Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/giTFBRJ6TFEHSVDi2jcalDmbueQ.roa
File: giTFBRJ6TFEHSVDi2jcalDmbueQ.roa (raw, json)
Hash identifier: 1+ywLLTuin1ReFr9BnPB101TdYlwnofCcoTEVWsWXHY=
Subject key identifier: 82:24:C5:05:12:7A:4C:51:07:49:50:E2:DA:37:1A:94:39:9B:B9:E4
Certificate issuer: /CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Certificate serial: 01892FE78A0536784BBBEC2020BF261F020E
Authority key identifier: 46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/giTFBRJ6TFEHSVDi2jcalDmbueQ.roa
Signing time: Fri 07 Jul 2023 10:30:50 +0000
ROA not before: Fri 07 Jul 2023 10:30:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60607
IP address blocks: 185.28.160.0/24 maxlen: 24
185.28.162.0/24 maxlen: 24
185.28.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:e7:8a:05:36:78:4b:bb:ec:20:20:bf:26:1f:02:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Validity
Not Before: Jul 7 10:30:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8224c505127a4c51074950e2da371a94399bb9e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0e:30:f6:29:e2:5d:91:e9:66:d7:ba:11:2e:
0c:7b:1b:52:e7:a2:ce:8f:38:7e:c4:34:8c:5f:22:
07:a8:7b:93:d5:2e:81:ac:0d:f1:e4:a8:4b:71:4f:
b3:4f:42:e9:a2:06:05:b0:67:ba:2e:be:17:7c:1e:
b6:04:5b:e7:3f:47:7d:2c:e7:62:37:8d:2a:72:bf:
10:73:47:fd:98:c1:d9:b0:b1:c6:59:45:ba:80:24:
04:21:e3:11:1e:95:cc:ed:53:28:42:a6:0c:cb:3a:
8b:bd:cf:b3:d8:fc:e6:8d:bd:68:57:14:b4:3f:8f:
99:ce:5c:82:62:8d:bc:07:dc:4c:bd:e2:7f:f4:c4:
dc:5a:4f:36:43:90:d1:16:a5:58:09:55:ff:2b:4a:
3b:4e:58:8b:27:9b:22:30:54:83:d3:05:27:fb:31:
63:70:97:2c:07:9c:a5:d2:71:12:a8:ef:cb:d2:15:
7b:47:cb:fc:4b:45:a2:a3:3e:6b:3a:ff:ce:4b:eb:
ac:2b:67:32:10:66:ad:1b:fc:5d:f4:d7:e9:c3:a2:
94:2a:50:c3:e0:2a:58:d9:91:3c:38:f3:b9:0b:8c:
ac:bf:9b:e1:c9:fc:11:9e:8d:93:3f:cc:7c:65:f0:
38:f9:2f:6f:12:67:a8:e6:ec:57:06:fb:56:10:87:
d1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:24:C5:05:12:7A:4C:51:07:49:50:E2:DA:37:1A:94:39:9B:B9:E4
X509v3 Authority Key Identifier:
keyid:46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/giTFBRJ6TFEHSVDi2jcalDmbueQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/RoFcoV1ypaaW-LzfSG9YAZZncrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.160.0-185.28.162.255
Signature Algorithm: sha256WithRSAEncryption
54:ce:04:c5:c6:21:0b:a0:ec:52:98:a7:1f:0b:74:53:58:0a:
f9:d6:47:76:d9:6a:2d:35:c5:88:29:31:30:9c:1a:11:9f:33:
62:65:44:87:9b:ad:78:02:cb:96:2e:07:c8:5c:00:47:36:28:
cd:2f:ae:95:70:93:45:4f:a4:63:1b:e4:0c:b8:c9:5e:2b:94:
60:62:43:3a:9f:78:cd:a2:ac:bb:bd:79:b7:56:2d:42:25:b7:
3d:34:21:e1:6f:d6:0e:bb:9d:d5:da:69:05:40:73:65:8d:2d:
e9:d5:98:d7:57:61:d9:be:21:c2:e4:b8:ed:8b:dc:6b:26:e9:
37:51:66:61:3e:70:8a:b5:10:8d:f2:a7:d0:eb:b7:28:e6:fa:
09:01:c4:de:28:16:f9:bb:39:21:d1:ba:29:40:fa:64:2f:43:
5b:24:03:3c:08:c0:b2:c2:8f:e8:71:d4:39:4a:0e:19:3e:1a:
39:4a:3f:65:e3:c9:29:a0:89:d9:33:5c:08:eb:7f:ba:60:fd:
c7:0d:fe:4c:af:aa:14:71:93:cf:b4:c4:72:5d:de:03:46:82:
31:09:81:fe:58:99:91:b7:7b:3f:ef:16:e9:3f:dd:45:dd:b7:
9b:c0:b2:06:3c:67:7f:23:52:0b:89:ff:48:8c:42:ef:77:30:
b5:1d:05:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:14 2025 by rpki-client