Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/gGbwEG2cyBEGbC4CcN_b4ejB7m0.roa
File: gGbwEG2cyBEGbC4CcN_b4ejB7m0.roa (raw, json)
Hash identifier: kPgKbkYilrdv9SwoV8FfQYAzzc+COI3+f/CmmbUIEY8=
Subject key identifier: 80:66:F0:10:6D:9C:C8:11:06:6C:2E:02:70:DF:DB:E1:E8:C1:EE:6D
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 4473881F
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/gGbwEG2cyBEGbC4CcN_b4ejB7m0.roa
Signing time: Sat 01 Jan 2022 03:58:22 +0000
ROA not before: Sat 01 Jan 2022 03:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15422
IP address blocks: 217.109.67.0/24 maxlen: 24
194.206.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1148422175 (0x4473881f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8066f0106d9cc811066c2e0270dfdbe1e8c1ee6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:42:db:df:32:f6:ce:23:66:d2:6b:a3:3c:8a:
9b:41:45:f2:14:ad:8a:99:80:34:e9:76:ba:5a:b4:
0b:41:d2:78:bf:c0:31:a9:99:0f:18:ea:0a:39:c5:
3e:5a:3e:a7:1b:61:73:93:0b:10:27:62:67:76:5b:
37:39:05:3f:37:7f:46:89:32:8d:bd:e4:bc:cb:43:
33:ea:0d:06:3e:ea:ff:1f:9f:a1:13:52:5b:9a:98:
d5:ec:b1:dc:36:e7:26:e8:f0:66:ca:61:9a:06:46:
cb:36:33:3f:f4:11:4e:8c:06:b4:f8:76:06:8b:95:
6e:ee:8b:ee:af:33:62:39:5f:8a:d9:81:21:45:33:
12:1c:86:c7:b5:e3:1a:21:ca:70:d0:35:4d:79:e8:
c4:3c:30:a1:b0:0f:86:6e:00:08:1b:61:4d:49:4e:
37:57:49:5d:58:bc:6b:f2:ca:0d:e3:d0:b5:80:a9:
e3:a5:ac:30:4d:31:eb:df:4b:92:a3:1f:b6:56:68:
52:14:f6:13:34:68:36:18:9d:05:ff:36:ec:dd:6b:
c3:49:f7:9e:4f:b4:6e:44:56:54:f6:70:6c:11:9d:
e8:ce:43:75:ec:61:12:7c:22:1c:c2:67:c4:2c:8f:
67:d2:d9:d0:33:43:dc:6d:0c:67:17:0e:a3:84:6f:
0c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:66:F0:10:6D:9C:C8:11:06:6C:2E:02:70:DF:DB:E1:E8:C1:EE:6D
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/gGbwEG2cyBEGbC4CcN_b4ejB7m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.206.254.0/24
217.109.67.0/24
Signature Algorithm: sha256WithRSAEncryption
45:34:4a:dc:f6:cb:d5:23:4c:26:13:bf:6e:c4:19:d3:ec:23:
7a:01:7b:05:d3:c4:d2:08:7d:4d:68:4b:94:d0:f2:2b:2a:43:
11:f7:10:a6:d0:ae:0d:7a:48:1e:68:bd:7b:f7:8a:a0:d9:2b:
60:ee:a2:98:8f:c4:aa:dc:50:50:b7:05:47:cc:07:90:9a:c9:
78:5e:55:7c:78:d9:e7:d6:62:df:75:e5:6e:25:1a:37:39:c4:
d5:99:2f:6e:38:9c:08:cb:95:a8:8a:50:a2:8d:ca:90:0f:a5:
86:ba:c6:94:04:ea:c5:8d:b6:dc:38:87:61:b1:3a:3a:19:f9:
11:22:a1:f2:a1:52:32:34:93:04:97:88:95:51:39:9a:d2:f3:
6c:ce:5b:2c:08:88:27:71:4f:69:e2:a3:bb:ac:38:0a:5a:8f:
87:d7:e5:73:81:34:12:1a:7a:c3:77:39:20:91:d1:b4:fa:2c:
b3:96:f6:0c:f5:c1:41:db:7d:30:3d:6d:07:39:25:8f:32:df:
18:d1:3e:fb:69:a2:48:ae:ac:25:5c:b9:1b:aa:ab:8e:da:52:
5d:f2:50:98:6e:88:90:2a:61:a6:49:e4:ec:90:ad:f0:a0:d0:
94:95:40:60:94:60:89:14:53:85:16:7d:ab:9f:72:6f:63:0f:
33:39:79:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org