Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/G5os1usWkHv7dwNl8CVZ2aysSUA.roa
File: G5os1usWkHv7dwNl8CVZ2aysSUA.roa (raw, json)
Hash identifier: bqoAPFn5sOOKTfgPvHUcBlNtX4YPWaOYDMXX8+5Mw3I=
Subject key identifier: 1B:9A:2C:D6:EB:16:90:7B:FB:77:03:65:F0:25:59:D9:AC:AC:49:40
Certificate issuer: /CN=2e481909559480d248490d8e1d71c3c093b05fe5
Certificate serial: 05E86FED
Authority key identifier: 2E:48:19:09:55:94:80:D2:48:49:0D:8E:1D:71:C3:C0:93:B0:5F:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LkgZCVWUgNJISQ2OHXHDwJOwX-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/G5os1usWkHv7dwNl8CVZ2aysSUA.roa
Signing time: Sat 01 Jan 2022 06:54:26 +0000
ROA not before: Sat 01 Jan 2022 06:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201714
IP address blocks: 185.66.4.0/22 maxlen: 24
45.85.100.0/24 maxlen: 24
2a03:1ea0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99119085 (0x5e86fed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e481909559480d248490d8e1d71c3c093b05fe5
Validity
Not Before: Jan 1 06:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b9a2cd6eb16907bfb770365f02559d9acac4940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9b:60:72:07:2f:43:e1:88:5b:22:ee:04:7f:
84:06:f5:fc:69:9b:f8:f1:29:86:8a:6f:d7:db:ee:
14:c7:29:b0:e4:0e:c9:fb:99:06:42:f8:8a:1c:a4:
08:bf:40:a9:c4:8e:c0:46:eb:a1:64:af:bc:b5:20:
bd:b3:a3:18:75:91:51:b4:e9:27:58:e2:70:64:bb:
86:65:a0:31:98:af:15:7e:51:72:96:55:aa:74:74:
fe:75:dd:85:f2:d3:cb:c2:e3:58:a1:29:00:fd:d3:
1c:d1:2c:db:78:63:4d:d2:99:8f:ed:b7:22:1f:48:
6c:69:d3:be:f3:08:cf:5f:a8:68:e5:75:18:cf:7d:
e2:0d:e7:b3:dc:54:71:1f:ab:8a:82:fb:1c:d2:e9:
97:48:3a:93:96:a0:75:d6:5e:d5:8c:d4:74:a0:a9:
37:84:c4:c0:9a:e7:3e:67:ed:7b:12:22:4a:0c:af:
05:04:3f:71:3c:44:dd:ba:88:06:40:0d:52:91:5c:
35:6e:cd:21:1c:53:ee:0f:de:c4:93:88:5b:b0:4d:
de:b9:ad:f2:2e:38:38:55:34:9e:fc:e2:3a:ac:3d:
7a:6c:2e:c9:4d:de:f3:9d:fb:02:de:31:2b:fc:72:
da:6a:7f:6b:f6:4f:2d:33:4b:89:6a:fb:23:8e:10:
e0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9A:2C:D6:EB:16:90:7B:FB:77:03:65:F0:25:59:D9:AC:AC:49:40
X509v3 Authority Key Identifier:
keyid:2E:48:19:09:55:94:80:D2:48:49:0D:8E:1D:71:C3:C0:93:B0:5F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LkgZCVWUgNJISQ2OHXHDwJOwX-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/G5os1usWkHv7dwNl8CVZ2aysSUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/7f16ea-26d3-457f-92cb-87bc58f34665/1/LkgZCVWUgNJISQ2OHXHDwJOwX-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.100.0/24
185.66.4.0/22
IPv6:
2a03:1ea0::/32
Signature Algorithm: sha256WithRSAEncryption
78:e0:3b:9c:25:2a:a9:e1:1e:92:d1:0b:76:91:af:64:6c:78:
f8:23:0a:7a:a7:f8:b1:62:8d:c4:88:93:8e:9f:03:7b:fa:dc:
8e:9c:a5:eb:f0:d8:38:1b:46:ad:7d:96:b0:10:19:65:e7:82:
54:05:a6:f9:8a:0d:50:75:88:f7:4b:38:33:b7:0f:e9:0c:6f:
16:ed:cb:9e:a2:0a:56:40:e4:40:56:f3:01:20:b1:12:6c:56:
5c:4c:d7:27:ab:63:07:89:3c:79:76:a1:90:b3:1a:f7:74:53:
b5:b0:bb:30:7c:fc:34:09:22:63:da:ff:da:ce:9c:6d:3e:eb:
6a:92:0d:24:ac:07:d3:b2:a7:32:72:21:c0:37:3b:88:09:35:
de:2b:3a:00:21:0b:15:10:2e:53:30:bf:33:d2:3c:31:91:89:
1e:af:7d:57:f7:45:24:ab:0e:8d:2d:f9:d8:fb:ef:40:8c:e6:
02:1d:dc:ec:c8:e8:b2:fb:f5:a4:78:ac:11:bc:db:c5:95:09:
54:ea:c5:41:b2:6c:7b:b4:87:22:3f:b5:d2:fd:e8:a1:2b:5c:
43:4b:08:92:bd:f3:04:61:1f:73:af:a0:b1:b5:07:ec:82:3a:
c5:68:fd:b3:d9:fc:25:dc:42:f9:be:dd:7c:9e:62:2a:2f:a4:
5d:75:30:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:48 2024 by rpki-client on console-ams.rpki-client.org