Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/GIOCxco4t2qo7825g5-63YnTYdk.roa
File: GIOCxco4t2qo7825g5-63YnTYdk.roa (raw, json)
Hash identifier: cvWBbXqaBVYH+Bs1awwF8VnKEq/ON7SwXf/qAO62zzo=
Subject key identifier: 18:83:82:C5:CA:38:B7:6A:A8:EF:CD:B9:83:9F:BA:DD:89:D3:61:D9
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 0642C8EE
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/GIOCxco4t2qo7825g5-63YnTYdk.roa
Signing time: Sat 01 Jan 2022 11:01:06 +0000
ROA not before: Sat 01 Jan 2022 11:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4004
IP address blocks: 57.66.0.0/17 maxlen: 24
57.66.0.0/15 maxlen: 32
57.78.0.0/16 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105040110 (0x642c8ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=188382c5ca38b76aa8efcdb9839fbadd89d361d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5e:de:78:fd:a9:48:35:d6:b7:67:39:7a:80:
3d:ed:84:77:fc:3a:1d:95:0c:27:9c:76:9e:55:98:
c7:4d:c8:f6:e2:31:64:97:bd:ed:f8:63:b5:c8:ec:
ce:09:a1:f6:c2:7c:a6:f4:62:f1:7c:de:3d:c7:6f:
bf:bd:7f:d8:41:d2:20:26:48:86:b0:f2:5b:4b:61:
d0:f4:3f:50:60:d0:7d:9e:22:17:eb:60:a7:7d:dc:
49:24:40:6a:a6:4a:7f:d0:eb:d3:ae:b2:ba:09:85:
94:df:10:7d:a5:c2:93:3d:cc:cb:5c:6f:95:93:85:
6d:77:61:85:79:15:55:27:61:f9:04:cf:0f:cc:6f:
4c:e4:c0:75:13:1b:89:a6:ee:45:63:d8:39:46:03:
b6:4c:2f:67:de:b4:b1:a9:a7:51:ee:41:9c:ad:f9:
a7:04:cb:d1:61:cf:ed:40:80:eb:af:c9:b6:bc:d3:
62:00:dd:54:99:ee:4b:e3:29:92:03:c8:81:06:f8:
b6:03:71:ab:2a:41:0a:35:a8:2d:be:9b:76:4e:65:
d9:9b:4d:db:b5:62:5e:8b:fe:0f:ee:a3:9a:97:29:
ae:b2:19:d8:c4:0c:f3:3c:4f:d4:d7:eb:e5:4c:1e:
0f:7c:e8:f9:9d:12:1f:43:c9:66:20:a1:90:00:44:
69:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:83:82:C5:CA:38:B7:6A:A8:EF:CD:B9:83:9F:BA:DD:89:D3:61:D9
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/GIOCxco4t2qo7825g5-63YnTYdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.66.0.0/15
57.78.0.0/16
Signature Algorithm: sha256WithRSAEncryption
30:ed:71:82:47:e2:56:68:6a:e8:d2:ab:90:56:01:4c:5a:e2:
10:4f:b3:04:d9:f8:8f:a7:eb:0b:a5:a4:73:13:23:31:6f:6d:
52:5d:0f:8f:1f:f9:bb:b5:e0:d4:90:ef:a3:07:08:c9:50:aa:
91:66:47:4b:6b:f3:e5:14:a8:11:47:f0:57:0f:7b:04:a4:c3:
2f:55:aa:2e:77:f0:55:28:49:c2:ad:ba:7f:d2:8b:ac:fe:af:
f9:cb:49:59:9e:94:18:3c:06:45:93:82:31:e4:fc:ef:02:d8:
80:85:f8:33:62:1a:5f:91:4f:e4:44:97:58:6b:07:65:ca:14:
ac:41:ee:fa:b0:4f:8e:f9:47:bd:92:f0:97:6a:0f:5b:55:bf:
64:75:90:76:9d:2f:51:d2:62:7c:13:c4:17:0e:6b:df:5b:7c:
f8:c9:64:a9:c5:ed:ed:cf:1f:58:65:6b:b2:4d:28:ee:a7:f2:
e4:3d:6e:9a:77:1f:06:92:bc:14:f4:be:39:2c:40:ef:6e:3e:
91:48:ce:37:a4:8d:8c:10:0e:42:03:a4:e3:d5:75:62:3a:30:
cd:20:5b:fd:e6:3f:2d:01:f0:cd:b0:52:3d:6f:88:e1:f8:42:
07:81:27:68:c3:25:d6:f6:06:f0:5f:04:e0:33:6c:0e:01:db:
6a:39:6c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org