Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/GCxFN42_vqhExvCKFqD5oxmVXKw.roa
File: GCxFN42_vqhExvCKFqD5oxmVXKw.roa (raw, json)
Hash identifier: t/0VYf54caJuCyecf4zAklAVTV3Ymm8d7qv/z+Wm9BI=
Subject key identifier: 18:2C:45:37:8D:BF:BE:A8:44:C6:F0:8A:16:A0:F9:A3:19:95:5C:AC
Certificate issuer: /CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Certificate serial: 05A10EC5
Authority key identifier: 02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/GCxFN42_vqhExvCKFqD5oxmVXKw.roa
Signing time: Sun 05 Jun 2022 21:27:21 +0000
ROA not before: Sun 05 Jun 2022 21:27:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56402
IP address blocks: 185.120.168.0/24 maxlen: 24
185.120.168.0/23 maxlen: 23
185.120.169.0/24 maxlen: 24
77.77.64.0/18 maxlen: 18
46.225.120.0/23 maxlen: 23
77.77.76.0/23 maxlen: 23
77.77.76.0/24 maxlen: 24
77.77.77.0/24 maxlen: 24
46.225.128.0/19 maxlen: 19
46.225.128.0/20 maxlen: 20
46.225.144.0/20 maxlen: 20
77.77.96.0/19 maxlen: 19
46.225.96.0/19 maxlen: 19
46.225.96.0/24 maxlen: 24
77.77.64.0/19 maxlen: 19
46.225.233.0/24 maxlen: 24
46.224.0.0/19 maxlen: 19
46.224.0.0/24 maxlen: 24
46.224.1.0/24 maxlen: 24
46.224.2.0/24 maxlen: 24
46.224.2.0/23 maxlen: 23
46.224.3.0/24 maxlen: 24
46.224.6.0/24 maxlen: 24
46.224.7.0/24 maxlen: 24
46.224.8.0/24 maxlen: 24
46.224.10.0/24 maxlen: 24
46.224.16.0/20 maxlen: 20
46.224.0.0/15 maxlen: 15
46.224.15.0/24 maxlen: 24
46.225.224.0/19 maxlen: 19
46.224.128.0/19 maxlen: 19
2a02:16c0::/29 maxlen: 29
2a02:16c0::/30 maxlen: 30
2a02:16c4::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94441157 (0x5a10ec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0283a8c69a2630cd8f6fa70af2a53fe019f2cc07
Validity
Not Before: Jun 5 21:27:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=182c45378dbfbea844c6f08a16a0f9a319955cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9a:f6:73:da:df:52:ed:91:9c:ad:36:7e:45:
99:4f:b4:33:81:84:cc:53:c8:c9:3e:a7:f1:5e:2b:
c9:91:21:ba:f6:9c:57:fd:9c:8a:a7:0c:36:04:ce:
a2:fa:d0:9b:4c:43:83:5f:c2:4a:c9:d2:c0:68:ae:
1b:14:68:b1:68:25:1c:97:2f:72:4c:95:7b:9d:d0:
84:13:30:99:1c:52:3c:04:75:4c:5f:58:f8:fd:0c:
76:31:ed:e8:a6:e6:24:c5:bc:f9:0b:2a:92:eb:18:
8a:c4:08:23:03:8e:db:88:31:92:d6:92:10:4c:bc:
6d:14:1e:78:df:2a:f6:21:f0:2c:55:7c:19:77:fd:
c9:36:45:78:96:e9:a9:7f:17:0f:57:20:ac:9d:c4:
68:65:2d:b6:e4:e0:e5:43:94:7d:97:c7:44:ae:f1:
17:ce:54:60:54:64:a6:13:ac:70:e9:3e:a1:66:dd:
39:24:45:5f:2d:f8:e5:de:53:93:2c:52:b8:38:1a:
9d:b3:26:2b:d1:d6:90:08:60:be:f8:e1:b3:1f:43:
0c:4b:41:a9:f8:d4:9e:d6:c4:6c:0d:27:84:7f:c5:
56:24:7b:92:19:e4:7f:6d:50:09:eb:64:24:cf:5e:
3c:28:c8:ac:d6:c9:26:93:44:31:a3:db:6b:51:40:
0b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2C:45:37:8D:BF:BE:A8:44:C6:F0:8A:16:A0:F9:A3:19:95:5C:AC
X509v3 Authority Key Identifier:
keyid:02:83:A8:C6:9A:26:30:CD:8F:6F:A7:0A:F2:A5:3F:E0:19:F2:CC:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoOoxpomMM2Pb6cK8qU_4BnyzAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/GCxFN42_vqhExvCKFqD5oxmVXKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1c24ad-24b4-4c98-a659-592c0dcdaf79/1/AoOoxpomMM2Pb6cK8qU_4BnyzAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.224.0.0/15
77.77.64.0/18
185.120.168.0/23
IPv6:
2a02:16c0::/29
Signature Algorithm: sha256WithRSAEncryption
30:64:d2:09:1b:4e:81:1e:d0:d7:fb:d4:e0:75:58:f9:d0:9c:
61:5e:cc:d9:36:88:da:af:17:ad:08:ed:9b:0d:12:c5:2c:42:
64:bf:3d:5f:55:7b:1a:d5:41:10:ee:71:32:6b:15:a1:24:fe:
72:17:94:a4:33:bb:5b:d5:76:bf:82:21:75:4f:ad:fd:0f:76:
5b:83:26:6b:9f:d7:f8:79:01:8d:73:4a:a1:96:82:6a:39:75:
dd:c3:52:4c:d0:29:f0:b8:39:ec:29:25:d1:65:90:1d:cb:84:
b2:f2:ea:c9:1f:21:d0:e9:19:30:6f:e9:10:db:19:55:fe:92:
77:75:36:7f:52:f4:7d:5b:de:b8:24:3f:f0:85:19:8c:0e:32:
27:da:81:80:94:ef:d3:24:f5:42:3d:ce:02:0e:30:70:75:9e:
c8:66:bf:61:7e:15:c1:07:ca:ef:4b:1a:bf:26:d0:9f:5b:25:
c2:64:e0:77:c4:71:c2:33:ec:1a:01:7e:c1:62:87:14:12:29:
d0:fc:77:b0:e2:f5:13:6b:5a:38:12:35:c5:c5:67:fe:30:99:
e7:9c:4b:84:a2:51:60:d8:57:a2:61:52:85:2f:56:63:b4:95:
43:5e:c0:4d:2a:16:62:71:26:4c:55:7b:23:67:c0:14:74:68:
6e:a3:f2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:36 2023 by rpki-client on console-fra.rpki-client.org