Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/GjFgIaDbycjZlFPACduU4bOE0LE.roa
File: GjFgIaDbycjZlFPACduU4bOE0LE.roa (raw, json)
Hash identifier: yl4g/UW/1upoaIi70Y8Mpn/uo0dTZ81t+k9GD4tZBHs=
Subject key identifier: 1A:31:60:21:A0:DB:C9:C8:D9:94:53:C0:09:DB:94:E1:B3:84:D0:B1
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 092A800A
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/GjFgIaDbycjZlFPACduU4bOE0LE.roa
Signing time: Mon 27 Jun 2022 09:33:40 +0000
ROA not before: Mon 27 Jun 2022 09:33:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.150.52.0/24 maxlen: 24
95.214.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153780234 (0x92a800a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jun 27 09:33:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a316021a0dbc9c8d99453c009db94e1b384d0b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:48:59:c3:99:33:24:88:87:d5:99:52:a4:27:
34:10:ad:13:cb:0e:04:8f:17:5a:8c:4e:2a:a3:22:
8d:97:bf:33:bf:ed:61:a4:0a:ac:77:84:9a:95:90:
39:d6:34:90:c4:26:90:f6:f3:41:cd:08:34:53:bc:
37:16:c7:ca:71:6b:42:d4:c0:eb:27:10:73:fa:03:
1f:08:ec:16:be:a0:f5:c3:bc:f5:7d:7c:ab:20:09:
89:f7:00:6e:1c:d6:4f:81:37:7a:cb:d6:6f:0f:51:
f4:09:2c:ba:90:00:b1:10:83:1a:b5:8a:8e:86:07:
57:0a:93:f9:b1:31:02:71:bf:fb:3a:57:2b:f7:47:
da:e6:8e:a4:49:8d:30:86:2c:f2:bd:59:e5:a2:39:
b7:ef:07:21:43:81:ef:56:18:0a:9f:13:bc:67:d1:
3f:e5:28:97:8d:83:43:a4:a6:36:21:d5:c9:23:60:
66:45:25:e5:6d:48:20:db:81:34:b5:31:59:a6:29:
27:8b:49:0c:11:c9:6a:50:6d:92:1e:5e:f9:e4:4b:
3a:74:29:dd:34:13:91:4b:ee:e2:46:95:19:69:60:
3a:35:10:bb:5f:0c:28:a3:42:06:03:a8:c1:a0:6c:
f2:12:90:ab:ec:61:39:fe:38:fd:3f:9a:4e:a9:11:
27:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:31:60:21:A0:DB:C9:C8:D9:94:53:C0:09:DB:94:E1:B3:84:D0:B1
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/GjFgIaDbycjZlFPACduU4bOE0LE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.52.0/24
95.214.176.0/22
Signature Algorithm: sha256WithRSAEncryption
16:b2:f7:cb:6c:54:42:62:3c:3b:fd:a7:5c:d1:1d:2d:7d:f1:
25:4b:ea:73:42:5d:d3:9c:4a:31:c7:cb:94:85:e8:39:5b:10:
de:20:98:fb:c3:ee:bb:75:ee:69:e3:2b:30:8e:1c:9e:db:1a:
d4:b8:7f:5f:4f:1b:04:26:72:5a:a2:bf:86:92:3e:49:da:27:
b7:fa:b8:72:3f:60:f2:35:52:75:22:28:2c:fa:12:eb:6c:d5:
b6:6c:64:23:92:a7:82:1b:db:32:48:71:ae:9d:fd:34:cb:75:
5d:28:35:4c:47:7a:73:9a:ff:f9:7c:0c:f1:36:25:b3:35:53:
12:7a:f9:e0:f4:ee:89:e0:07:31:cd:05:7c:c7:03:d1:6e:9d:
ee:73:f3:c5:b9:e2:19:be:74:e0:1d:fc:1e:43:6a:6f:03:6d:
77:ea:17:ba:58:53:56:20:e3:d0:ed:67:db:79:d3:3f:d5:c3:
8f:35:d6:a2:3c:6e:ef:12:c2:d3:ff:24:92:d4:77:6c:1a:76:
21:20:ae:5f:f3:53:8c:ca:92:49:67:bb:48:c1:bf:57:e7:d1:
69:1d:ed:3a:d5:77:73:51:cf:a9:c9:1e:db:52:b3:1a:65:0e:
04:43:ad:55:e5:73:70:cc:eb:99:5a:29:a3:b4:ff:05:49:fe:
0e:75:cc:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org