Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/gl0YslEN_iZ1mR-K0EvMTy4TNHA.roa
File: gl0YslEN_iZ1mR-K0EvMTy4TNHA.roa (raw, json)
Hash identifier: BjO6+IBOv0HmtRSr+qCw+alsFgtEJoge+Eey69VsOuI=
Subject key identifier: 82:5D:18:B2:51:0D:FE:26:75:99:1F:8A:D0:4B:CC:4F:2E:13:34:70
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0A3B8C45
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/gl0YslEN_iZ1mR-K0EvMTy4TNHA.roa
Signing time: Sat 18 Jun 2022 11:55:44 +0000
ROA not before: Sat 18 Jun 2022 11:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132335
IP address blocks: 212.60.13.0/24 maxlen: 24
92.249.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171674693 (0xa3b8c45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jun 18 11:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=825d18b2510dfe2675991f8ad04bcc4f2e133470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:13:d1:0e:30:87:99:4f:e6:85:b4:d6:55:
2a:c8:60:8d:9d:af:31:f9:8b:3a:bd:03:14:39:f9:
85:7b:bb:ae:8d:b6:1a:aa:57:a2:0b:1a:0e:cd:79:
74:2b:3e:94:c2:fa:d2:15:40:9e:f9:a7:44:32:f8:
37:a2:85:4b:7b:6a:ba:b1:46:75:6e:ee:56:63:87:
3e:7d:f9:d2:5f:07:91:c2:68:0a:1d:26:ad:80:d5:
03:69:df:30:ad:7c:6f:16:12:ab:b4:96:c3:80:92:
95:b0:cc:f1:56:0b:14:f9:54:31:c2:4f:9c:a8:bd:
d8:c0:89:ed:13:33:8d:1a:f9:a7:96:f8:ea:e2:1a:
83:74:bc:a6:bf:75:88:15:22:98:32:ed:51:3a:9a:
d0:79:f4:c3:d9:2b:92:d9:48:1e:6b:c5:90:9a:c9:
c9:fb:a0:19:b8:c8:5d:b9:29:b8:18:55:aa:81:f7:
da:54:6b:16:e5:a7:0a:ab:97:52:70:20:bb:31:65:
62:fd:41:3a:6c:c5:4f:d5:77:db:fd:72:d8:1d:de:
c1:2e:08:b4:50:21:cd:82:1b:69:1a:81:e9:c8:33:
4a:41:32:50:64:81:8a:ec:30:e8:ee:9c:d2:89:39:
dc:58:0f:85:96:be:c0:92:16:12:0d:28:36:f8:c4:
82:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5D:18:B2:51:0D:FE:26:75:99:1F:8A:D0:4B:CC:4F:2E:13:34:70
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/gl0YslEN_iZ1mR-K0EvMTy4TNHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.29.0/24
212.60.13.0/24
Signature Algorithm: sha256WithRSAEncryption
81:cc:1b:f9:96:f1:1f:c3:06:a7:5c:f4:cf:14:b9:13:c7:21:
96:f9:2d:12:6a:8c:27:52:47:8b:ad:6d:6c:a6:57:ef:9e:07:
e6:dd:81:66:6d:bb:bc:6a:51:be:f0:46:c4:76:ce:df:b2:b3:
bd:1c:f0:46:91:78:b9:48:7d:58:29:db:c7:9c:65:3e:b1:4e:
44:38:88:1b:96:66:b0:33:70:b7:39:7d:46:fb:50:38:4c:ba:
1f:51:b5:64:95:70:62:71:c4:81:e5:94:01:c7:7d:18:c6:8d:
73:76:a8:64:43:57:66:6f:de:39:6c:6e:da:d2:42:10:d9:e1:
ac:d1:b9:e9:71:b9:d4:66:3c:da:48:f1:0d:d0:2f:cb:22:c5:
49:44:7e:dc:44:ae:89:4f:05:55:c1:2e:5f:ff:f7:0d:3d:d1:
11:ad:f7:54:b1:64:a1:71:2e:c1:bc:07:36:1c:67:2f:9c:05:
eb:d6:b0:55:4a:17:a3:3e:e8:8d:47:4d:0c:d0:ab:fe:5c:68:
a0:47:00:27:88:0b:87:5f:36:c7:47:3d:d9:b9:87:53:ac:68:
73:04:02:0e:c1:73:74:0d:45:cd:65:e5:f5:52:79:ff:1c:a3:
b1:45:50:b1:f6:46:6d:19:e1:c4:ee:59:74:3d:96:4c:01:d9:
08:23:28:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:58 2023 by rpki-client on console-fra.rpki-client.org