:cc:13:6f:30:8b:be:cc:f1:af:
95:27:a6:3d:a9:16:64:25:ba:54:b8:3d:6a:38:c5:
e6:af:84:1a:b3:72:93:cf:af:dd:f9:d1:1f:14:64:
6e:64:bf:34:88:92:d3:b7:b3:5e:cb:47:24:08:55:
aa:3c:be:49:59:74:76:d4:98:fb:57:a7:49:76:b4:
92:68:8c:72:a6:d7:d3:5e:f4:17:97:2a:ba:c9:48:
2d:82:b7:60:51:c3:84:0f:46:41:27:06:3e:ca:44:
c1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:75:8B:6C:90:CF:7E:24:4A:DD:85:49:8C:DD:39:9B:D7:E5:B5:60
X509v3 Authority Key Identifier:
keyid:9E:42:CA:46:68:8A:83:7B:57:52:34:CE:6A:1A:32:65:87:D6:C2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkLKRmiKg3tXUjTOahoyZYfWwgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/GnWLbJDPfiRK3YVJjN05m9fltWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/nkLKRmiKg3tXUjTOahoyZYfWwgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.12.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:67:73:9c:8a:aa:e8:1d:b7:35:6e:02:e5:bb:02:03:bb:7f:
86:54:9d:2e:2c:11:07:4a:1c:e2:b1:8b:35:08:5c:5d:3a:05:
3e:71:7e:9f:f7:b3:09:19:3c:d5:9f:d1:6b:a2:10:75:38:b7:
1a:83:09:39:c1:cb:ff:96:59:40:5b:ee:93:32:42:50:b1:da:
19:4b:af:ff:e8:01:17:34:af:a8:1b:c1:df:fa:92:b1:ab:b4:
38:f2:a0:75:56:52:64:5f:f9:cc:b2:d3:fd:a0:08:cf:99:78:
4a:cf:f9:fe:8d:36:81:42:a0:33:d0:ed:f3:fc:29:3d:4c:b2:
a7:47:6d:d0:21:d6:cd:30:55:f4:fa:57:ae:61:b6:65:7d:cc:
ec:46:d8:9d:43:cf:c5:ad:7b:00:18:d4:80:12:ab:67:39:89:
54:38:be:79:32:6b:64:e0:d9:7b:06:72:b3:5f:a6:e1:24:4d:
77:bc:57:40:87:89:f1:0b:a0:75:27:d8:7e:66:fa:b4:08:e0:
c1:76:3f:75:98:01:b3:2d:84:98:01:d0:ae:0d:cf:4f:ea:3b:
76:03:5d:c7:58:50:f8:2a:e1:be:e3:9c:42:dc:ff:ca:ca:f6:
51:63:0e:29:34:6c:ed:ef:7d:c6:82:4d:68:09:ca:e1:d7:37:
21:4d:7d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:18 2025 by rpki-client