Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/GoxYGD9L6fyy7s9ZneoueXoFJvk.roa
File: GoxYGD9L6fyy7s9ZneoueXoFJvk.roa (raw, json)
Hash identifier: /nxPDp87kV8ui30MLLvOs3GIC9B5LP60WXKSaGbvXVQ=
Subject key identifier: 1A:8C:58:18:3F:4B:E9:FC:B2:EE:CF:59:9D:EA:2E:79:7A:05:26:F9
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0DE27FC4
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/GoxYGD9L6fyy7s9ZneoueXoFJvk.roa
Signing time: Thu 14 Apr 2022 08:24:00 +0000
ROA not before: Thu 14 Apr 2022 08:24:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13213
IP address blocks: 185.192.68.0/24 maxlen: 24
45.85.105.0/24 maxlen: 24
45.80.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232947652 (0xde27fc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 14 08:24:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a8c58183f4be9fcb2eecf599dea2e797a0526f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:af:5f:2c:8e:08:39:26:ae:1e:1c:0a:32:b0:
bb:ae:ef:fc:a9:1e:f2:13:7a:bd:7a:80:dc:be:fd:
ef:93:b5:6b:ab:17:fc:58:4b:34:68:f0:5b:6d:55:
14:5f:a1:b4:39:93:04:ec:a4:7c:5c:7c:63:13:64:
3d:eb:c2:1b:d6:f0:50:01:d5:a3:a0:b2:d0:c2:0a:
a1:e7:e8:cf:dd:ba:e3:c8:b6:39:db:5e:cb:13:88:
7e:62:a9:08:37:f8:a6:d2:90:17:d5:b7:72:f1:17:
48:d2:51:f7:ae:7e:5a:ce:85:72:50:fe:cd:c4:cf:
e7:1f:57:76:d8:81:81:4a:1b:39:b8:fa:28:be:81:
46:f4:c3:d1:c7:4d:e8:94:e7:5a:86:9b:b4:30:50:
60:0f:76:d3:50:a7:06:85:87:fe:28:10:2d:4e:01:
83:d7:41:7a:28:50:f3:7d:77:18:09:58:74:c6:0c:
f0:87:44:db:50:ce:e5:d2:44:8c:4b:ff:0a:df:f0:
5b:e5:ff:bd:bf:9f:34:93:90:e8:2e:26:9d:fa:cd:
a3:cb:0c:7d:7d:25:7a:7b:e8:6e:4a:7a:11:e0:27:
83:7d:5b:56:2e:94:dc:d8:1c:29:bb:9d:0e:0f:6a:
c7:1d:10:fd:8e:c2:d1:2b:3d:60:8b:71:63:a4:97:
21:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:8C:58:18:3F:4B:E9:FC:B2:EE:CF:59:9D:EA:2E:79:7A:05:26:F9
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/GoxYGD9L6fyy7s9ZneoueXoFJvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.158.0/24
45.85.105.0/24
185.192.68.0/24
Signature Algorithm: sha256WithRSAEncryption
73:c4:8c:a9:92:24:15:f0:41:6b:59:21:9d:15:b4:4b:85:3a:
d1:25:fb:7b:52:ea:1d:bd:a5:91:da:82:3d:43:c7:6f:a1:6c:
6f:d1:b8:76:a1:ea:11:e0:51:09:b6:98:40:49:ba:04:94:7e:
c1:70:fc:55:21:b1:27:ad:75:54:13:a2:a4:ca:6d:c6:7e:ea:
17:48:a1:30:7e:d7:a2:5c:be:23:06:70:cc:bc:44:00:06:b0:
8d:73:68:37:27:99:ab:9c:38:ea:91:72:f1:da:d9:61:a6:a4:
3e:79:05:36:c3:4d:89:40:d6:3c:e5:f7:7a:50:98:1a:f7:d6:
ef:3a:97:09:c9:46:14:4c:48:0e:95:b2:92:fb:b8:1a:26:6b:
55:34:1f:e1:4f:c5:7f:c4:78:ed:b3:f9:0f:52:2d:1e:ca:ca:
1d:8f:47:b2:6e:77:95:2d:3f:a5:a8:dd:57:63:f4:c6:89:37:
fc:f0:d8:54:89:8a:5d:a4:37:15:1e:2e:f4:cf:be:b6:08:54:
a1:ac:f7:f8:e0:7b:46:16:7b:a9:9b:77:1b:4e:9b:6a:0c:cd:
c2:28:e0:75:81:bc:52:46:6b:e0:8f:fb:1c:80:6d:d0:ae:07:
a9:c3:4d:85:92:77:26:dc:11:49:22:64:ea:7e:07:df:e3:87:
55:82:54:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-fra.rpki-client.org