Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/GlvpMcpBlDP-0GfbZo-2lJCC1-o.roa
File: GlvpMcpBlDP-0GfbZo-2lJCC1-o.roa (raw, json)
Hash identifier: u83+13kVy5E+++Zh8GK37hg30p4vRv3Aox0f8JWfPQI=
Subject key identifier: 1A:5B:E9:31:CA:41:94:33:FE:D0:67:DB:66:8F:B6:94:90:82:D7:EA
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852B4601C7AA04F10B4B8011977D94D310
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/GlvpMcpBlDP-0GfbZo-2lJCC1-o.roa
Signing time: Mon 19 Dec 2022 16:44:46 +0000
ROA not before: Mon 19 Dec 2022 16:44:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204463
IP address blocks: 91.221.76.0/23 maxlen: 24
91.221.86.0/23 maxlen: 24
185.185.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:46:01:c7:aa:04:f1:0b:4b:80:11:97:7d:94:d3:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 16:44:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a5be931ca419433fed067db668fb6949082d7ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:51:00:3c:de:21:b9:f6:2d:22:c7:0c:ef:d5:
31:45:15:96:c4:80:78:c6:77:07:34:1a:93:ca:0d:
71:d1:b5:55:56:a5:27:bd:53:e1:b4:8a:8a:27:89:
74:77:d2:3b:37:c0:da:c7:de:41:75:78:a4:fd:d3:
b9:80:ed:3d:04:4a:56:d6:39:f1:00:35:c6:23:69:
25:19:54:21:59:e1:a3:fa:a1:30:b6:99:37:50:fb:
7f:de:bc:0c:90:00:7f:50:ee:ef:86:dd:2f:7c:40:
ca:e4:6b:d1:66:29:d8:88:f6:dc:ab:05:b7:61:b8:
47:7c:1a:74:2b:b3:8e:f4:57:cf:90:8b:a3:6b:ac:
17:23:42:17:19:36:f3:ea:eb:5f:18:a6:69:39:1c:
61:91:dd:09:e4:af:38:e1:10:96:07:26:43:8a:c2:
9f:35:d0:5d:80:f6:15:c6:f2:a6:e2:7f:f3:d9:c3:
e4:6b:1a:65:02:39:5b:97:1a:97:ae:3d:2b:ba:fe:
fd:4e:3b:a3:ef:87:35:d1:c4:3c:33:a7:22:0f:4a:
f4:92:f9:35:5f:a1:41:2e:f3:76:03:60:d3:1a:64:
e7:df:73:7f:ca:b5:38:6e:dd:1b:db:e4:a8:77:05:
cc:c3:27:e1:c4:c1:6c:36:91:f5:0a:2b:9d:c9:89:
16:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5B:E9:31:CA:41:94:33:FE:D0:67:DB:66:8F:B6:94:90:82:D7:EA
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/GlvpMcpBlDP-0GfbZo-2lJCC1-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.76.0/23
91.221.86.0/23
185.185.52.0/22
Signature Algorithm: sha256WithRSAEncryption
96:d2:72:d7:9b:00:f1:b0:2a:1c:65:6b:70:7c:9a:f5:88:ad:
80:06:62:83:a1:b7:4d:39:9f:f4:0c:67:df:54:54:e4:f1:fe:
9c:4c:a4:cf:ee:8e:b2:a6:d5:9c:bb:ba:3b:2c:90:b2:7e:02:
af:44:da:59:74:25:53:5d:e9:74:0c:72:19:d6:b6:95:a6:4f:
61:30:a6:41:d4:c5:33:d4:42:6a:91:ad:31:a4:71:ad:78:bc:
fe:25:39:a2:e7:91:a8:d0:c8:d9:42:15:74:78:3c:ed:11:de:
f1:65:18:c9:15:7e:ef:e0:39:5d:c7:f0:6f:de:5d:1d:f4:5d:
67:b4:e3:a7:d6:7b:d1:42:e7:41:1d:0d:be:8f:48:13:d2:e9:
70:9a:1f:1c:92:aa:94:14:d2:3d:7a:5c:ae:7d:0f:83:76:e7:
42:72:4d:4c:26:0b:13:53:6e:d0:31:90:f8:00:e0:b7:7e:ad:
47:e2:a5:60:8c:75:06:e7:12:1f:0a:15:d5:91:98:49:0d:1b:
cc:cb:19:da:1f:57:9c:d7:89:f5:d1:d0:b1:0e:68:20:32:1f:
35:d5:bd:de:bb:87:2e:8b:84:09:ec:03:89:3a:a2:9f:d5:08:
df:dc:f6:3e:c6:7d:22:38:78:ac:c7:1a:5c:a6:9a:c5:fe:ec:
91:e2:9a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org