Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/gdHtm6Hple5KGP2dQ3MzoI43UY8.roa
File: gdHtm6Hple5KGP2dQ3MzoI43UY8.roa (raw, json)
Hash identifier: U2vGlssK+1+JPuHzt2pxVWqnpA2MgQD4K5Dv1QVTJ64=
Subject key identifier: 81:D1:ED:9B:A1:E9:95:EE:4A:18:FD:9D:43:73:33:A0:8E:37:51:8F
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 0186E04A3EC4C893438D7CB920EE9A2E73B7
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/gdHtm6Hple5KGP2dQ3MzoI43UY8.roa
Signing time: Tue 14 Mar 2023 13:23:27 +0000
ROA not before: Tue 14 Mar 2023 13:23:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209565
IP address blocks: 188.72.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e0:4a:3e:c4:c8:93:43:8d:7c:b9:20:ee:9a:2e:73:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Mar 14 13:23:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81d1ed9ba1e995ee4a18fd9d437333a08e37518f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9a:d8:9a:3c:f8:dc:6f:52:53:71:32:91:a7:
43:da:59:a8:fc:52:03:85:d0:df:e1:ac:71:4e:d6:
0d:7d:c2:8f:1e:e2:05:e7:ae:ef:aa:eb:7f:0d:46:
46:bb:9a:b1:04:26:ad:7a:24:ee:f7:cd:02:14:52:
24:94:14:e7:0c:47:79:4a:dd:60:be:ec:5e:a3:1c:
9c:5f:d9:e7:65:cd:16:e5:ba:aa:cc:41:da:a0:5d:
ef:e9:7a:85:96:66:67:5d:f2:1a:a4:09:f3:a6:64:
ff:16:4d:6f:64:0a:eb:f9:37:4c:f8:7b:87:8e:03:
f2:31:5d:31:fc:b4:ad:53:d7:8a:cf:e7:f8:1a:b0:
10:ce:14:f5:f5:5b:94:db:9e:21:35:5a:c4:44:69:
c7:75:73:2e:c8:34:29:df:ce:1f:1c:7a:16:af:8c:
fb:e2:3a:c2:8f:5e:8c:28:6a:55:a5:9d:de:ef:2b:
5a:1e:8a:f2:e4:0f:4e:9e:54:23:5e:f6:dc:3c:e1:
7e:88:9e:5a:75:8c:48:9b:53:92:7e:43:89:51:28:
2a:9c:99:14:73:ea:ab:d5:71:d1:be:ea:54:5c:5a:
9d:c7:16:0d:c1:1e:24:3a:38:ca:be:aa:87:5b:c5:
5b:2c:9f:10:d1:29:e2:c7:7b:73:7a:4f:97:94:1d:
ee:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D1:ED:9B:A1:E9:95:EE:4A:18:FD:9D:43:73:33:A0:8E:37:51:8F
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/gdHtm6Hple5KGP2dQ3MzoI43UY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.52.0/24
Signature Algorithm: sha256WithRSAEncryption
95:5c:f0:1e:32:f1:af:50:71:89:eb:45:6a:8e:ab:4d:30:29:
66:fd:b1:7d:76:96:a2:e5:00:c4:a6:6d:05:c5:53:2b:0e:4d:
c9:53:5c:a7:97:a3:5e:0b:d8:a8:6e:7f:2a:c6:d0:92:f4:97:
35:a2:16:a2:33:cb:78:f6:6c:e6:73:a9:73:12:95:c0:58:d0:
74:14:48:41:6d:f2:c1:50:eb:8a:65:c2:bb:c3:d1:e0:66:e1:
e2:ac:c6:e5:95:b1:5f:f6:3c:9c:aa:06:b0:02:f7:d9:5d:95:
f9:1c:2d:3a:36:72:64:b7:52:50:61:77:77:b6:bb:5c:45:4e:
4e:64:65:3b:a5:f8:97:ab:7f:66:7e:e6:39:ce:ac:f6:15:dc:
71:16:69:7e:0b:b9:ee:c8:de:24:dc:4e:a2:66:d2:b4:f0:19:
69:20:6e:80:05:b3:2e:fe:10:43:3c:26:85:ac:13:7f:a6:57:
2f:ca:51:cb:c5:18:b4:5e:54:62:95:ba:50:b7:4f:75:1f:2f:
4b:4c:96:ce:28:dc:a2:b3:4e:f6:16:61:52:d1:8c:95:07:2d:
b6:e8:f4:12:23:a6:be:02:cb:d0:fe:c4:25:6e:fa:9e:a4:03:
8f:a7:bd:91:32:04:93:5d:f1:59:da:82:67:d6:81:30:fc:aa:
79:cf:de:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:13:17 2025 by rpki-client