Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/GZHSCCDEJS56Hv0aVB-xaZT0jP4.roa
File: GZHSCCDEJS56Hv0aVB-xaZT0jP4.roa (raw, json)
Hash identifier: AEhyBW+2kUhNipb9Nlem5dvLmJMx8EBJQuG7E8t6qiE=
Subject key identifier: 19:91:D2:08:20:C4:25:2E:7A:1E:FD:1A:54:1F:B1:69:94:F4:8C:FE
Certificate issuer: /CN=55096c61153d2ab55077f1a30c245986001ba1d9
Certificate serial: 05733682
Authority key identifier: 55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VQlsYRU9KrVQd_GjDCRZhgAbodk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/GZHSCCDEJS56Hv0aVB-xaZT0jP4.roa
Signing time: Sat 01 Jan 2022 08:58:26 +0000
ROA not before: Sat 01 Jan 2022 08:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205934
IP address blocks: 195.245.235.0/24 maxlen: 24
2a0b:a340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91436674 (0x5733682)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55096c61153d2ab55077f1a30c245986001ba1d9
Validity
Not Before: Jan 1 08:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1991d20820c4252e7a1efd1a541fb16994f48cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f4:68:c2:32:86:c8:57:b1:62:e3:3c:08:31:
77:ce:39:e5:0d:4c:9a:2e:a3:b3:b5:58:6a:00:f3:
48:38:42:87:5c:0b:48:44:4f:6f:8c:ad:a5:e1:b7:
96:f6:3a:a0:51:1a:e7:f9:7e:5c:34:08:a4:19:f4:
57:95:c6:d1:86:88:23:31:f4:9e:ad:89:b8:80:5f:
a5:65:02:24:4f:6c:71:7a:d1:2a:e0:d1:3f:2a:0d:
2f:4e:7e:1a:35:70:7a:35:f3:40:61:c7:e3:1e:47:
8d:9c:d3:ff:22:c7:7c:80:28:ac:a2:c8:a9:ea:69:
47:7d:20:8c:d2:63:a6:68:05:b8:88:21:aa:47:1c:
db:86:0b:c2:c4:58:eb:50:62:69:f0:bd:11:7e:b1:
4c:99:35:5a:23:42:78:d9:32:aa:b6:5c:1d:3d:37:
bf:a9:74:96:36:17:1d:b8:d2:b3:f8:d4:8c:03:5c:
9a:a8:ae:16:6b:4a:c6:1c:ed:be:e8:76:de:8b:d3:
58:c6:3d:10:25:b4:f2:46:b9:1a:e4:de:0b:3d:e2:
2e:5f:ca:59:b0:bb:35:43:a0:f5:3f:29:05:1a:30:
6e:64:c7:f9:ff:d3:97:61:8a:34:80:6a:31:e9:ab:
a7:24:95:da:fa:3f:07:48:35:75:c0:88:45:78:03:
c3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:91:D2:08:20:C4:25:2E:7A:1E:FD:1A:54:1F:B1:69:94:F4:8C:FE
X509v3 Authority Key Identifier:
keyid:55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VQlsYRU9KrVQd_GjDCRZhgAbodk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/GZHSCCDEJS56Hv0aVB-xaZT0jP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.235.0/24
IPv6:
2a0b:a340::/32
Signature Algorithm: sha256WithRSAEncryption
51:e3:18:d3:06:0e:ee:97:cb:30:80:cd:ad:18:36:aa:fd:69:
c1:db:30:3a:e4:d8:71:07:b7:de:4a:d8:41:11:2e:8d:92:01:
39:9f:fb:24:ce:2d:d6:e5:b9:a1:65:26:a3:3d:7d:2d:99:64:
24:38:68:f0:02:a1:74:39:c9:fc:a3:fc:5c:ad:d2:6b:c5:06:
41:54:e4:27:9f:2c:f3:fc:85:11:0b:fc:b2:22:9e:c2:a7:1e:
e8:52:18:2d:8a:df:38:e1:b9:99:53:d3:8d:83:ad:38:8e:46:
72:29:ea:a7:30:96:e1:ef:95:c2:43:a4:77:7d:e1:04:df:3e:
d1:77:20:b1:5a:81:a2:57:54:44:8b:68:74:88:5a:a9:af:8c:
10:90:02:a3:a8:bb:0e:99:f2:dc:0b:0d:a5:43:42:b2:bc:63:
52:0e:8d:f0:2d:de:e8:0a:e6:d6:8d:ef:82:33:58:94:3a:49:
93:f8:63:a4:43:d7:6a:fc:87:4c:f2:b3:4a:1d:e1:66:81:99:
d2:7a:73:84:a8:3b:e7:3e:68:43:10:35:20:c7:cd:c5:b7:26:
8d:b2:e1:44:38:24:23:eb:69:0e:f3:da:63:a2:18:f7:e9:32:
d6:11:b6:1d:de:a3:34:6b:81:75:d9:fd:b1:ad:68:5e:9b:3a:
a9:86:2b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:08 2023 by rpki-client on console-ams.rpki-client.org