Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/87dadf-29d9-49d3-8ac6-4cc40ffd796d/1/GB1fyWj4gw9LLdSpyL6oK8mYF7c.roa
File: GB1fyWj4gw9LLdSpyL6oK8mYF7c.roa (raw, json)
Hash identifier: qFjLcxVUckMUu55I4drf7Dr+UHBSGyKNuIJfAAsnbcY=
Subject key identifier: 18:1D:5F:C9:68:F8:83:0F:4B:2D:D4:A9:C8:BE:A8:2B:C9:98:17:B7
Certificate issuer: /CN=ac8a69ecb787cce9892dc65480463fb088b613df
Certificate serial: 33E5A1B4
Authority key identifier: AC:8A:69:EC:B7:87:CC:E9:89:2D:C6:54:80:46:3F:B0:88:B6:13:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIpp7LeHzOmJLcZUgEY_sIi2E98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/87dadf-29d9-49d3-8ac6-4cc40ffd796d/1/GB1fyWj4gw9LLdSpyL6oK8mYF7c.roa
Signing time: Sat 01 Jan 2022 01:50:56 +0000
ROA not before: Sat 01 Jan 2022 01:50:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8481
IP address blocks: 2a02:158:ffff::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870687156 (0x33e5a1b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a69ecb787cce9892dc65480463fb088b613df
Validity
Not Before: Jan 1 01:50:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=181d5fc968f8830f4b2dd4a9c8bea82bc99817b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0f:6f:59:36:8e:55:a3:78:bc:d5:9d:a5:55:
1d:78:ba:5c:72:ff:2f:8a:59:42:c7:28:9c:cd:89:
e8:db:5c:95:59:b9:56:82:20:43:f7:5e:5d:55:67:
d6:e5:40:34:83:31:55:b2:11:07:ae:dd:f1:92:f1:
90:36:c4:1e:cb:ab:b7:cf:a3:6c:62:5c:ab:41:c2:
14:a7:68:43:40:cf:dd:b7:94:44:90:e3:8b:dd:d3:
cc:b9:fe:31:06:07:77:78:be:22:62:b5:a3:f2:70:
9c:6e:16:9d:bf:31:a8:f8:6e:c9:01:aa:38:c5:97:
fa:0b:8e:89:00:b7:4d:19:37:1a:dc:ef:7c:47:8c:
9f:31:e4:29:fe:ff:5d:7b:47:f8:25:08:d1:78:6a:
b4:61:2a:ab:47:44:02:b8:92:77:67:2e:1d:48:c1:
07:86:e0:48:a4:e1:13:a8:db:07:c5:bf:fe:44:1a:
68:ab:82:4f:58:a6:72:1e:8e:94:a3:86:c7:ad:b4:
79:56:69:58:54:af:e5:2b:9f:f1:0e:4a:3b:98:58:
00:ee:0f:79:24:02:32:78:c4:0d:6e:d2:72:eb:14:
70:d5:0e:d4:07:75:9b:62:b4:04:a8:70:58:8c:7f:
a9:50:91:ef:aa:dc:ba:bc:ef:0b:65:15:db:e0:f4:
08:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1D:5F:C9:68:F8:83:0F:4B:2D:D4:A9:C8:BE:A8:2B:C9:98:17:B7
X509v3 Authority Key Identifier:
keyid:AC:8A:69:EC:B7:87:CC:E9:89:2D:C6:54:80:46:3F:B0:88:B6:13:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIpp7LeHzOmJLcZUgEY_sIi2E98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/87dadf-29d9-49d3-8ac6-4cc40ffd796d/1/GB1fyWj4gw9LLdSpyL6oK8mYF7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/87dadf-29d9-49d3-8ac6-4cc40ffd796d/1/rIpp7LeHzOmJLcZUgEY_sIi2E98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:158:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
3b:0e:c1:a8:44:19:c8:40:49:74:f4:f5:c9:62:ea:6f:74:53:
20:59:b7:d1:f3:06:b3:6e:a9:4e:c9:18:3e:1c:0e:51:5a:06:
61:1b:07:ad:52:54:86:68:6f:d6:f2:de:a2:10:c1:8c:8b:49:
d1:39:c0:2b:45:08:ae:fc:e6:89:5d:05:d8:45:12:e6:09:59:
ae:cc:5c:cc:04:62:17:02:7a:19:6a:d9:0d:02:9b:60:56:ca:
af:6b:54:7e:cd:aa:bb:56:69:61:bd:36:91:f3:5f:12:9d:f9:
a8:8a:d5:d1:5b:fa:4a:66:36:3f:d4:4c:18:62:86:40:06:e8:
38:3c:d1:f9:2d:a0:bf:96:18:1d:94:39:a9:2b:45:28:a5:bc:
14:6a:16:8b:59:f4:28:99:6c:88:d4:d4:cb:6f:f5:57:00:95:
33:62:da:84:47:ec:e3:f0:85:9e:c5:04:97:36:cf:0d:d8:cd:
af:44:f7:84:62:d9:4f:9f:a3:42:6a:df:5c:56:72:f3:a3:fa:
62:e0:e1:ea:bd:f7:0c:20:20:c9:2a:97:77:b2:19:a2:c8:7b:
07:ac:e1:d3:95:c0:a5:c1:61:20:43:13:47:29:bd:ca:6d:11:
c0:1c:17:4b:4e:37:03:d9:6e:a9:15:64:dd:4f:dc:5a:72:ea:
0c:13:94:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-fra.rpki-client.org