Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/GGLQ8PYYdgBVB2nC7870Lamvn8s.roa
File: GGLQ8PYYdgBVB2nC7870Lamvn8s.roa (raw, json)
Hash identifier: 536S61odogx7KoNFfeM4e8m3oHyU9ndmXhphrX58108=
Subject key identifier: 18:62:D0:F0:F6:18:76:00:55:07:69:C2:EF:CE:F4:2D:A9:AF:9F:CB
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 119D058A
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/GGLQ8PYYdgBVB2nC7870Lamvn8s.roa
Signing time: Sat 01 Jan 2022 07:57:58 +0000
ROA not before: Sat 01 Jan 2022 07:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64467
IP address blocks: 2a00:9b40:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295503242 (0x119d058a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jan 1 07:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1862d0f0f6187600550769c2efcef42da9af9fcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a5:10:a2:d0:4e:92:45:f0:bd:79:f7:62:36:
1f:6b:1d:e5:4b:11:60:39:b5:1b:e0:aa:f6:c2:b8:
77:4a:66:24:6c:01:21:c4:16:2a:c3:56:b0:52:e6:
99:cf:57:e0:a3:ec:e4:e5:22:c8:26:7f:f3:85:a8:
f5:00:bd:76:59:df:76:14:9a:fd:a6:bc:e9:d5:2d:
a7:9d:c5:ac:39:dd:79:df:61:78:f5:35:63:0f:10:
47:e6:67:df:c1:57:bb:38:22:26:24:25:09:22:47:
c8:6a:58:50:c5:65:4c:88:eb:c9:11:88:b7:f4:38:
77:e5:56:50:b2:2f:e1:5d:03:60:a0:c9:5b:ff:4f:
6f:20:97:8b:f4:75:7e:aa:01:c0:2b:b4:04:7b:1e:
c0:96:97:d8:57:c4:60:e9:74:98:18:0c:95:52:11:
1e:21:b3:cc:c7:64:c3:9e:d8:40:0c:e1:36:e1:f9:
20:82:9b:e8:ca:da:3d:3d:b4:ec:97:a6:1c:cb:05:
2b:fd:74:bc:73:70:00:47:7c:ad:dd:eb:81:48:9a:
6f:63:ea:6c:fa:cb:0e:29:58:00:97:a8:75:98:90:
4d:48:51:94:af:07:dd:78:be:89:34:f1:e0:c1:35:
95:f3:b6:4c:ea:f3:ea:99:0d:bb:64:3b:f6:99:ba:
1e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:62:D0:F0:F6:18:76:00:55:07:69:C2:EF:CE:F4:2D:A9:AF:9F:CB
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/GGLQ8PYYdgBVB2nC7870Lamvn8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:9b40:100::/40
Signature Algorithm: sha256WithRSAEncryption
6c:4d:fe:6d:04:ae:ae:8d:0e:a5:8b:d7:98:de:63:3a:56:1c:
dd:34:9f:e5:4a:19:5a:07:c9:ec:29:e6:b7:36:fa:fa:39:ac:
0f:98:bf:2f:8d:d7:10:c6:34:b7:21:08:ea:07:e7:36:8b:a5:
bc:77:1a:c9:62:a5:35:84:a9:56:6f:ec:3e:a5:fd:9c:2b:80:
60:e5:ec:e3:fb:16:8a:23:65:0e:62:b7:7b:31:55:d0:cf:81:
bf:88:32:85:e4:a4:73:21:6f:e1:0b:45:d4:00:97:f0:5a:dd:
6c:ba:26:d5:1a:f0:b6:b5:56:f2:cb:15:50:52:46:e1:26:8e:
73:bf:80:5c:05:fd:ab:09:4d:2e:cc:93:10:78:72:4c:f5:69:
d2:f3:20:2d:34:90:52:57:89:ec:89:37:f0:4b:ed:52:ba:a3:
f2:23:a2:9a:08:55:a2:d3:eb:d4:a7:64:d4:1c:ab:93:8f:ec:
ff:87:05:46:6c:79:a1:3d:26:65:a5:05:ce:c5:ef:a8:cc:07:
f7:a1:f1:b9:4c:7b:11:bd:9a:de:26:af:a1:42:79:eb:57:fe:
8a:08:fe:c6:e3:f7:45:f0:e4:a3:be:20:82:90:35:53:fe:d4:
9b:d6:9b:fe:bc:8d:3e:a4:26:f8:5e:cf:4b:4e:a1:17:aa:55:
ca:4c:10:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:35 2023 by rpki-client on console-fra.rpki-client.org