Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/gYPlgjnxXF14VgCBLU2ReGFDB5A.roa
File: gYPlgjnxXF14VgCBLU2ReGFDB5A.roa (raw, json)
Hash identifier: Msau/tP8cIzPyZqMnWBJTO2GSoZ2YCQEYfd0lN23Y5w=
Subject key identifier: 81:83:E5:82:39:F1:5C:5D:78:56:00:81:2D:4D:91:78:61:43:07:90
Certificate issuer: /CN=0c985eb8d94b9fa11422d782f314ff6e2ded07ad
Certificate serial: 0165DBB9
Authority key identifier: 0C:98:5E:B8:D9:4B:9F:A1:14:22:D7:82:F3:14:FF:6E:2D:ED:07:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJheuNlLn6EUIteC8xT_bi3tB60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/gYPlgjnxXF14VgCBLU2ReGFDB5A.roa
Signing time: Wed 23 Feb 2022 14:19:35 +0000
ROA not before: Wed 23 Feb 2022 14:19:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 213.232.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23452601 (0x165dbb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c985eb8d94b9fa11422d782f314ff6e2ded07ad
Validity
Not Before: Feb 23 14:19:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8183e58239f15c5d785600812d4d917861430790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c8:d7:8e:dc:d7:77:7c:b9:73:2b:38:da:11:
66:9d:96:23:8b:94:2a:b1:1b:9d:05:07:22:ad:9e:
4a:58:be:17:db:82:45:a2:89:8d:f3:bd:32:ad:01:
ae:9d:6b:08:86:d2:78:9d:e1:55:4f:aa:40:3a:5b:
e4:b2:bb:61:f7:18:40:36:02:f6:b3:75:f7:b5:92:
4a:e1:6d:a3:cc:e3:0a:74:d4:83:3d:e9:7f:01:eb:
58:74:12:66:53:a0:98:b2:99:08:5d:14:ed:58:de:
a1:68:3c:6c:d1:4f:2b:cb:a8:26:69:03:e2:3b:72:
d2:df:41:5d:70:8a:46:2a:07:b9:d9:96:e4:84:91:
78:25:ba:cb:e8:27:c4:b3:30:92:32:31:a5:11:74:
57:b7:00:f2:d4:c2:2f:f4:b7:68:52:ec:cb:f2:55:
04:b4:bb:04:bb:b0:06:16:a6:8b:30:64:4b:85:d3:
c0:98:9a:3d:bd:bb:9d:57:8c:f0:18:e7:d5:f1:08:
a4:75:0c:29:c8:72:a0:e2:2d:53:75:e9:a5:6b:4d:
31:13:a1:c7:29:e8:89:59:a6:52:88:7a:a5:5a:52:
05:4b:60:fc:ae:c9:79:02:eb:34:6d:cd:b9:f1:74:
95:fe:4b:17:43:96:ce:0d:e4:fe:c2:66:ba:4d:93:
b4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:83:E5:82:39:F1:5C:5D:78:56:00:81:2D:4D:91:78:61:43:07:90
X509v3 Authority Key Identifier:
keyid:0C:98:5E:B8:D9:4B:9F:A1:14:22:D7:82:F3:14:FF:6E:2D:ED:07:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJheuNlLn6EUIteC8xT_bi3tB60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/gYPlgjnxXF14VgCBLU2ReGFDB5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/29c524-c98e-4320-8274-521171b7d268/1/DJheuNlLn6EUIteC8xT_bi3tB60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.239.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:50:59:80:08:74:85:80:cb:05:7f:d9:d7:bd:f4:a4:e3:1a:
be:17:63:18:7d:71:4e:46:64:37:60:3d:6a:c5:06:67:90:bc:
83:c3:b6:1b:c8:01:e0:4e:4a:47:3a:76:ff:61:79:33:fc:af:
c5:e8:86:0e:be:3f:3a:5c:3d:e1:c6:6d:fd:58:5d:74:29:98:
4a:b9:d9:42:04:96:84:83:9f:8b:c0:3a:75:5a:b2:11:d4:86:
b5:dc:5d:09:49:50:9b:5d:d0:e1:e5:f9:72:be:11:15:ca:62:
15:d6:c1:8b:82:6d:3c:71:9d:14:0f:30:61:b5:50:68:50:8e:
af:9b:92:95:2c:34:6e:7c:9b:56:5e:fb:44:c9:b1:85:8a:04:
b8:43:24:a0:3f:0e:41:95:13:75:41:03:65:29:00:fb:6d:ef:
9f:c8:43:cf:f6:8a:54:4b:65:14:b1:c3:45:5a:a6:e5:f4:d4:
fb:79:8d:85:bf:e2:11:f7:2f:a5:cc:81:e5:06:61:41:80:68:
3c:a8:e8:6e:66:28:a8:8f:f8:28:49:f0:dd:9f:93:91:7f:fe:
35:1f:d2:ef:34:1e:77:dc:de:af:19:65:fb:bd:a5:5e:86:ec:
b7:90:83:73:16:84:69:e5:8d:ab:a3:d8:61:39:23:08:a5:d7:
66:e9:51:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:11 2023 by rpki-client on console-ams.rpki-client.org