Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/GpGXct8HAq9Fo04fjkk2DiHUr68.roa
File: GpGXct8HAq9Fo04fjkk2DiHUr68.roa (raw, json)
Hash identifier: EblF/v0Yxcne/7cxcJzwkN1kJLtP57yNIyoG1KGyNwA=
Subject key identifier: 1A:91:97:72:DF:07:02:AF:45:A3:4E:1F:8E:49:36:0E:21:D4:AF:AF
Certificate issuer: /CN=4516eb0ee37a71076461ec6cba8b925ac5e28a04
Certificate serial: 0186977F9200577F6858E062E694C47CB641
Authority key identifier: 45:16:EB:0E:E3:7A:71:07:64:61:EC:6C:BA:8B:92:5A:C5:E2:8A:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRbrDuN6cQdkYexsuouSWsXiigQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/GpGXct8HAq9Fo04fjkk2DiHUr68.roa
Signing time: Tue 28 Feb 2023 10:09:25 +0000
ROA not before: Tue 28 Feb 2023 10:09:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56457
IP address blocks: 2a13:5a00::/30 maxlen: 32
2a13:5a04::/31 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:7f:92:00:57:7f:68:58:e0:62:e6:94:c4:7c:b6:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4516eb0ee37a71076461ec6cba8b925ac5e28a04
Validity
Not Before: Feb 28 10:09:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a919772df0702af45a34e1f8e49360e21d4afaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b4:fc:1a:54:97:09:b7:b5:eb:88:b9:a2:06:
a1:e4:28:61:c5:8c:83:69:32:e7:d5:cb:87:6a:5f:
92:a8:f5:1e:c5:4a:96:7b:42:7d:80:29:d8:0e:9c:
6c:15:c9:7f:36:c0:80:53:f5:ae:7f:75:2e:45:a5:
04:70:d9:8e:1f:da:ab:8e:ba:49:6d:92:6d:e6:df:
bc:87:ac:a0:4c:89:f7:64:af:04:c7:e8:f1:f9:ff:
dc:c8:06:df:90:9f:21:6b:69:8d:2c:6b:71:c1:3f:
93:1b:8d:44:f5:99:43:ff:68:15:21:1e:6c:d4:0d:
c5:26:ca:ab:79:2a:67:e1:e4:28:41:b4:77:da:c2:
38:a0:ed:59:13:86:c7:b1:25:4e:16:31:42:03:29:
f9:84:24:80:a9:c6:13:57:9d:23:56:bc:82:4c:da:
55:f3:1c:d2:20:76:4a:27:61:c5:a0:86:f4:b6:ed:
e6:ff:50:1c:fd:05:d3:a6:d8:00:6c:bc:0f:0b:e3:
41:3b:58:90:e9:f9:d0:07:91:30:45:a1:c9:39:74:
e4:96:8a:19:fc:4c:e3:5b:b7:c2:a4:a6:7f:27:c4:
f1:97:ac:7f:59:f5:03:21:ef:14:58:62:4e:cf:17:
f8:30:31:15:2a:8e:00:42:d9:bb:c6:4b:d7:09:a7:
3b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:91:97:72:DF:07:02:AF:45:A3:4E:1F:8E:49:36:0E:21:D4:AF:AF
X509v3 Authority Key Identifier:
keyid:45:16:EB:0E:E3:7A:71:07:64:61:EC:6C:BA:8B:92:5A:C5:E2:8A:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRbrDuN6cQdkYexsuouSWsXiigQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/GpGXct8HAq9Fo04fjkk2DiHUr68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/2923ab-3ff8-4aa9-9220-5e292aa544af/1/RRbrDuN6cQdkYexsuouSWsXiigQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5a00::-2a13:5a05:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
72:66:04:c2:2a:d5:ae:8d:6d:cc:9c:42:3e:e9:c2:45:2c:4d:
e7:4d:37:a2:d8:ec:53:f6:9d:df:df:3c:12:f7:30:6e:9d:a4:
5a:b2:a2:5b:ca:37:a7:b5:da:5d:b9:fc:a7:db:13:ae:99:98:
ba:16:b0:9e:24:a9:70:22:86:08:ff:7a:be:12:4f:c8:57:6d:
92:83:7d:09:64:47:49:6f:14:e9:ee:e3:63:46:69:eb:e1:3f:
e3:4e:91:0e:56:7c:ce:29:7f:08:e6:46:0f:52:97:d1:3a:de:
49:86:08:60:c0:52:42:2d:98:9c:3f:20:07:2e:42:2e:4a:50:
13:19:3a:d0:fb:36:10:cb:e3:91:bc:a4:4b:92:f2:79:95:8d:
76:2c:d3:06:fe:95:09:09:d5:1f:7b:2b:3e:57:43:43:db:da:
a8:7a:7b:c9:37:da:af:b5:ac:6a:15:90:7a:23:7d:6c:54:2f:
9a:77:dc:91:33:e6:35:20:4b:06:99:2f:f7:6a:df:0a:07:8d:
c9:5a:4e:8e:ed:7c:1a:c7:11:9b:5c:c9:66:68:43:1f:d7:b6:
56:b6:fa:0a:86:ee:f2:da:8b:b4:e1:be:e3:89:fa:33:bd:2c:
ed:2f:c3:ba:09:45:0b:c7:55:00:e5:64:8c:55:21:cd:2d:d7:
82:41:b6:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:21 2025 by rpki-client