Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/gxcUEItRnkSpNOHGAz_d1Nx6RyQ.roa
File: gxcUEItRnkSpNOHGAz_d1Nx6RyQ.roa (raw, json)
Hash identifier: 1DwyrDIjdJn18U0dPSIvLapOU/kpUwPbkwkxmc4c4vA=
Subject key identifier: 83:17:14:10:8B:51:9E:44:A9:34:E1:C6:03:3F:DD:D4:DC:7A:47:24
Certificate issuer: /CN=a0e0c59044c87e3e2dfa13cbf99023aee012efa0
Certificate serial: 08F37DC1
Authority key identifier: A0:E0:C5:90:44:C8:7E:3E:2D:FA:13:CB:F9:90:23:AE:E0:12:EF:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oODFkETIfj4t-hPL-ZAjruAS76A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/gxcUEItRnkSpNOHGAz_d1Nx6RyQ.roa
Signing time: Sat 01 Jan 2022 12:56:38 +0000
ROA not before: Sat 01 Jan 2022 12:56:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57480
IP address blocks: 91.232.4.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150175169 (0x8f37dc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e0c59044c87e3e2dfa13cbf99023aee012efa0
Validity
Not Before: Jan 1 12:56:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=831714108b519e44a934e1c6033fddd4dc7a4724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:13:4f:ea:82:c5:d1:b2:ff:d8:96:1b:29:ae:
67:e7:b4:98:c0:8e:14:c5:2c:82:0e:27:27:2b:e4:
fc:76:28:24:da:e0:a7:ed:09:da:03:b2:90:5d:c4:
43:92:45:08:66:34:74:4a:8b:86:f4:d5:4d:98:47:
52:6f:44:6e:dd:5f:8b:81:1f:65:d7:1d:c4:9e:45:
2d:44:0a:21:fd:f6:3a:64:f7:06:52:34:55:f3:7a:
3d:19:2a:35:79:a3:e0:66:a6:92:6b:dc:28:e5:4e:
e5:9f:e5:2e:8e:70:42:c7:d7:01:54:db:53:9d:a0:
f2:3e:ab:1e:84:15:6c:51:94:0c:b7:23:32:cd:3e:
f0:25:39:bd:a8:5e:ff:0b:8c:4b:c9:8a:3f:fe:66:
bc:e1:04:4b:8e:52:8a:e7:ad:42:15:3c:5d:97:93:
c2:47:7b:f2:e1:38:e2:74:3b:52:82:6c:32:27:18:
62:2a:d4:68:af:8d:d4:09:ab:b1:e8:fd:90:27:4c:
e2:33:2e:7c:75:b7:10:e9:07:3a:b9:4e:58:ce:ef:
49:0c:43:2b:88:69:66:97:95:00:c2:30:e8:09:c3:
51:52:6b:78:04:7e:28:67:35:b5:75:6b:73:18:0c:
30:a6:25:d3:58:8f:2f:1a:e9:f1:8b:79:05:db:bd:
91:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:17:14:10:8B:51:9E:44:A9:34:E1:C6:03:3F:DD:D4:DC:7A:47:24
X509v3 Authority Key Identifier:
keyid:A0:E0:C5:90:44:C8:7E:3E:2D:FA:13:CB:F9:90:23:AE:E0:12:EF:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oODFkETIfj4t-hPL-ZAjruAS76A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/gxcUEItRnkSpNOHGAz_d1Nx6RyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/oODFkETIfj4t-hPL-ZAjruAS76A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.4.0/23
Signature Algorithm: sha256WithRSAEncryption
73:f0:de:8f:82:f7:fc:e0:88:98:0d:6a:c1:a5:6b:2d:a8:97:
c3:3d:7f:c0:90:ef:4d:91:06:16:10:8a:1e:a1:66:72:6f:c7:
b8:f9:c7:38:6f:9d:e1:0e:89:7b:e1:cb:ac:55:d0:91:fb:af:
f4:ab:9f:68:50:c0:72:25:76:20:3c:5f:8f:5c:26:b5:6f:cd:
88:29:b5:4c:34:c1:d7:f1:48:51:e0:af:ef:58:6a:c6:73:f9:
eb:77:0c:d1:59:76:5c:5b:a9:b5:6b:37:61:ca:e6:7b:b6:18:
98:73:8d:fa:71:84:94:6b:3c:9a:6b:ee:3e:c3:9f:7c:8f:e4:
4d:00:b9:60:b8:13:29:17:20:8d:bc:06:5f:76:cf:a1:72:4c:
51:e0:85:61:5b:63:49:e7:75:05:8e:80:ff:0b:c3:fe:a3:57:
e7:46:7f:12:39:92:d4:64:1b:3b:3f:04:6f:df:0d:7a:66:72:
f2:80:c3:c5:06:59:1b:34:85:8b:a4:1e:e0:a6:fd:17:cb:ca:
8a:9c:57:44:27:4e:9e:37:3e:e2:49:cc:85:f8:e5:d3:12:4a:
a5:a6:4f:23:53:4f:40:32:21:99:5d:24:07:31:f9:8f:9a:70:
6d:d1:be:2f:54:b7:e8:8c:3f:61:cb:49:a0:b5:f9:9c:97:06:
58:00:32:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:32 2025 by rpki-client