Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/gGjKTsRpKb3Iq1fxBijkO76D3No.roa
File: gGjKTsRpKb3Iq1fxBijkO76D3No.roa (raw, json)
Hash identifier: pUxB9RG6x4dtigsphGm8+O1+LpYYGBWWFv4voioNRhQ=
Subject key identifier: 80:68:CA:4E:C4:69:29:BD:C8:AB:57:F1:06:28:E4:3B:BE:83:DC:DA
Certificate issuer: /CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Certificate serial: 13B5287E
Authority key identifier: DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/gGjKTsRpKb3Iq1fxBijkO76D3No.roa
Signing time: Sat 01 Jan 2022 01:01:48 +0000
ROA not before: Sat 01 Jan 2022 01:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60451
IP address blocks: 185.135.93.0/24 maxlen: 24
185.135.94.0/24 maxlen: 24
185.135.92.0/24 maxlen: 24
185.135.92.0/22 maxlen: 22
185.135.95.0/24 maxlen: 24
185.30.182.0/24 maxlen: 24
185.30.180.0/24 maxlen: 24
185.30.183.0/24 maxlen: 24
185.30.180.0/22 maxlen: 22
185.30.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330639486 (0x13b5287e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Validity
Not Before: Jan 1 01:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8068ca4ec46929bdc8ab57f10628e43bbe83dcda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:1b:46:e3:32:70:b1:1e:82:b1:1d:15:05:
55:72:c1:b1:21:fc:52:45:41:52:21:2e:f6:58:22:
f4:73:f0:82:29:78:c5:e7:90:fe:3e:a8:df:2f:3c:
d4:29:ad:33:cb:6f:2f:cc:02:42:65:28:0c:0f:0b:
1b:cf:09:b2:de:72:1b:58:c1:95:17:9c:2b:e2:cf:
70:68:ad:91:36:46:88:77:e2:9e:ef:85:1e:83:37:
2e:9f:5e:dd:0d:9f:1d:67:df:80:81:63:9d:e0:57:
96:f2:69:c1:b3:22:bd:ee:da:d0:0a:02:4b:29:d9:
96:ec:a5:04:73:74:0f:d3:6c:07:a6:bd:6e:dd:bf:
bd:b9:b6:c1:ad:a8:c6:6e:5f:9b:ff:e9:2c:21:83:
fe:9a:74:ff:d0:e1:4e:a9:4f:bd:1f:4a:56:6d:ce:
ab:8b:e8:b0:52:7f:71:b9:aa:01:2b:9f:2d:ee:ce:
01:b8:60:90:e9:7d:81:86:85:33:6d:6d:5e:2b:27:
87:47:14:51:12:58:c0:dd:67:1f:e1:9b:79:fc:24:
20:84:a5:e5:17:23:39:5a:03:c8:74:dd:a6:72:1b:
67:61:67:b4:db:c8:4f:a0:12:37:86:b9:1c:a5:ff:
07:d6:c9:48:2b:42:35:22:91:f7:a6:86:22:49:03:
a4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:68:CA:4E:C4:69:29:BD:C8:AB:57:F1:06:28:E4:3B:BE:83:DC:DA
X509v3 Authority Key Identifier:
keyid:DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/gGjKTsRpKb3Iq1fxBijkO76D3No.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.180.0/22
185.135.92.0/22
Signature Algorithm: sha256WithRSAEncryption
72:38:41:76:73:eb:38:8a:5f:82:dc:f0:8d:e1:66:d0:94:ac:
64:c0:41:2a:57:35:ae:d4:f4:7e:cb:65:ea:b8:65:d7:b5:2b:
14:1f:f3:5c:47:17:0f:77:6f:6f:a1:7d:29:7c:2a:23:54:bf:
58:6c:fa:8f:9e:37:8d:db:94:13:a3:28:3c:1f:b2:8b:70:66:
82:51:aa:93:29:fd:7a:61:6a:97:de:9e:a7:ea:a1:2d:0c:40:
df:9b:a1:f5:38:52:5a:bc:a2:b0:97:3c:cb:c2:5c:3b:58:f0:
db:eb:1b:29:4c:b2:cd:05:cb:d3:95:51:fa:93:e7:08:13:6f:
cf:b6:c0:6c:51:74:8a:e1:00:d5:75:47:26:dd:9d:52:a3:46:
6b:2a:26:82:e8:17:e7:23:a6:a7:6e:6d:bb:a1:a8:3b:85:f6:
c2:ec:36:31:5a:e8:3c:79:db:5f:c1:59:67:14:14:3a:9e:9e:
87:81:67:01:9f:52:96:ff:a0:ab:9d:e2:2d:10:25:8b:96:1d:
c1:f9:69:4c:95:d0:d2:2d:fa:66:bf:3e:9b:c9:2c:60:22:2e:
06:ed:f7:ab:e7:18:dc:de:68:e0:26:ff:8d:e7:19:48:5c:a3:
5c:ea:cb:07:ab:64:d9:c2:74:a3:35:b1:53:2c:8e:b8:ab:25:
dd:76:28:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:52 2023 by rpki-client on console-ams.rpki-client.org