Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/GvNR6IjaZ-Cad1josmfR_uXmIio.roa
File: GvNR6IjaZ-Cad1josmfR_uXmIio.roa (raw, json)
Hash identifier: PryteCsP8viwKIrbE4/L5PAzbxKAvrlghwtNZj377fU=
Subject key identifier: 1A:F3:51:E8:88:DA:67:E0:9A:77:58:E8:B2:67:D1:FE:E5:E6:22:2A
Certificate issuer: /CN=ddf1df598f4a8f3a2d074ccb6f6d16b54d1d111c
Certificate serial: 01856D6F5EAD55D26ABFE1F0B8174618D9F0
Authority key identifier: DD:F1:DF:59:8F:4A:8F:3A:2D:07:4C:CB:6F:6D:16:B5:4D:1D:11:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fHfWY9KjzotB0zLb20WtU0dERw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/GvNR6IjaZ-Cad1josmfR_uXmIio.roa
Signing time: Sun 01 Jan 2023 13:04:53 +0000
ROA not before: Sun 01 Jan 2023 13:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60435
IP address blocks: 185.178.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:5e:ad:55:d2:6a:bf:e1:f0:b8:17:46:18:d9:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf1df598f4a8f3a2d074ccb6f6d16b54d1d111c
Validity
Not Before: Jan 1 13:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1af351e888da67e09a7758e8b267d1fee5e6222a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:94:f7:90:90:8f:9e:93:55:9a:89:9c:ca:92:
53:e1:d9:41:de:8c:63:33:3d:36:a4:03:13:4b:7a:
6d:dc:c2:8e:5e:b4:91:db:75:7c:5b:ea:c2:b1:f0:
0b:a7:02:51:b1:e8:a3:ed:a0:38:c8:88:6a:59:ad:
56:32:46:a7:64:39:a8:18:60:ec:fb:33:b0:7b:48:
50:9e:ec:a5:cf:10:0a:15:33:7d:7b:79:c2:a0:22:
ca:a5:95:3f:cf:9e:e6:31:7f:0a:b6:db:52:e1:e2:
d6:4f:68:2d:91:9b:90:ac:06:cb:4f:c6:0d:f0:73:
bb:50:fc:e1:93:8c:9e:ac:35:58:86:0a:9d:36:f1:
90:2d:24:55:05:98:54:74:4b:26:dd:8e:93:f0:ca:
86:af:cb:6c:54:92:74:bf:d6:5c:10:56:41:33:80:
e5:36:03:bc:2e:82:59:95:7e:38:a3:62:39:50:df:
31:96:38:d9:f8:c0:3f:cd:bd:0b:a9:16:6c:7d:9f:
7e:94:f7:71:8d:c2:77:b2:d8:ee:e5:a8:7e:5f:ba:
85:b0:6d:9f:b5:9f:c3:9f:3b:d6:dc:cd:e8:e6:fe:
de:a3:87:72:0c:eb:ac:c2:19:89:38:81:a5:0e:22:
68:5c:6b:bb:ef:2e:d5:a5:c2:d1:0a:14:e4:d6:b8:
99:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F3:51:E8:88:DA:67:E0:9A:77:58:E8:B2:67:D1:FE:E5:E6:22:2A
X509v3 Authority Key Identifier:
keyid:DD:F1:DF:59:8F:4A:8F:3A:2D:07:4C:CB:6F:6D:16:B5:4D:1D:11:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fHfWY9KjzotB0zLb20WtU0dERw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/GvNR6IjaZ-Cad1josmfR_uXmIio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/3fHfWY9KjzotB0zLb20WtU0dERw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.224.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e3:93:42:fe:f0:33:34:09:49:0b:da:42:e7:c4:73:11:c5:
0d:a5:5b:b9:9c:c2:10:5a:94:de:bb:09:ea:05:3f:73:66:47:
3a:d1:fe:74:d9:60:6e:2c:6e:4d:c5:4f:c8:d3:49:fb:2e:32:
2d:9b:c9:a0:ce:82:b8:a3:09:ab:ae:8f:9d:54:a8:03:02:d9:
08:99:cd:eb:2c:00:29:48:b9:7b:3d:10:1b:3e:37:35:78:94:
b3:47:81:5b:a5:c5:3d:6b:64:c9:5d:b1:77:b2:84:0c:92:cf:
60:e1:62:8b:8c:51:b9:14:3b:17:98:73:50:a0:45:d2:39:cd:
ba:4c:e2:58:d6:dd:36:2f:ad:f4:16:83:35:c1:8f:e8:aa:2a:
e5:0e:04:33:48:07:d2:d4:e3:83:cf:ee:3a:b4:2e:ba:6a:ca:
aa:a6:f5:df:a6:79:06:a2:96:da:56:0f:82:dc:4a:d1:11:e4:
ed:e5:5c:a3:77:15:c7:49:0f:c0:d1:d4:c2:91:74:e2:e0:45:
11:30:19:c0:61:43:6b:8e:8f:6c:89:7c:ec:24:1b:ab:2d:b1:
b1:80:19:65:b9:c1:c4:bf:f9:95:eb:64:89:84:01:56:ba:de:
01:0f:23:c6:28:c0:f8:52:84:ef:59:1c:75:97:be:c3:21:4f:
83:9c:0a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:08 2025 by rpki-client