Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/2f7b91-17bf-4c2a-a81e-41527961d48e/1/GmJCRy05k8eDKc1cfhXymKUpFk8.roa
File: GmJCRy05k8eDKc1cfhXymKUpFk8.roa (raw, json)
Hash identifier: vVe7F/gt9QGFuaLKFtROaaNNoJ5YEs0qem5PIcw2EPE=
Subject key identifier: 1A:62:42:47:2D:39:93:C7:83:29:CD:5C:7E:15:F2:98:A5:29:16:4F
Certificate issuer: /CN=0e3198a9827deeafab1d27b553794f44b91a6c06
Certificate serial: 08767072
Authority key identifier: 0E:31:98:A9:82:7D:EE:AF:AB:1D:27:B5:53:79:4F:44:B9:1A:6C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DjGYqYJ97q-rHSe1U3lPRLkabAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/2f7b91-17bf-4c2a-a81e-41527961d48e/1/GmJCRy05k8eDKc1cfhXymKUpFk8.roa
Signing time: Sat 01 Jan 2022 14:00:54 +0000
ROA not before: Sat 01 Jan 2022 14:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43436
IP address blocks: 185.6.140.0/22 maxlen: 22
193.58.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141979762 (0x8767072)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3198a9827deeafab1d27b553794f44b91a6c06
Validity
Not Before: Jan 1 14:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a6242472d3993c78329cd5c7e15f298a529164f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:92:d9:79:77:84:d0:d1:13:b6:82:4e:d2:76:
90:b8:fe:eb:3e:cc:9b:21:ae:8e:98:7b:72:df:4b:
d0:32:d5:09:8c:dc:a0:7a:41:96:56:4e:5e:5a:d4:
63:6c:8e:f1:f9:20:48:40:a7:40:8f:81:3e:54:a9:
58:a9:07:fe:df:df:dc:74:a4:4c:7c:3e:25:f8:81:
80:51:b7:8e:e7:90:2c:ee:57:9d:57:3c:65:76:21:
1b:11:dd:44:89:11:da:e7:36:b2:e4:40:0b:d2:38:
49:3a:11:13:50:7b:b7:c5:bc:f1:3c:d9:90:44:f5:
b4:50:5c:f6:25:bb:48:21:be:01:75:51:0b:5d:23:
6f:31:a8:c7:5d:fd:fe:95:24:db:3f:2b:c7:b4:e8:
9d:0b:ae:f4:a0:73:81:f8:c7:7e:c4:18:23:b1:26:
1f:c1:dc:07:a9:9d:81:e0:17:c6:43:68:16:ce:d1:
3b:a9:c1:13:73:4b:af:06:53:5f:ac:bc:bb:9e:10:
0d:6f:3b:60:1e:1d:c7:cf:b6:27:4e:f0:f3:d0:ed:
8e:86:1d:58:c2:16:4d:c1:fa:37:15:60:c4:0c:1e:
b9:46:3e:3a:1a:27:2b:c8:7a:ce:b9:6b:52:dc:b3:
0b:86:a0:55:6a:7f:cf:ec:f9:c8:fa:12:c7:8c:fa:
3f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:62:42:47:2D:39:93:C7:83:29:CD:5C:7E:15:F2:98:A5:29:16:4F
X509v3 Authority Key Identifier:
keyid:0E:31:98:A9:82:7D:EE:AF:AB:1D:27:B5:53:79:4F:44:B9:1A:6C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DjGYqYJ97q-rHSe1U3lPRLkabAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/2f7b91-17bf-4c2a-a81e-41527961d48e/1/GmJCRy05k8eDKc1cfhXymKUpFk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/2f7b91-17bf-4c2a-a81e-41527961d48e/1/DjGYqYJ97q-rHSe1U3lPRLkabAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.140.0/22
193.58.247.0/24
Signature Algorithm: sha256WithRSAEncryption
56:a7:5e:0a:1b:6e:f5:0b:36:0b:6b:22:46:71:58:6f:3b:ec:
e7:0f:c0:ff:60:21:4e:4c:17:fd:c4:04:76:40:f2:87:85:6c:
5c:22:64:1e:bd:a7:ed:31:1d:96:24:78:50:b0:cf:4b:19:e2:
82:12:ea:88:a1:51:e5:81:a2:5e:00:d2:54:e9:72:ed:2a:5b:
4b:2b:a7:fe:14:0e:ea:26:c9:a6:85:64:62:4e:94:61:e5:ea:
dc:e6:cd:b0:7a:84:53:e7:4a:8a:ce:d5:09:ae:95:1d:6b:3f:
42:39:c4:f2:5e:18:41:68:dc:16:c7:29:e2:f3:ae:8a:40:3d:
42:bd:8f:ee:87:f5:45:7c:0b:2b:48:2d:51:f3:5e:6c:b6:c3:
47:77:b4:d8:43:8c:72:ae:44:4d:a5:a1:cc:84:a0:9e:93:d5:
92:44:78:e1:9e:fd:72:27:2f:51:27:8f:19:06:f9:1c:e4:97:
03:4b:3b:1e:57:23:3e:28:91:37:fa:29:a1:7e:bd:d9:c5:a3:
26:69:37:5d:f5:ab:77:ef:0e:ae:7f:75:a7:7e:46:bc:e0:3d:
71:3f:e2:09:48:0e:aa:91:b7:45:26:7e:50:ba:9e:e0:b8:e5:
ee:49:e4:a9:f2:d3:ea:2e:b2:41:00:b8:a7:71:87:f1:d4:3c:
e1:ac:df:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:11 2023 by rpki-client on console-ams.rpki-client.org