Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/GxfKzRjUwH2khCNiGSZUSOIDXWk.roa
File: GxfKzRjUwH2khCNiGSZUSOIDXWk.roa (raw, json)
Hash identifier: 8EIVZ3wyDG+W3ZVUQNyYj22VB24e7mmXMDFf2Ksa6FQ=
Subject key identifier: 1B:17:CA:CD:18:D4:C0:7D:A4:84:23:62:19:26:54:48:E2:03:5D:69
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 0183AB28FBB16D9D341C29A70099BF2E66AA
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/GxfKzRjUwH2khCNiGSZUSOIDXWk.roa
Signing time: Thu 06 Oct 2022 02:38:53 +0000
ROA not before: Thu 06 Oct 2022 02:38:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.11.140.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ab:28:fb:b1:6d:9d:34:1c:29:a7:00:99:bf:2e:66:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Oct 6 02:38:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b17cacd18d4c07da484236219265448e2035d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b0:5d:30:e8:dc:3f:4b:ef:70:a6:b5:72:3c:
c1:83:3b:b5:cf:b2:89:fa:06:5f:eb:b9:6c:af:1f:
f6:fe:6c:bd:1b:fd:cc:be:3a:93:7c:f4:53:de:9d:
ba:c6:a6:c0:8c:63:86:c1:2e:a3:9f:27:bf:95:98:
33:27:a7:23:e9:c6:91:1b:24:1d:a9:a4:48:4d:db:
a1:ee:02:ee:02:2c:ad:bd:4e:1b:84:4a:be:c6:60:
2a:67:a1:80:dc:57:a5:fe:df:33:5b:e9:d1:61:6e:
e2:4c:09:69:83:47:34:86:0d:2c:44:0b:c3:5b:cf:
41:e4:d8:01:a7:a9:08:db:08:47:d6:d9:35:ab:bf:
08:e4:73:66:b8:0d:9a:7d:a0:51:21:83:9f:5c:30:
d0:f1:e8:a8:b3:5b:64:0a:bd:98:79:13:6f:32:15:
fc:c1:60:cc:12:ba:a1:ed:77:94:e1:5a:98:c9:56:
38:07:9c:32:b1:9e:01:a6:56:67:41:14:65:a3:30:
34:0e:0b:2f:8a:78:3e:0c:1e:e6:49:fc:a3:85:9c:
17:69:f9:83:a0:9e:e6:30:5c:cf:5c:25:f6:93:46:
05:56:86:20:c0:ee:d3:ad:f6:77:7d:67:74:f3:50:
54:21:a2:bf:5c:77:38:86:6b:6e:7e:c5:15:92:b2:
63:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:17:CA:CD:18:D4:C0:7D:A4:84:23:62:19:26:54:48:E2:03:5D:69
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/GxfKzRjUwH2khCNiGSZUSOIDXWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.140.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:bf:f1:35:0d:ab:d1:07:a1:af:e8:18:43:e0:e5:ee:dc:c4:
67:f1:d2:6c:f3:b8:75:58:6f:7e:38:6a:da:07:60:d5:db:3e:
42:0f:28:28:5a:3d:dc:6f:da:04:d3:f5:41:e8:d1:d0:f4:34:
d7:f2:48:8a:d6:bd:f0:dd:8b:ec:78:27:65:ce:17:06:3b:60:
ec:91:2d:97:1b:14:02:d0:aa:5e:39:3f:d6:42:22:f3:83:28:
09:86:91:bb:70:eb:d4:3a:c1:e4:17:05:70:ef:e4:81:af:bc:
1e:11:fd:14:59:95:0e:dd:d0:e6:73:ed:3c:e3:c7:dd:57:0d:
ef:b2:38:26:d3:91:bd:dc:6d:2b:68:7b:1e:bb:b0:7c:d6:7d:
b1:ae:b4:bc:ab:ec:ae:1f:14:74:c2:e5:eb:c8:1d:88:51:9c:
c3:ab:bd:ce:f9:cb:b0:6b:de:dd:ca:51:e9:fc:c2:51:8c:39:
b2:c1:34:88:2f:78:95:9a:cf:e8:d0:6d:86:e3:69:e8:ed:8d:
16:4d:e5:ec:26:56:8b:1a:1f:08:22:8b:24:97:dd:dc:96:4d:
0b:57:db:9d:d4:f9:e0:78:87:2a:fb:af:66:17:76:83:87:c5:
bd:70:fc:4f:ed:67:b2:9e:14:07:fb:e4:eb:01:b8:91:ec:b7:
0d:ed:dd:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org