Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/gamEaObO1VdSZLaJaf245wVcEgM.roa
File: gamEaObO1VdSZLaJaf245wVcEgM.roa (raw, json)
Hash identifier: ai0YBe7VwPizOUBc9ZVDRr5mjpLXI42HDqNC2ykduE0=
Subject key identifier: 81:A9:84:68:E6:CE:D5:57:52:64:B6:89:69:FD:B8:E7:05:5C:12:03
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0183A3FA7EBEA0252939A8B41F1C55B0C089
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/gamEaObO1VdSZLaJaf245wVcEgM.roa
Signing time: Tue 04 Oct 2022 17:10:46 +0000
ROA not before: Tue 04 Oct 2022 17:10:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202813
IP address blocks: 5.59.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:fa:7e:be:a0:25:29:39:a8:b4:1f:1c:55:b0:c0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Oct 4 17:10:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81a98468e6ced5575264b68969fdb8e7055c1203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b9:3f:2a:13:01:fb:bc:ea:af:d9:be:3d:62:
5c:49:9a:c0:87:a2:b6:17:24:18:2e:7f:0b:6f:92:
d8:25:bd:d2:dc:71:a4:ff:c0:b5:0e:96:2a:bc:ff:
5d:6d:e9:93:e5:4b:76:89:ea:ee:9e:96:90:03:8d:
51:52:af:e9:34:3f:cc:94:5c:1e:7b:5d:ec:67:fe:
0d:1c:45:bd:48:eb:05:3c:b4:cf:99:96:42:8c:e9:
ea:f0:b0:38:a9:5e:e4:f7:7c:85:ea:54:1a:34:6c:
ee:2e:39:fc:cb:99:6e:5b:9a:3c:e6:4b:af:22:0a:
90:d0:31:7e:cb:b4:c0:2f:f6:ab:2f:1b:67:dc:b9:
eb:e2:1a:1f:d5:94:0d:d5:72:4c:77:4c:1b:30:c5:
1c:90:39:56:89:47:90:54:09:c1:ec:49:00:18:54:
85:4e:1b:08:d5:cf:ad:e4:65:96:b7:90:b4:35:ac:
a9:55:16:26:75:15:d4:96:9b:fe:50:83:1c:cc:09:
56:4f:1e:91:88:58:90:06:6a:ee:b2:11:a6:4f:dd:
1f:33:47:38:f0:c1:30:ac:b4:9c:39:f7:12:10:ed:
2a:75:84:67:fe:79:50:c6:c7:5c:2a:1a:3d:ad:d4:
d4:8f:a2:b9:1d:cf:71:dc:0f:43:8d:b2:33:d0:63:
3a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A9:84:68:E6:CE:D5:57:52:64:B6:89:69:FD:B8:E7:05:5C:12:03
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/gamEaObO1VdSZLaJaf245wVcEgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.64.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:ac:d8:e7:e9:7f:5e:68:15:9f:4f:11:f0:95:34:dd:80:3b:
ec:ef:19:cf:f8:d6:84:42:ad:13:fc:20:1b:bb:ce:76:09:01:
f8:aa:84:41:49:f9:40:63:1d:96:3d:31:79:c3:f9:a2:f0:41:
7b:22:2b:9f:a5:eb:79:cd:85:38:c0:93:b2:df:05:da:f0:d9:
74:46:63:dc:96:54:c5:e3:00:7c:d2:83:ce:43:aa:fa:2d:b4:
cb:a1:49:ec:81:63:ef:1c:1c:76:2c:8d:30:f7:c8:1e:fc:17:
dd:4d:af:0e:9d:a3:7f:ce:3a:ed:ef:cd:86:62:92:c7:7d:77:
d6:e9:da:25:29:63:b7:d2:7c:d5:f5:f5:9c:29:5c:d9:41:0f:
19:d6:34:5a:05:3e:58:b0:d8:8b:b6:a8:09:a4:e3:16:c6:23:
7c:a5:ff:d5:4b:3a:f4:92:33:4b:04:24:95:56:3b:94:1a:c5:
9d:c3:90:58:d4:16:bc:1e:4d:c8:c5:72:f6:b8:80:7b:a8:39:
a2:44:6f:7c:0b:62:e1:4d:15:02:7c:68:ff:db:6b:31:db:bd:
11:3f:73:32:5d:eb:cd:51:ff:f0:6f:a5:09:65:3c:c5:f2:04:
0a:c6:a7:7b:75:4b:1f:0b:6c:5d:d5:b1:13:eb:24:bd:26:25:
73:58:da:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:37 2025 by rpki-client