Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/gxPc_ltO_T6255R8FA3Pp1Ov2wM.roa
File: gxPc_ltO_T6255R8FA3Pp1Ov2wM.roa (raw, json)
Hash identifier: x7DzCGUD74ha0beIbXtJqCkEPFVjUjHKJ6kemJAcRiY=
Subject key identifier: 83:13:DC:FE:5B:4E:FD:3E:B6:E7:94:7C:14:0D:CF:A7:53:AF:DB:03
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A1F0C99
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/gxPc_ltO_T6255R8FA3Pp1Ov2wM.roa
Signing time: Thu 28 Apr 2022 07:53:06 +0000
ROA not before: Thu 28 Apr 2022 07:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57912
IP address blocks: 85.14.42.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169807001 (0xa1f0c99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8313dcfe5b4efd3eb6e7947c140dcfa753afdb03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:90:8b:50:c1:e7:20:7c:b4:b1:16:81:c1:0b:
d5:45:73:71:88:10:95:ad:c2:b7:7e:9b:9e:b6:34:
91:02:cd:11:de:16:45:2c:f2:52:7b:92:e5:a7:a0:
f7:ae:10:67:6e:1b:32:73:0c:51:f4:81:1b:0e:19:
17:16:d1:64:e0:ec:9b:b2:2f:f0:5d:79:a4:7d:51:
98:f9:4f:90:1f:7a:f1:e1:3a:47:ea:57:ec:3b:84:
61:5e:cc:ee:71:f6:1f:e6:26:23:a0:c0:f0:aa:ee:
19:97:f1:10:be:ff:3e:16:31:a4:e9:41:3e:ff:6e:
10:62:14:25:c4:f6:8b:7d:9a:95:00:d5:8e:22:24:
45:92:01:e7:d2:db:fe:65:3b:48:ae:16:ef:41:58:
3f:f7:6e:a1:15:48:d6:75:b1:cd:80:37:a4:f2:5e:
17:38:d9:9e:be:72:46:12:b0:e6:af:73:b6:0b:68:
ea:13:c2:a0:f9:b7:29:34:6a:67:7f:ea:3f:ec:9b:
f6:ad:6e:bc:ff:47:1f:8e:71:61:f8:56:07:17:06:
96:84:c5:b2:6a:2e:f3:65:8c:f2:2e:5d:31:01:ae:
b9:92:5f:4f:8a:c2:66:38:e2:58:9f:9a:e1:70:55:
22:6e:d2:cc:bd:ee:b2:8e:60:92:9b:b4:7e:4d:40:
e6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:13:DC:FE:5B:4E:FD:3E:B6:E7:94:7C:14:0D:CF:A7:53:AF:DB:03
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/gxPc_ltO_T6255R8FA3Pp1Ov2wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.14.42.0/23
Signature Algorithm: sha256WithRSAEncryption
d8:3e:6e:d0:fe:6d:71:4c:23:19:68:81:f1:d5:fb:4a:fd:af:
54:4b:11:f2:fb:ea:d7:ce:99:f2:32:b0:b0:e8:10:a9:cf:57:
24:0b:72:a7:0c:e7:20:34:d9:ff:c5:43:f7:ac:4a:d7:54:7d:
d3:df:a9:8f:22:48:62:85:4e:d9:25:c2:05:4e:f0:d1:29:f2:
4c:fd:a8:18:f9:b1:2f:df:56:6a:81:f8:5a:ff:ec:41:1a:63:
85:f3:12:0a:9c:5a:4f:c0:7e:59:cc:91:bc:6e:cf:8a:18:78:
37:ed:20:0f:d5:1a:26:86:2a:e3:aa:34:16:cd:d7:dc:04:3c:
e2:12:ce:d1:c7:82:8c:83:c0:4c:02:44:23:f0:78:74:33:23:
82:68:a9:d0:cb:e9:d9:04:fa:79:45:8a:86:d2:c0:df:d7:25:
59:2e:58:9e:ea:24:fc:e2:14:f1:5f:66:db:4d:3c:91:e1:78:
77:35:40:4e:a6:91:a7:bd:1a:84:10:21:72:e5:f3:a7:3e:49:
71:d0:82:1c:34:4d:b0:d1:da:8d:d5:2c:27:7e:f9:2a:05:7f:
74:05:f3:5f:02:e1:ea:04:85:4d:85:75:54:2f:18:3d:3f:32:
e4:8d:cd:b6:a4:61:e7:35:0d:4d:f7:56:b9:14:cf:ee:c4:8a:
f7:c5:fb:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org