Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/gcm2CI3bYFs053_GNcuuyBNM3jc.roa
File: gcm2CI3bYFs053_GNcuuyBNM3jc.roa (raw, json)
Hash identifier: EZOQCUoYqihjN1MbY5DiOFJ/AborCwjExevCxL3X7Ck=
Subject key identifier: 81:C9:B6:08:8D:DB:60:5B:34:E7:7F:C6:35:CB:AE:C8:13:4C:DE:37
Certificate issuer: /CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f
Certificate serial: 17385C9F
Authority key identifier: 8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/gcm2CI3bYFs053_GNcuuyBNM3jc.roa
Signing time: Sat 01 Jan 2022 09:06:13 +0000
ROA not before: Sat 01 Jan 2022 09:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201047
IP address blocks: 37.18.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389569695 (0x17385c9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f
Validity
Not Before: Jan 1 09:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81c9b6088ddb605b34e77fc635cbaec8134cde37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:dc:ca:b2:d2:38:a2:c8:95:36:72:aa:aa:f5:
50:9b:35:f9:ab:aa:c0:04:be:ac:4a:e1:2e:98:9d:
0e:21:4e:37:03:91:36:aa:5f:d0:a6:c7:94:bc:e8:
b7:00:22:ec:63:1a:d4:e9:38:49:19:cb:45:4e:8d:
27:7d:c9:4d:aa:3e:45:b3:eb:a1:b8:41:79:98:67:
65:c9:07:6d:c5:7e:f5:a8:e0:58:be:42:7e:b3:be:
61:24:61:81:b1:63:8d:65:c2:64:f2:c0:8f:cd:7d:
29:7d:09:4e:95:50:ec:3a:76:01:ad:9a:b7:5b:ca:
5f:f6:7d:ff:42:99:c0:c6:67:c7:5e:4b:4e:6f:91:
37:f4:51:8a:50:1c:e5:1a:d8:d3:d9:55:96:4e:33:
56:eb:cf:15:51:39:f8:c3:0f:2f:08:6f:30:a9:7a:
c8:c9:14:09:2d:a5:25:65:db:13:13:13:1b:ee:9f:
e2:6b:bd:ad:ff:3e:37:28:65:10:97:d3:9e:55:a7:
4b:35:1a:c1:a5:db:ec:54:ad:a5:4b:1d:ef:4e:57:
36:13:1e:84:5a:24:cb:48:c2:dd:53:6d:f9:95:14:
88:b2:b7:bc:10:26:0c:f4:23:6f:23:5f:ab:e3:1e:
2c:c1:42:38:70:05:25:9e:d5:13:b8:58:6b:56:86:
42:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:C9:B6:08:8D:DB:60:5B:34:E7:7F:C6:35:CB:AE:C8:13:4C:DE:37
X509v3 Authority Key Identifier:
keyid:8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/gcm2CI3bYFs053_GNcuuyBNM3jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/ijH4vqM7AFZEbjMh7t46Fw-9fB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.185.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:5d:66:5e:dc:4a:1d:aa:08:52:a1:78:27:30:f5:08:f0:c8:
94:f4:d9:ac:6c:0b:17:13:37:26:54:19:a4:b5:3b:1f:30:db:
93:6e:e1:f1:86:74:96:49:1d:f7:2a:7d:b8:b9:23:80:be:2d:
17:75:86:51:2a:ff:20:ae:5b:06:a6:c2:7d:75:35:d9:80:5b:
19:4d:9f:d2:b2:3d:6e:4e:c5:da:f8:aa:e7:1f:3e:8a:63:7b:
71:e0:19:cb:c1:e1:a0:d3:b7:3f:a0:0a:cf:29:af:a2:8a:47:
92:47:e9:a1:94:11:e8:ac:68:c7:23:dc:a8:82:30:21:7c:c9:
bb:40:ab:eb:c4:2d:48:0f:1c:6d:b3:b9:52:0d:95:cf:18:49:
6b:a6:51:3e:7e:74:18:4d:a1:63:b1:f5:0b:d6:5a:c1:d6:ac:
66:90:78:9b:36:30:1c:d3:0d:9a:b5:95:e9:31:3c:5e:93:7f:
02:51:cb:25:05:c6:cd:e5:33:4c:2f:9f:6c:fa:5f:ae:22:a3:
bf:b9:a1:9a:42:af:cd:b8:5a:1c:13:de:52:c6:3e:23:da:88:
7d:80:ad:93:13:d5:47:d1:11:c9:da:fa:8f:a3:d9:22:ae:1c:
b3:55:15:32:a1:f4:80:4b:2c:9b:4f:11:2e:29:54:e8:5d:d4:
ff:a5:48:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:55 2024 by rpki-client on console-ams.rpki-client.org