Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/gBzQlFskm_6xjpFbvV-R5vP2mIU.roa
File: gBzQlFskm_6xjpFbvV-R5vP2mIU.roa (raw, json)
Hash identifier: LEvwTln1F/bnJvyY2KozdxViSLa7FJUT9BLLFZgJ0ag=
Subject key identifier: 80:1C:D0:94:5B:24:9B:FE:B1:8E:91:5B:BD:5F:91:E6:F3:F6:98:85
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0183B80ED5036458D3A30E46F392F7AE822D
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/gBzQlFskm_6xjpFbvV-R5vP2mIU.roa
Signing time: Sat 08 Oct 2022 14:45:23 +0000
ROA not before: Sat 08 Oct 2022 14:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206499
IP address blocks: 45.14.68.0/24 maxlen: 32
45.14.69.0/24 maxlen: 24
193.177.223.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b8:0e:d5:03:64:58:d3:a3:0e:46:f3:92:f7:ae:82:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Oct 8 14:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=801cd0945b249bfeb18e915bbd5f91e6f3f69885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b7:6b:3f:c3:5a:1c:d5:cd:76:3b:41:b3:c1:
5a:0e:cb:0a:a4:75:de:d0:fc:76:e0:3c:ab:b6:37:
5a:21:fc:3c:7c:ce:24:7c:cf:62:04:60:6a:db:a3:
33:f2:bf:0c:cf:e3:c4:2c:8d:1a:c4:3b:f7:47:cf:
8d:92:32:9a:0a:5e:57:29:0e:a5:e0:73:81:98:9c:
c0:92:52:07:4b:00:4e:6b:6c:29:01:31:2c:4a:d5:
12:dd:b5:d4:b7:8a:12:4c:9b:f5:bb:b6:96:71:2d:
90:01:43:db:9d:ec:11:d9:eb:d5:c5:90:74:52:f4:
c8:c7:1e:e2:e9:3e:ea:11:93:5b:6e:8e:af:09:8e:
35:bc:a2:7d:49:da:04:e9:e5:09:38:20:69:a9:eb:
3c:1d:09:0c:8c:5f:66:ac:a1:84:a5:64:ef:ba:11:
e1:95:c8:34:1c:0e:73:6f:b9:cd:5d:95:93:db:6f:
5d:06:e1:80:e9:15:28:3a:c2:9f:4b:2c:40:20:7c:
c9:f7:4e:20:be:28:8f:e8:1e:81:2f:2a:36:4d:9b:
06:ae:89:83:ad:9b:da:ef:97:e0:19:1f:ab:26:08:
a8:18:41:84:e8:33:85:f6:ed:44:9a:f2:77:b4:9a:
df:92:3b:fc:cc:d6:23:e6:a5:ef:4d:c4:24:1e:d2:
9c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1C:D0:94:5B:24:9B:FE:B1:8E:91:5B:BD:5F:91:E6:F3:F6:98:85
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/gBzQlFskm_6xjpFbvV-R5vP2mIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.68.0/23
193.177.223.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4d:5f:c0:a0:cc:2f:75:f9:6a:93:87:9d:eb:f9:34:d6:08:
26:82:ff:ee:54:8b:52:01:32:6e:5a:af:37:ef:26:e4:ad:d7:
37:50:8e:23:94:b0:af:1e:88:3d:73:e6:bc:3f:64:57:7a:0b:
4b:28:ae:5d:ee:c1:ba:8e:b5:8e:46:ee:b1:b6:8e:a1:41:d5:
5f:cb:a9:95:d1:ec:b5:2a:2b:49:f5:73:b8:b1:38:bc:4a:1c:
9c:a9:d3:41:a3:93:63:1a:6f:53:0a:6c:1a:c1:0d:70:e2:ec:
ee:ed:a6:aa:13:02:73:a8:a2:96:a0:77:5e:89:43:c8:75:ef:
e5:bb:3a:47:71:d4:5e:be:7b:7f:e5:01:9f:b0:d3:cf:5b:e8:
f6:c7:3c:85:9d:39:50:c5:34:bd:ef:17:75:69:d0:1d:52:c4:
79:ce:15:cf:ca:e8:d3:6f:ec:87:e5:1f:00:1f:3c:d2:e6:25:
77:d2:b5:4c:ef:f1:38:08:67:21:d5:3d:54:e9:0e:80:4c:6d:
39:d6:dc:50:25:d2:58:62:69:0f:c8:37:b6:42:b6:71:ab:3d:
c7:a1:bf:e7:88:00:d7:b0:e2:5c:43:fa:0d:66:d7:b6:d4:06:
11:32:b2:5b:fd:58:7f:38:9c:9b:42:44:b1:d3:b8:66:c5:a0:
9c:a6:39:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org