Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/glXaaNS_ZyJQF76WSwhg5kOTfgw.roa
File: glXaaNS_ZyJQF76WSwhg5kOTfgw.roa (raw, json)
Hash identifier: o+OwNs/imLKJ/KuS+tDSAFvMAWD/hFamhN2UbocfAzs=
Subject key identifier: 82:55:DA:68:D4:BF:67:22:50:17:BE:96:4B:08:60:E6:43:93:7E:0C
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: A8BBC3
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/glXaaNS_ZyJQF76WSwhg5kOTfgw.roa
Signing time: Wed 13 Apr 2022 13:53:57 +0000
ROA not before: Wed 13 Apr 2022 13:53:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 195.66.216.0/21 maxlen: 32
95.175.64.0/19 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11058115 (0xa8bbc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Apr 13 13:53:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8255da68d4bf67225017be964b0860e643937e0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:5d:b4:c7:9a:85:44:1a:31:46:f7:10:b1:
ea:b2:7f:a9:46:3c:42:3f:08:35:23:0b:ac:ab:64:
db:1d:0a:44:aa:a1:20:3a:e7:c1:6e:a6:eb:01:89:
6c:1f:9a:06:d7:88:4d:d7:24:cc:43:f1:8f:bc:3d:
eb:5e:b3:4e:8f:9d:b2:ac:f7:d2:d1:23:7b:3b:b1:
7d:64:f3:db:00:28:e7:ff:b8:ca:40:d2:60:7b:3f:
27:4d:23:c4:65:1a:48:ae:8d:71:50:a5:e2:30:47:
6f:70:86:16:3a:89:20:f8:70:f5:03:57:27:82:6d:
3c:9b:cd:6a:f7:f6:12:c6:ac:56:06:72:00:c4:5e:
b5:05:a3:07:b3:7f:7b:54:61:34:fd:6a:d2:3c:60:
5c:b4:d2:2f:b6:37:b1:23:ce:6b:aa:dc:e1:9d:eb:
fd:b3:18:9b:e8:de:15:f0:aa:9d:ab:d1:f3:c5:03:
0a:67:fc:7b:67:50:37:72:58:98:1c:a5:74:f4:ec:
8c:67:a3:a0:29:56:2d:8f:1c:80:83:72:e5:9f:e8:
84:7d:92:20:84:b6:66:33:48:bc:ea:cc:a0:8b:f8:
46:34:ed:74:83:01:d7:91:69:45:9f:f0:49:45:5b:
d6:34:74:78:8d:1b:d2:6e:f3:48:f8:7f:49:d7:5a:
86:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:55:DA:68:D4:BF:67:22:50:17:BE:96:4B:08:60:E6:43:93:7E:0C
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/glXaaNS_ZyJQF76WSwhg5kOTfgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.175.64.0/19
195.66.216.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:7c:69:95:9b:96:99:d7:e8:dd:2a:c1:ce:a2:d7:53:2e:fa:
39:0e:5b:ae:2d:dc:d0:aa:41:d4:7d:7a:84:2f:6c:e8:53:7b:
b5:2c:a9:7c:dd:4f:e2:43:4c:02:ab:2f:32:23:fd:9a:95:ac:
83:b3:a7:4a:d2:ae:ae:23:98:0a:ea:f7:16:49:63:ca:eb:6b:
8f:cb:4f:1d:d7:26:cb:6c:6f:83:ed:8d:6f:2e:c9:8d:eb:ce:
53:db:20:1a:3d:03:87:b9:f6:72:82:5a:be:62:2e:2c:b7:60:
eb:b2:5c:57:30:33:0b:0f:5e:49:ad:f3:b9:6f:05:10:c8:26:
c4:69:e2:bb:e5:c8:75:29:4b:a1:9a:33:cc:f5:b5:52:b7:b7:
7a:a7:6e:20:fb:ca:f7:cd:b0:d9:18:72:35:ea:48:a8:ad:4c:
a4:69:d2:3c:2a:cf:7b:72:24:bd:1b:b4:c4:de:3c:47:b6:9d:
cd:40:7f:a2:14:d4:af:5e:41:bd:b8:cb:b9:07:10:64:c3:97:
69:c3:8c:04:ea:97:f6:5c:09:9d:a2:df:1d:8c:13:fa:fd:6e:
67:87:cf:db:ee:3b:7b:3e:39:42:76:90:e0:cf:f0:35:19:6f:
3d:28:1d:3f:a4:2f:1e:0d:8b:33:17:4f:8c:c7:5b:33:b3:49:
37:cf:07:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:29 2024 by rpki-client on console-ams.rpki-client.org