Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/gdZaAjVBdfKLsDRXY7l7sXtoybE.roa
File: gdZaAjVBdfKLsDRXY7l7sXtoybE.roa (raw, json)
Hash identifier: oDfob0G9/y3dIfiWrGE81GS9z8oGBnGrGHvt/SA2LEI=
Subject key identifier: 81:D6:5A:02:35:41:75:F2:8B:B0:34:57:63:B9:7B:B1:7B:68:C9:B1
Certificate issuer: /CN=cdfcbde632d106faad98c2c1895a877ca601521a
Certificate serial: 15105B01
Authority key identifier: CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/gdZaAjVBdfKLsDRXY7l7sXtoybE.roa
Signing time: Sat 01 Jan 2022 08:01:25 +0000
ROA not before: Sat 01 Jan 2022 08:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 137.120.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 353393409 (0x15105b01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdfcbde632d106faad98c2c1895a877ca601521a
Validity
Not Before: Jan 1 08:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81d65a02354175f28bb0345763b97bb17b68c9b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:18:c6:7b:ce:56:16:7c:8c:75:ea:ad:67:56:
22:e3:99:11:97:ef:c4:cf:c3:3c:6e:32:e9:b9:d7:
c9:83:bf:e5:0d:6f:d5:19:99:5a:39:29:3d:79:81:
09:25:50:a8:3f:d7:7f:76:c2:bf:77:cd:87:19:0f:
1a:55:59:e4:d8:57:47:85:b6:6a:00:6e:72:08:40:
7a:df:70:b7:50:5e:ec:3a:f4:48:9d:7e:68:72:cb:
75:be:04:42:78:1f:f5:f9:89:a5:aa:74:44:4f:43:
d9:4d:9a:6d:7b:15:be:89:40:ae:1d:5c:40:3d:aa:
da:99:d4:4d:0c:c1:04:85:7b:61:29:70:9c:20:ed:
f8:96:1a:e5:f9:04:87:76:42:f3:de:6a:42:8b:bc:
24:e7:d7:f9:d2:ed:e8:a3:82:d7:c3:60:ca:57:5f:
61:26:6c:a6:a6:c7:92:06:6e:00:bc:98:ce:5c:7e:
25:97:cb:b0:85:19:46:7c:c8:a3:7d:28:9b:5d:72:
52:85:8a:f6:e4:83:88:70:aa:e9:17:8b:c3:e3:f5:
12:cc:36:0c:5a:c2:1d:e6:52:35:59:3e:83:e5:e7:
99:64:ec:d5:36:4e:fe:d9:a7:e1:37:0a:cc:a8:23:
b8:a4:ba:f4:16:0a:d1:03:b5:1e:c0:f2:ba:15:50:
97:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D6:5A:02:35:41:75:F2:8B:B0:34:57:63:B9:7B:B1:7B:68:C9:B1
X509v3 Authority Key Identifier:
keyid:CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/gdZaAjVBdfKLsDRXY7l7sXtoybE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.120.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9f:e3:6f:8b:d5:a2:6c:02:94:7b:5a:d7:f2:a8:ff:7c:e7:5f:
0c:ab:23:51:f0:55:a4:4d:f6:fe:68:7e:d2:9c:b8:65:ec:c8:
e0:5f:40:3e:bd:d4:ce:af:14:71:30:47:ce:be:58:ef:0f:e0:
33:33:51:b9:a6:cd:ba:36:49:a9:37:59:fc:95:43:dd:b2:47:
3d:8f:a6:92:d5:78:3d:75:e3:4f:bf:d2:85:f5:ab:fc:27:b7:
88:a1:0b:b3:6b:b0:50:b3:f6:63:70:2b:f4:ce:d5:99:d0:8e:
2a:5d:d8:9c:c3:36:59:70:93:1d:80:8c:22:71:fb:79:3c:3b:
9c:02:7f:1e:dd:4a:b9:5e:cd:90:40:c5:12:40:12:05:1b:b6:
87:0a:45:6c:72:e8:b1:31:b2:bc:a6:d4:7e:74:b8:44:fd:61:
52:c9:a8:c7:7a:fe:5e:06:20:14:6f:d9:1a:f0:c0:3c:b5:63:
86:7d:18:1d:2e:48:7d:78:7e:a3:4c:59:ff:78:08:0a:f4:df:
68:43:6e:f3:c1:6e:ba:a6:5b:72:21:62:57:3e:ff:71:81:96:
23:cd:58:fa:62:1e:19:95:84:35:cf:0c:37:11:b4:ae:a6:a6:
8b:1e:a8:ca:1c:ca:e9:5e:f0:6c:40:72:37:68:3e:47:2d:a0:
24:fb:5c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:21 2024 by rpki-client on console-ams.rpki-client.org