Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/GoZAtbA8PS3tL_cK3zDWgNooCXM.roa
File: GoZAtbA8PS3tL_cK3zDWgNooCXM.roa (raw, json)
Hash identifier: oDW3toWgF+MoDYWwEZJxbEVkRnnN017HsoN8kdLIskA=
Subject key identifier: 1A:86:40:B5:B0:3C:3D:2D:ED:2F:F7:0A:DF:30:D6:80:DA:28:09:73
Certificate issuer: /CN=1da81713853c9b18d410d4ff3099ab668e69b3f5
Certificate serial: 0C0363
Authority key identifier: 1D:A8:17:13:85:3C:9B:18:D4:10:D4:FF:30:99:AB:66:8E:69:B3:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HagXE4U8mxjUENT_MJmrZo5ps_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/GoZAtbA8PS3tL_cK3zDWgNooCXM.roa
Signing time: Mon 11 Apr 2022 14:17:22 +0000
ROA not before: Mon 11 Apr 2022 14:17:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.131.114.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 787299 (0xc0363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da81713853c9b18d410d4ff3099ab668e69b3f5
Validity
Not Before: Apr 11 14:17:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a8640b5b03c3d2ded2ff70adf30d680da280973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:81:20:cc:95:0b:79:af:d6:b2:d9:b2:92:73:
b2:9f:6b:85:30:51:11:b9:d5:b0:b8:b9:30:3e:54:
09:27:64:c9:98:41:77:7d:cf:54:85:88:6d:32:d0:
00:cc:7b:4a:60:54:91:93:03:c2:6a:c4:96:22:0c:
d6:5c:75:2e:9b:c4:f4:ba:73:f3:a1:9a:89:89:c7:
c7:74:27:8a:ca:23:35:7b:32:d0:b2:c4:18:f2:af:
f0:11:39:32:85:fe:8d:95:c7:f7:90:58:c3:ef:af:
a4:8a:6d:9c:40:6c:93:53:ae:aa:6a:f0:3c:c7:77:
db:0f:25:fa:2e:d3:89:4e:8d:fb:c4:a7:9e:7f:f4:
b4:cd:4a:44:3d:2e:f0:e3:f0:b8:09:6e:c7:69:e9:
a9:ec:b4:fa:c2:4f:cd:aa:96:c5:08:86:30:5e:b2:
b6:03:29:d7:80:43:c1:f4:2a:0b:e8:4c:9d:fb:27:
1e:1f:de:0d:34:85:57:5b:e0:e9:a3:24:f8:3a:50:
fe:7e:f9:81:f2:af:fd:01:35:c2:c7:37:10:75:93:
e1:f4:ce:49:14:41:7b:ac:68:6b:31:ee:bc:d6:1c:
7f:62:f7:72:4e:fd:31:56:5d:51:c9:d7:2c:a9:30:
57:2c:22:cb:45:ea:0a:2c:40:58:fd:5b:d8:8f:17:
37:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:86:40:B5:B0:3C:3D:2D:ED:2F:F7:0A:DF:30:D6:80:DA:28:09:73
X509v3 Authority Key Identifier:
keyid:1D:A8:17:13:85:3C:9B:18:D4:10:D4:FF:30:99:AB:66:8E:69:B3:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HagXE4U8mxjUENT_MJmrZo5ps_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/GoZAtbA8PS3tL_cK3zDWgNooCXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/HagXE4U8mxjUENT_MJmrZo5ps_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.131.114.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:e8:16:cb:33:9d:b5:b5:1f:00:be:02:18:f6:0a:e7:60:7e:
3a:c7:46:6b:8f:15:46:54:fb:1f:e3:6b:6d:79:90:ee:9b:17:
83:17:d0:e3:81:44:be:6a:0a:e6:4d:3a:d9:c0:61:42:e6:94:
ec:5a:55:b3:5a:0f:a7:2d:b1:4c:08:c5:98:b5:98:17:60:39:
01:db:64:f0:bf:62:d7:a9:42:b4:a7:86:ef:9b:3c:71:84:f8:
d1:15:69:65:61:3f:1e:00:1a:3e:5c:ab:08:82:ab:6c:7e:15:
9b:78:8f:e5:1e:a9:a5:e3:82:b2:a2:bd:bd:ea:38:12:81:85:
c7:57:01:e5:8e:2f:dd:73:97:c1:70:70:da:14:1f:69:17:3e:
61:bb:3a:fd:08:c5:a1:af:c6:c2:b7:e3:90:c5:2d:14:73:2e:
ed:20:d9:1d:ee:3f:8d:e3:da:43:1e:a3:8b:de:09:6b:b4:61:
47:f8:9d:cc:ab:93:f6:ad:fd:22:7f:ac:04:59:81:10:1f:83:
67:4b:2a:50:f0:21:7c:7a:04:6b:d9:7d:2a:36:73:8d:5b:fd:
c5:8f:71:1e:a0:00:4e:1b:f3:8f:2f:81:38:30:57:cb:4f:da:
ef:2d:b1:0e:d8:7c:97:f8:f4:24:fa:76:1f:e9:c9:b8:12:c2:
b9:c5:c3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:07 2024 by rpki-client on console-ams.rpki-client.org