Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/GWdqScMiJNyTIKckO4l3AQnx7QY.roa
File: GWdqScMiJNyTIKckO4l3AQnx7QY.roa (raw, json)
Hash identifier: SzIXL+AN51WV+LOOMEkmJkafFd/f6EnjuzKZKltxc3E=
Subject key identifier: 19:67:6A:49:C3:22:24:DC:93:20:A7:24:3B:89:77:01:09:F1:ED:06
Certificate issuer: /CN=32ed67002dc7307e8563b6e4934ccd5723a44f3e
Certificate serial: 03C73B4E
Authority key identifier: 32:ED:67:00:2D:C7:30:7E:85:63:B6:E4:93:4C:CD:57:23:A4:4F:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/GWdqScMiJNyTIKckO4l3AQnx7QY.roa
Signing time: Sun 13 Mar 2022 16:18:50 +0000
ROA not before: Sun 13 Mar 2022 16:18:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212538
IP address blocks: 185.180.30.0/24 maxlen: 24
185.180.31.0/24 maxlen: 24
185.180.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63388494 (0x3c73b4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32ed67002dc7307e8563b6e4934ccd5723a44f3e
Validity
Not Before: Mar 13 16:18:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19676a49c32224dc9320a7243b89770109f1ed06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:db:90:a3:86:23:59:d2:17:c3:24:62:79:51:
38:46:4b:ad:a8:8d:b0:dd:0b:8e:84:fc:a4:71:70:
a8:58:9e:6a:4e:67:d9:bd:a1:54:55:c9:97:26:d9:
01:0a:21:41:f2:af:55:b9:7e:9c:cf:1a:d7:2d:54:
09:55:65:b3:4c:2a:d1:2f:52:b3:d5:44:92:e0:77:
ca:68:78:27:67:aa:0d:ba:73:69:84:e4:d9:bc:d1:
9a:6f:92:91:71:29:0b:d1:81:8d:10:eb:98:c2:98:
a1:bd:ee:1f:df:a4:8f:97:cb:e8:70:56:54:f4:34:
d4:d3:81:77:af:c3:a0:a4:c3:af:3e:06:e6:dd:a9:
95:f9:46:a3:48:d0:9a:f2:0d:9a:2c:8d:ae:99:a8:
44:46:53:df:d2:da:66:69:9c:ac:36:2b:70:30:d4:
15:5c:d9:82:5f:b7:07:ee:c1:78:fc:b2:f2:7d:07:
93:62:8b:f2:1e:24:fc:7a:80:ac:46:aa:7e:d5:c9:
d9:4c:e3:e6:8b:60:c7:52:74:77:00:43:01:52:16:
ac:ef:14:df:d1:1d:59:de:a5:48:2a:a7:13:85:69:
c1:17:f2:54:10:de:ee:0a:91:0d:b6:06:10:66:ad:
64:80:c5:47:86:87:fd:3c:2e:58:11:93:e5:5d:d1:
45:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:67:6A:49:C3:22:24:DC:93:20:A7:24:3B:89:77:01:09:F1:ED:06
X509v3 Authority Key Identifier:
keyid:32:ED:67:00:2D:C7:30:7E:85:63:B6:E4:93:4C:CD:57:23:A4:4F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/GWdqScMiJNyTIKckO4l3AQnx7QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7916cd-4d2f-4f52-aeac-f1e9bc41d92f/1/Mu1nAC3HMH6FY7bkk0zNVyOkTz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.28.0/24
185.180.30.0/23
Signature Algorithm: sha256WithRSAEncryption
20:a6:17:63:cb:f3:f9:fb:1d:3d:0d:96:af:4f:93:0d:d7:d9:
03:31:de:b8:6c:cc:89:3e:f9:8a:df:e0:d5:b4:d5:59:07:dc:
96:41:87:0e:ca:54:23:2a:93:6b:fe:d1:85:ae:a6:ed:32:22:
ec:45:8a:2d:c8:af:a2:ea:c3:72:ac:84:18:6a:26:15:b5:1a:
74:8c:ca:d2:62:e6:a4:33:0b:a1:da:06:b5:68:88:59:59:20:
f5:de:a7:90:42:8e:0c:d8:58:0d:8c:a5:6f:4b:55:7d:7f:7b:
61:d9:2a:cb:30:63:92:48:a9:19:16:8b:13:a0:dc:6a:1a:63:
91:4a:db:91:b5:32:8e:d2:bd:a5:fd:e2:45:15:a7:ad:1b:41:
92:46:aa:08:fb:bc:ea:68:0f:d3:03:02:78:2d:df:05:1a:e8:
e5:4c:f1:e3:0b:63:b7:64:16:97:e2:60:48:a1:88:73:99:b3:
3c:99:c7:5a:2d:aa:fe:20:b1:73:1d:3e:5f:eb:25:9e:c5:d4:
27:c0:25:a1:c9:95:e2:32:27:af:19:28:6d:b0:92:54:0d:19:
58:cd:1e:87:09:03:e2:ff:ff:c8:e5:04:82:f4:c4:39:38:f6:
9c:da:6d:aa:54:29:df:40:ea:c0:50:bf:78:70:07:b4:4f:d9:
8b:07:be:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:08 2024 by rpki-client on console-ams.rpki-client.org