Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/GYRhJlhHSqmDW7y5gY_oD_vbAnY.roa
File: GYRhJlhHSqmDW7y5gY_oD_vbAnY.roa (raw, json)
Hash identifier: iS5vnt8r3HTDrBfFSWrRqex9VbH62M4NA708c3BxMMQ=
Subject key identifier: 19:84:61:26:58:47:4A:A9:83:5B:BC:B9:81:8F:E8:0F:FB:DB:02:76
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 068ABCF4
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/GYRhJlhHSqmDW7y5gY_oD_vbAnY.roa
Signing time: Sat 01 Jan 2022 06:54:54 +0000
ROA not before: Sat 01 Jan 2022 06:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 185.140.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109755636 (0x68abcf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Jan 1 06:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1984612658474aa9835bbcb9818fe80ffbdb0276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:11:1f:6b:38:67:22:68:a9:e8:92:66:b8:43:
9f:e1:99:d9:60:24:c3:a6:4d:ae:d9:60:81:b2:ff:
c7:0f:f7:52:c1:b6:98:4a:b0:f4:20:61:d6:bb:ea:
6d:2d:e5:c8:c9:1b:6b:bf:5b:9d:86:32:7e:bb:1e:
c6:f2:35:2a:a3:96:6d:2e:37:08:15:f0:bc:7d:9c:
69:bc:e6:9d:c0:69:f1:aa:60:ed:34:53:ae:a4:be:
60:cf:b1:cc:e8:81:eb:d1:ac:e7:c8:85:90:09:75:
b3:f1:8d:e2:25:16:db:c4:a2:b9:8f:6d:4c:c7:a2:
73:04:d8:6a:bd:45:5a:ed:19:43:43:bd:c2:d3:20:
89:60:9f:b0:92:ec:c0:63:ac:d0:17:ec:7d:3e:40:
14:e1:14:d5:29:96:af:9f:c0:45:3c:4a:59:a8:a8:
24:32:67:11:f2:9c:ae:53:36:60:ec:a8:ca:25:b4:
ad:d8:9a:df:c8:e6:4c:35:d3:a0:2c:7d:0e:b9:64:
5d:ea:6e:6f:c8:2a:2e:4d:ac:ff:73:07:53:b0:b5:
a7:23:a3:42:1b:49:35:01:c8:e1:43:29:4d:bf:75:
5d:68:62:99:f0:f1:65:95:35:91:bf:f8:f0:4e:2c:
ca:09:fa:c2:73:26:07:5b:eb:52:d9:4c:eb:75:f5:
7c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:84:61:26:58:47:4A:A9:83:5B:BC:B9:81:8F:E8:0F:FB:DB:02:76
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/GYRhJlhHSqmDW7y5gY_oD_vbAnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.70.0/24
Signature Algorithm: sha256WithRSAEncryption
85:29:02:f2:86:b7:59:56:e9:14:d4:d9:1b:6f:34:cb:c9:62:
80:ad:e5:40:c2:49:33:ab:00:13:22:d2:62:85:5c:79:55:4d:
5a:ff:fc:37:ad:0f:01:e3:b6:55:04:53:ff:44:7e:ee:6d:9d:
f4:7a:22:2e:3a:55:ea:44:26:d5:bb:3a:55:ef:b6:c6:73:03:
47:7c:6a:c8:6f:f6:d4:de:a0:1d:76:08:45:a6:36:e4:24:50:
a9:5d:b0:fa:16:5f:fe:ba:87:8d:0d:a6:cb:df:57:e0:1f:0c:
54:c3:e3:ec:03:80:86:37:f3:40:ca:74:60:3b:77:e9:ba:a4:
99:1a:36:15:0c:87:fb:69:b4:2a:2c:79:09:11:15:04:e8:69:
b2:a3:28:5a:96:f6:e8:90:ff:a7:93:b4:be:41:40:4c:ec:a1:
34:eb:b3:d2:57:cb:df:92:b2:1d:89:a5:49:42:03:ea:f6:27:
70:ea:37:3f:fa:6e:30:54:f1:6e:97:e1:9f:35:d1:5c:ce:47:
91:20:7c:70:26:75:fe:7b:2e:dd:15:c3:36:18:78:56:df:4d:
44:fc:bc:54:cb:9e:04:cc:e1:4e:23:97:d4:5b:53:4d:43:a6:
41:f0:0c:e0:8b:70:f6:fc:43:ba:03:b9:94:98:a9:1c:c1:04:
43:27:f4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:09 2023 by rpki-client on console-ams.rpki-client.org