Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/GgJ8nYcMsjObraJR8YRHgOmkfds.roa
File: GgJ8nYcMsjObraJR8YRHgOmkfds.roa (raw, json)
Hash identifier: E6Eel6TGr4ukxVGGOfZ53nzr14VjtSROaz0/0cwz0DI=
Subject key identifier: 1A:02:7C:9D:87:0C:B2:33:9B:AD:A2:51:F1:84:47:80:E9:A4:7D:DB
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03E21E74
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/GgJ8nYcMsjObraJR8YRHgOmkfds.roa
Signing time: Sat 01 Jan 2022 13:04:09 +0000
ROA not before: Sat 01 Jan 2022 13:04:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206602
IP address blocks: 185.71.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65150580 (0x3e21e74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a027c9d870cb2339bada251f1844780e9a47ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cc:12:34:d0:9c:87:93:76:40:60:1e:5d:c1:
9f:ae:79:a1:d4:0f:aa:31:5c:1a:8b:e2:0d:09:c5:
37:71:fd:3a:38:fe:a8:13:1e:29:9e:27:14:80:01:
f8:48:8f:a9:fa:3a:41:ce:c5:0b:07:73:25:c1:9d:
55:70:89:70:f9:ae:cc:35:bf:24:65:b4:25:ab:5c:
96:5b:94:e7:23:c1:f2:19:a4:a1:d9:e9:38:9f:e1:
e0:0d:f5:20:9f:8c:81:87:fb:7c:96:08:f7:b3:4e:
01:ab:75:b4:4e:9a:ee:db:d5:c0:17:9b:4e:ed:6a:
0b:c2:ee:58:eb:dc:a0:b9:69:61:ad:49:89:96:bb:
ca:ae:3b:2b:fc:e8:fb:c3:ec:44:fb:f5:1e:83:83:
47:05:f9:a5:17:34:83:a0:30:0f:c6:39:67:f3:7c:
6d:b0:e3:65:2c:af:b4:f7:c6:c0:a4:85:70:8b:a8:
20:7a:cc:30:c3:c0:14:b3:62:53:6c:23:0d:59:37:
2b:e0:d5:c6:4e:7b:62:b2:e6:43:a2:aa:ed:1a:c5:
e9:89:46:19:5f:74:af:dd:17:f8:fe:3f:fc:a7:6e:
17:b5:c4:46:73:45:ad:bd:c1:03:39:e3:4f:c2:96:
31:23:a9:2f:96:7a:d1:6f:15:38:c8:ae:e8:a5:9f:
13:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:02:7C:9D:87:0C:B2:33:9B:AD:A2:51:F1:84:47:80:E9:A4:7D:DB
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/GgJ8nYcMsjObraJR8YRHgOmkfds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.28.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:d9:b7:50:12:88:b0:14:01:2c:7b:c8:5f:b2:49:88:fe:b2:
ce:ba:81:bd:3a:f5:59:a0:c5:8b:94:82:e3:a1:87:ea:3a:44:
91:59:c5:01:c6:7b:50:fb:54:a2:61:b4:37:88:bd:bc:b7:ca:
a1:72:f8:6e:c3:95:da:cb:85:7b:b6:9c:3a:7a:a3:69:69:02:
c2:e6:09:21:12:25:76:96:d2:7e:ba:3a:b2:c7:35:83:48:8d:
11:97:36:46:1d:f1:67:6b:e2:fd:51:ad:53:a0:a4:7a:5b:2a:
1f:a2:47:a8:f0:53:8f:b5:58:24:a3:3a:02:69:e4:2d:21:aa:
c3:7b:d6:e5:1c:ec:43:39:52:2f:16:0b:2f:eb:8e:85:0f:59:
75:09:c2:0d:f4:12:7b:6a:b1:63:ae:56:c9:d5:1d:28:39:3e:
9d:6c:8e:82:a6:86:f4:cd:ef:c5:ca:8d:9c:8a:49:9e:bf:72:
64:f8:4e:f5:69:57:9f:d5:ce:0a:98:98:e5:70:87:3e:f9:98:
6a:aa:e4:03:38:97:b2:25:3c:7d:73:f6:68:6e:41:2e:13:0f:
3e:7a:3a:10:0e:18:01:8c:da:95:e8:b0:39:75:ba:79:36:eb:
6e:87:c7:ad:db:31:0b:4b:9c:a3:f1:41:b0:1f:34:ea:13:7e:
62:ba:fc:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org