Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/GmOCxCHIP2tKqQvAZCm9PHeI3Wg.roa
File: GmOCxCHIP2tKqQvAZCm9PHeI3Wg.roa (raw, json)
Hash identifier: JOYtIxI3eF3/8BEA7hCugMv3RKbGI33uML8rgGQcS0U=
Subject key identifier: 1A:63:82:C4:21:C8:3F:6B:4A:A9:0B:C0:64:29:BD:3C:77:88:DD:68
Certificate issuer: /CN=a41870fc1854a3b093938c09cf60651ba993ffc6
Certificate serial: 93A5D4
Authority key identifier: A4:18:70:FC:18:54:A3:B0:93:93:8C:09:CF:60:65:1B:A9:93:FF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/GmOCxCHIP2tKqQvAZCm9PHeI3Wg.roa
Signing time: Sat 01 Jan 2022 03:56:11 +0000
ROA not before: Sat 01 Jan 2022 03:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57460
IP address blocks: 176.100.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9676244 (0x93a5d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a41870fc1854a3b093938c09cf60651ba993ffc6
Validity
Not Before: Jan 1 03:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a6382c421c83f6b4aa90bc06429bd3c7788dd68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d8:2e:82:c0:54:60:22:77:f8:5d:2e:b6:05:
f7:ad:38:f5:db:8b:44:b3:7b:d4:ef:25:10:4f:41:
95:19:82:99:29:4d:9d:10:e0:a9:a2:69:5f:17:0e:
e4:3c:d9:31:fe:a8:8e:9a:10:40:67:b4:ff:47:06:
d8:0f:34:a5:67:15:7b:47:c4:f8:e1:9e:6a:cb:4c:
fb:07:2c:0a:f6:63:e8:87:7f:65:f4:13:36:26:7b:
67:2b:3b:d1:28:a2:ec:dc:da:03:4f:61:36:57:b8:
92:07:77:c1:b4:83:bf:44:43:4c:dc:d3:dc:dd:dc:
f0:4a:30:9d:e1:68:6d:95:90:27:c3:06:35:22:d4:
7d:ea:b8:00:2c:77:36:c3:84:0f:40:92:c6:b9:52:
1c:5e:fe:d8:4a:f4:3b:c0:01:a0:b7:0e:d9:73:f8:
09:c0:fc:f6:dc:60:73:e7:32:d4:b8:70:b3:04:66:
7d:b7:53:62:f1:2b:9c:03:f8:7d:4d:a0:99:da:eb:
50:f8:5b:1d:78:11:cf:bd:1f:98:6d:14:b8:6c:a0:
1f:90:2b:5d:37:c6:a6:bb:e3:2e:ef:be:56:c1:59:
c9:73:fc:5c:e9:b9:6e:00:ae:57:f0:a0:3e:d7:92:
5a:60:10:50:41:ec:38:e0:7b:f3:97:d6:8e:ca:f8:
bf:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:63:82:C4:21:C8:3F:6B:4A:A9:0B:C0:64:29:BD:3C:77:88:DD:68
X509v3 Authority Key Identifier:
keyid:A4:18:70:FC:18:54:A3:B0:93:93:8C:09:CF:60:65:1B:A9:93:FF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/GmOCxCHIP2tKqQvAZCm9PHeI3Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.56.0/21
Signature Algorithm: sha256WithRSAEncryption
31:e8:58:cf:e9:62:f3:b9:e1:9b:f7:28:ee:f7:44:00:30:ce:
64:e7:98:8e:d8:d2:77:65:07:87:48:0b:d2:ed:e1:73:48:84:
84:4f:e9:a6:ba:25:f2:89:ae:bb:e6:64:60:bd:b2:83:3e:1a:
39:8c:41:80:7e:7a:dd:21:56:28:20:2b:e7:c6:71:24:8d:7a:
b5:44:91:57:87:51:44:48:71:06:03:01:3a:b9:38:55:f5:61:
9a:72:f9:d9:3a:5f:04:17:6b:f9:55:6b:e4:7b:70:b8:c1:47:
69:3e:fe:ab:fa:ac:5c:55:d0:74:da:10:38:c8:41:6a:2b:60:
03:7e:2a:ff:b4:58:55:49:de:fb:77:14:08:71:ff:6a:2b:26:
29:33:c9:1a:41:f8:69:fa:65:f6:49:04:e1:ff:a2:f7:57:c3:
f0:1f:ed:be:1d:5e:e0:af:22:69:14:eb:88:bb:c4:ce:c4:0d:
b6:c7:6b:41:9a:f4:28:97:82:34:ab:d5:1b:c1:df:70:1b:c3:
05:53:bf:a2:90:28:9c:51:50:3c:23:66:18:5c:07:91:be:22:
8a:6c:da:2a:f5:45:fb:47:c2:5c:25:4c:ce:48:9c:7d:f7:f1:
48:34:18:f9:b0:b8:68:a6:d9:07:42:ff:ff:4d:24:d9:b1:40:
55:73:10:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:43 2024 by rpki-client on console-fra.rpki-client.org