Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/GCdiIoC_JV7mr4uzKXPiT-ayHLk.roa
File: GCdiIoC_JV7mr4uzKXPiT-ayHLk.roa (raw, json)
Hash identifier: QSK3G11Ho6kJthiqEVnt2u/IYXGXFUtv4l6PuusAwfw=
Subject key identifier: 18:27:62:22:80:BF:25:5E:E6:AF:8B:B3:29:73:E2:4F:E6:B2:1C:B9
Certificate issuer: /CN=f266a0f986f21945c80d831567baf29620107adc
Certificate serial: 0A2B6683
Authority key identifier: F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/GCdiIoC_JV7mr4uzKXPiT-ayHLk.roa
Signing time: Sat 01 Jan 2022 09:01:05 +0000
ROA not before: Sat 01 Jan 2022 09:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209931
IP address blocks: 212.162.128.0/24 maxlen: 24
212.162.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170616451 (0xa2b6683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f266a0f986f21945c80d831567baf29620107adc
Validity
Not Before: Jan 1 09:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1827622280bf255ee6af8bb32973e24fe6b21cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3f:54:aa:93:96:e1:e0:89:af:39:39:ed:1c:
82:10:38:4d:2f:19:22:2a:fc:49:cd:77:25:7d:50:
2c:3c:91:83:b3:10:f5:c1:5c:b6:83:18:9b:08:21:
d7:9e:41:c8:45:a7:87:74:46:5b:9c:0a:9a:bc:6c:
c8:d2:d4:43:9d:0a:7a:3d:d9:8d:eb:25:5d:9b:e3:
b9:3f:89:63:0d:cf:19:f7:bf:76:58:e5:7a:9c:41:
7a:b4:ee:15:26:d7:75:c5:32:d0:46:a0:56:35:76:
4c:c0:f7:4e:91:7d:56:85:9e:cd:30:04:b5:6b:dc:
b5:73:36:88:12:a5:b7:b5:c7:36:1d:cd:7e:ce:ac:
0f:28:c7:e2:66:95:ed:64:d2:18:9f:3c:83:89:49:
44:a4:31:03:a3:21:a0:c2:d4:67:05:53:05:3c:bd:
10:f4:38:d0:4f:0b:0e:86:1a:da:7b:9f:69:92:64:
6c:9b:92:ee:72:c7:33:6f:76:29:6e:30:da:f7:9a:
13:b8:ba:6e:0d:51:82:34:70:af:70:0c:b0:53:ce:
6b:1f:40:89:4f:12:00:26:92:04:70:11:ed:0e:78:
04:87:f4:b8:d5:7e:89:62:b7:ac:8e:07:6c:c2:c5:
50:17:72:91:82:ae:24:c5:30:aa:81:84:5f:70:31:
f2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:27:62:22:80:BF:25:5E:E6:AF:8B:B3:29:73:E2:4F:E6:B2:1C:B9
X509v3 Authority Key Identifier:
keyid:F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/GCdiIoC_JV7mr4uzKXPiT-ayHLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/8mag-YbyGUXIDYMVZ7ryliAQetw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.162.128.0/23
Signature Algorithm: sha256WithRSAEncryption
63:6b:e3:7b:e6:5e:e1:40:17:e0:b8:6b:9b:42:d7:62:b3:64:
39:c9:9b:92:ef:ed:1d:21:bb:86:dd:a5:b5:21:af:e9:d8:4c:
c0:3d:a0:e0:86:ed:f0:4a:06:b3:35:13:a6:e7:d5:df:57:36:
21:9d:2a:e5:82:0d:7d:7c:82:d6:1b:1e:8a:7e:92:ca:ea:da:
a5:1a:8f:12:bb:42:8a:3c:cc:a6:1a:d3:7c:9d:ab:f0:ca:7b:
e3:f9:36:49:71:7c:95:9f:1f:9a:11:cb:bc:fd:1f:af:27:bc:
1f:c7:cb:4f:df:31:d0:fd:57:15:53:17:4a:27:08:c6:5c:64:
e3:f1:6d:02:0f:58:38:cb:80:77:29:36:f9:30:6e:24:15:25:
ee:49:b0:84:d0:cd:9f:57:a5:0e:7f:5c:94:91:8e:d2:9e:48:
ee:11:1f:aa:8d:40:31:93:e3:1c:54:4c:8d:cd:94:a1:59:5a:
df:09:d8:41:44:95:51:2e:0e:9b:95:9d:cb:31:2f:72:7d:46:
cf:72:f1:ad:e1:e4:bd:05:c2:22:62:e9:a4:02:cf:03:7c:22:
f3:4d:fa:5c:b2:f6:4f:1a:ee:6f:8c:9c:9e:de:1c:ff:76:02:
3b:62:92:41:85:e7:e8:b9:21:7d:10:3f:9f:77:26:47:84:8a:
bc:13:9f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:03 2025 by rpki-client