Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/gJvPSciOp_LGgS2OM56C5yrO1SE.roa
File: gJvPSciOp_LGgS2OM56C5yrO1SE.roa (raw, json)
Hash identifier: iV8QGzPIvp1hT7sSH5OrVXPsXbnJTvdUCcTmu4rxhgs=
Subject key identifier: 80:9B:CF:49:C8:8E:A7:F2:C6:81:2D:8E:33:9E:82:E7:2A:CE:D5:21
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 3AC13C92
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/gJvPSciOp_LGgS2OM56C5yrO1SE.roa
Signing time: Tue 28 Jun 2022 10:41:02 +0000
ROA not before: Tue 28 Jun 2022 10:41:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 46.38.158.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
212.16.89.0/24 maxlen: 24
185.29.220.0/22 maxlen: 24
185.143.74.0/23 maxlen: 23
185.143.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 985742482 (0x3ac13c92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jun 28 10:41:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=809bcf49c88ea7f2c6812d8e339e82e72aced521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:37:8d:6b:b2:ea:2c:71:2f:69:10:5a:47:f8:
e6:27:0b:00:a7:0b:ff:7c:0e:d7:c1:ca:1a:bb:d9:
1b:5e:8d:d9:d0:16:4d:eb:ca:e9:ba:38:2a:88:b6:
9f:38:8a:28:ab:6a:40:94:3c:b6:ad:6c:47:b1:13:
3d:9b:55:af:c2:a9:2b:66:cb:83:e0:cb:96:57:0e:
c8:18:8b:de:de:03:9e:b3:ff:ad:0f:d3:de:01:55:
0b:d4:e6:18:7d:71:b5:ff:dd:82:b3:22:d6:e6:c5:
0f:2c:63:f2:f0:77:81:83:b8:53:e0:f9:5d:db:c9:
9c:b2:f8:70:93:fc:05:14:33:a1:b2:72:fb:59:5d:
00:7b:2a:3f:fc:7e:85:1d:00:1b:30:14:28:ae:77:
21:67:5a:f6:ab:3b:a9:f0:cf:35:a0:2c:61:c4:df:
cf:f7:85:06:46:fd:1b:08:96:17:40:3f:90:cc:09:
de:36:21:7a:45:2a:d5:41:30:c0:9a:3e:8e:aa:42:
f2:27:6d:c1:fe:42:44:fe:1f:83:f1:af:da:db:1e:
7d:a5:a5:9f:6e:66:82:30:57:68:61:12:a2:a9:f0:
ff:fd:0e:31:14:05:31:ca:df:30:a7:fd:18:ae:fc:
e5:b1:ae:85:f9:b7:e3:42:ec:0c:c3:eb:bf:f5:c0:
96:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9B:CF:49:C8:8E:A7:F2:C6:81:2D:8E:33:9E:82:E7:2A:CE:D5:21
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/gJvPSciOp_LGgS2OM56C5yrO1SE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.158.0/24
109.94.165.0/24
185.29.220.0/22
185.143.72.0/22
212.16.89.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:6e:50:35:40:5f:87:2b:d8:5b:61:70:c8:29:a9:a6:30:17:
61:2e:04:d7:56:d4:fa:2b:74:e1:7b:b0:f9:58:00:63:67:b2:
cd:0e:7e:ea:c7:c6:9b:ca:ea:32:96:38:94:ff:4c:a2:22:e6:
11:88:4f:b0:c8:3e:a6:a6:12:37:ef:bc:d7:fe:e4:23:30:8e:
1e:5e:90:62:9e:78:c6:ca:34:66:c7:4a:06:a5:04:37:f6:6b:
b7:c1:25:99:dc:00:64:7f:0d:fc:f6:ea:fd:bf:b7:ce:15:ed:
f8:0b:ae:6e:ab:3f:6c:f6:34:c8:2c:a2:c1:d7:06:bf:ae:fb:
3b:e1:e5:eb:e8:19:a7:ba:2d:91:82:2d:38:2d:b3:84:8f:9f:
0e:67:ed:91:37:3c:4f:53:f6:b2:6d:56:9f:99:d0:9a:32:0a:
81:bb:ee:99:0e:0d:a0:34:10:83:2d:25:20:6c:d0:8c:d7:f6:
ca:36:22:9d:06:e8:4c:03:9c:a9:4a:2d:af:49:35:83:dd:04:
33:2f:bb:7a:b9:37:67:5d:61:60:d7:ea:3e:7f:6d:69:04:3e:
e9:3b:db:6f:fb:68:0f:a3:30:ca:f3:dc:9a:e4:18:a3:6e:e7:
d6:d3:e5:64:77:c1:56:96:12:48:36:87:e7:fb:2b:3d:af:86:
a6:0e:c9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:40 2023 by rpki-client on console-ams.rpki-client.org