Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/de8d82-8e0a-4452-b89a-6508c1f4a445/1/gvCtkWGAItPyIKn0JXD_1mYAb7A.roa
File: gvCtkWGAItPyIKn0JXD_1mYAb7A.roa (raw, json)
Hash identifier: fekSjlJsQ4dxXWUNUQcAq1au0nsluIzDJg0faFw7X3Q=
Subject key identifier: 82:F0:AD:91:61:80:22:D3:F2:20:A9:F4:25:70:FF:D6:66:00:6F:B0
Certificate issuer: /CN=116538dffd77cf238c4eaeb95ca05487c5671ab5
Certificate serial: 0464DFE7
Authority key identifier: 11:65:38:DF:FD:77:CF:23:8C:4E:AE:B9:5C:A0:54:87:C5:67:1A:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EWU43_13zyOMTq65XKBUh8VnGrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/de8d82-8e0a-4452-b89a-6508c1f4a445/1/gvCtkWGAItPyIKn0JXD_1mYAb7A.roa
Signing time: Sat 01 Jan 2022 05:01:59 +0000
ROA not before: Sat 01 Jan 2022 05:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200797
IP address blocks: 217.148.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73719783 (0x464dfe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=116538dffd77cf238c4eaeb95ca05487c5671ab5
Validity
Not Before: Jan 1 05:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82f0ad91618022d3f220a9f42570ffd666006fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:f5:69:86:8f:de:3c:4e:2c:d2:d9:d5:bb:61:
aa:c5:d5:67:ea:75:c1:e6:b1:a0:44:53:15:9d:f4:
68:54:de:3d:16:d6:83:33:f3:68:89:c7:39:8f:fc:
ff:45:77:df:20:7b:1d:8a:c6:fa:89:8e:37:a1:17:
98:a3:d8:09:a2:d0:35:7f:9c:01:fd:4a:0b:cf:de:
3f:d4:8b:f4:0d:77:fa:b9:f2:36:8a:fd:c4:56:82:
ab:43:f7:89:63:f9:8c:ec:eb:b3:8f:d1:e6:dd:83:
43:40:1e:e3:6c:ec:75:04:ad:d4:a0:4e:06:eb:a3:
67:db:38:20:b0:11:70:e8:30:32:bd:11:98:7b:95:
7f:99:6b:e4:9c:af:1a:96:9f:af:b3:01:ad:11:3b:
d6:d8:a5:4c:22:e4:f2:51:b0:d6:13:06:3b:5e:30:
26:fa:0e:c4:a7:25:5f:cb:26:1b:9e:5b:c2:40:d0:
04:10:5d:56:bd:43:eb:6d:44:0b:0c:10:58:27:d6:
c2:e3:3e:82:bb:fa:7c:22:b7:a0:6f:6e:e4:9a:45:
e2:0e:35:9e:0d:0a:f1:a9:aa:c7:a9:c9:6c:2e:37:
42:28:c9:50:e8:2d:66:63:05:4f:32:d3:2d:65:7b:
9e:48:1f:1f:1e:f0:cc:81:53:cc:39:3e:3c:2d:c2:
c9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F0:AD:91:61:80:22:D3:F2:20:A9:F4:25:70:FF:D6:66:00:6F:B0
X509v3 Authority Key Identifier:
keyid:11:65:38:DF:FD:77:CF:23:8C:4E:AE:B9:5C:A0:54:87:C5:67:1A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EWU43_13zyOMTq65XKBUh8VnGrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/de8d82-8e0a-4452-b89a-6508c1f4a445/1/gvCtkWGAItPyIKn0JXD_1mYAb7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/de8d82-8e0a-4452-b89a-6508c1f4a445/1/EWU43_13zyOMTq65XKBUh8VnGrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.148.128.0/22
Signature Algorithm: sha256WithRSAEncryption
52:b5:97:07:cb:23:11:bd:49:7b:0f:9d:61:a7:7f:cf:6a:46:
b0:c2:ba:16:63:d6:2a:18:21:d6:5a:f2:d7:f0:ec:4a:ad:a4:
b0:c6:06:c8:86:fc:79:10:a8:9e:96:c3:0c:c0:ef:46:09:d8:
22:66:e0:ed:bf:78:36:61:7a:dd:8d:9e:b9:cc:4e:d7:7e:cc:
a6:d1:4a:37:a3:eb:06:4a:d3:63:12:35:e5:6d:33:a2:a4:75:
b7:1d:4d:44:ca:70:b7:ed:c4:3c:0f:20:60:2b:95:b0:bd:a9:
e7:4e:20:5b:df:10:e7:b1:fd:7c:8e:e3:fc:3f:d1:9b:f2:1b:
92:9d:d9:2b:6b:be:79:df:ce:82:96:25:3a:aa:fe:28:7f:d1:
73:d8:49:f2:ce:85:87:e1:85:67:4b:ed:58:f8:42:be:40:56:
e2:47:e0:49:b3:12:72:08:5d:d4:4f:46:0f:28:5c:d1:3c:a4:
00:ff:d0:f1:39:91:f2:7e:73:78:cd:6a:ec:3e:a4:2a:36:d1:
df:ed:7e:92:d5:c2:d2:24:d7:dd:3f:8f:5c:1b:5b:8a:a5:77:
14:97:a8:de:07:ed:e3:8f:3e:53:ea:12:67:c9:b8:dd:33:e6:
a0:ae:79:5d:88:3f:c1:14:68:b9:c0:9f:8d:8e:53:18:ac:f0:
8a:e3:c2:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-ams.rpki-client.org