Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/eafe6e-cfe3-4245-9c36-07a28ad3cb64/1/GBzMzXRC2SOy8uRkjWTVSHgrXw4.roa
File: GBzMzXRC2SOy8uRkjWTVSHgrXw4.roa (raw, json)
Hash identifier: cOCZuUgUxHuPMLbsYZYxcHvb+xhw/LwehV9/Ljxsj9Y=
Subject key identifier: 18:1C:CC:CD:74:42:D9:23:B2:F2:E4:64:8D:64:D5:48:78:2B:5F:0E
Certificate issuer: /CN=199ef1b4eb6a0f812511b6bb2704801a3311f709
Certificate serial: 018B6085BF1D7B629824C87C3DD54B360D6B
Authority key identifier: 19:9E:F1:B4:EB:6A:0F:81:25:11:B6:BB:27:04:80:1A:33:11:F7:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZ7xtOtqD4ElEba7JwSAGjMR9wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/eafe6e-cfe3-4245-9c36-07a28ad3cb64/1/GBzMzXRC2SOy8uRkjWTVSHgrXw4.roa
Signing time: Tue 24 Oct 2023 07:10:59 +0000
ROA not before: Tue 24 Oct 2023 07:10:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206060
IP address blocks: 185.197.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:85:bf:1d:7b:62:98:24:c8:7c:3d:d5:4b:36:0d:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=199ef1b4eb6a0f812511b6bb2704801a3311f709
Validity
Not Before: Oct 24 07:10:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=181ccccd7442d923b2f2e4648d64d548782b5f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:96:35:9c:69:19:1e:54:08:8f:a6:e7:bc:8f:
19:71:88:7b:ed:fc:38:96:a5:36:75:0a:95:ba:04:
e7:9c:53:ef:78:92:fe:3c:34:0a:15:b4:8a:bf:21:
cb:ee:05:cd:80:6a:c3:3e:44:96:9b:c3:7a:3e:78:
dd:ac:41:9c:fd:9f:2f:be:fe:11:cd:3c:b9:62:d5:
2c:5c:bf:3b:f7:2e:ff:b8:66:46:26:a1:95:53:f8:
3c:5b:8c:c4:13:d1:ed:24:38:dc:6f:f7:90:c2:3e:
03:f1:5c:f3:65:a3:fe:bc:42:b4:49:df:90:03:2d:
45:56:92:da:13:ea:c4:32:c0:2e:8a:4d:07:cc:49:
1d:a9:76:e1:bb:da:2f:41:d7:38:51:34:51:89:02:
8a:c2:6f:24:f8:59:11:e7:99:47:c6:22:70:8a:25:
9b:fd:1b:a2:8f:64:17:90:c1:a6:0f:06:5d:7a:6b:
50:9f:2e:5f:f8:f7:1e:e4:e7:2f:d3:89:95:80:85:
c5:02:97:48:fa:8e:ac:e9:2d:90:bb:7c:de:49:31:
96:4f:97:72:58:21:51:60:d9:c2:0e:28:bc:64:c0:
e5:12:37:bf:c7:19:24:38:d0:70:b7:69:b8:68:8a:
0e:87:2f:10:ce:a7:9f:e1:9d:35:67:54:63:aa:85:
96:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1C:CC:CD:74:42:D9:23:B2:F2:E4:64:8D:64:D5:48:78:2B:5F:0E
X509v3 Authority Key Identifier:
keyid:19:9E:F1:B4:EB:6A:0F:81:25:11:B6:BB:27:04:80:1A:33:11:F7:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZ7xtOtqD4ElEba7JwSAGjMR9wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/eafe6e-cfe3-4245-9c36-07a28ad3cb64/1/GBzMzXRC2SOy8uRkjWTVSHgrXw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/eafe6e-cfe3-4245-9c36-07a28ad3cb64/1/GZ7xtOtqD4ElEba7JwSAGjMR9wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.179.0/24
Signature Algorithm: sha256WithRSAEncryption
63:42:bc:b9:5e:72:ca:a3:dd:1c:57:74:92:08:3d:48:a4:b5:
76:c5:23:5a:af:3f:f8:27:89:bf:84:b3:ef:7d:b1:56:43:fd:
06:b2:4a:54:0e:5f:61:93:39:4d:33:c8:c4:0f:f3:d6:35:62:
5d:4e:6b:a8:9b:ca:d5:b9:91:07:4c:64:b9:01:f1:b2:40:6d:
86:31:6c:3a:9e:2a:a5:ba:5f:30:4f:34:dd:7b:f1:82:da:46:
a7:d9:11:e5:aa:b8:47:0f:2c:51:49:ac:e8:98:37:4f:dd:11:
de:76:a5:b6:69:a1:2e:a0:7d:8f:fa:89:fb:11:53:d8:97:c9:
1e:3d:69:a5:18:33:d8:48:82:38:13:09:b5:7f:af:82:ca:1f:
bb:f4:27:aa:d3:03:68:58:58:4a:72:ae:d6:dd:b6:e9:53:92:
6f:9b:cc:f0:19:e5:e7:22:52:77:9c:6b:09:fc:91:43:68:70:
f6:7d:22:0b:bb:36:37:9d:a6:30:00:ea:02:30:95:12:f3:1e:
76:2c:37:d1:aa:6e:45:f2:d4:96:6f:f4:d5:ae:12:98:b7:9b:
3b:b8:f0:ef:c5:2a:32:7e:69:3a:cc:91:18:0b:1f:4c:4c:40:
ae:4d:fb:87:4b:68:20:de:25:c3:79:4a:22:40:4e:f1:40:0a:
c2:00:7f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:08 2025 by rpki-client