Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gLCJu09WAHItYDWon40jKsmbTWI.roa
File: gLCJu09WAHItYDWon40jKsmbTWI.roa (raw, json)
Hash identifier: pCFLeSR5s0E5GtFyS9iPwo1+yufMIs34DKQBRpzC3io=
Subject key identifier: 80:B0:89:BB:4F:56:00:72:2D:60:35:A8:9F:8D:23:2A:C9:9B:4D:62
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0182CB22DD78A260D87BCF3B158C21A2B2E1
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gLCJu09WAHItYDWon40jKsmbTWI.roa
Signing time: Tue 23 Aug 2022 14:37:15 +0000
ROA not before: Tue 23 Aug 2022 14:37:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60672
IP address blocks: 185.223.164.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cb:22:dd:78:a2:60:d8:7b:cf:3b:15:8c:21:a2:b2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Aug 23 14:37:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80b089bb4f5600722d6035a89f8d232ac99b4d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:ad:a8:45:23:29:44:1b:94:f3:d6:cd:ff:
ea:fb:50:63:42:f1:6c:5e:4d:e2:e5:6a:24:d9:00:
0e:4f:0f:6c:5c:8b:ef:22:f5:1c:c1:0c:c9:f4:c8:
5a:2b:6b:4c:f5:bd:07:fe:68:76:5b:86:03:89:60:
9f:95:7c:81:ec:d4:c9:9e:df:87:42:15:49:e0:d3:
b5:14:71:17:30:8f:f7:86:10:ce:78:be:32:3b:f1:
9c:4d:8d:a3:16:17:b8:02:4c:5e:8c:77:46:c3:ab:
f0:58:8b:39:0c:8d:88:98:e6:ab:b6:10:24:26:9b:
c7:de:ce:1d:c7:92:3f:a4:8d:2f:f6:0e:02:a0:84:
70:77:51:d6:cb:4a:b1:0f:1a:25:49:f6:ca:68:28:
82:2d:94:99:06:93:c3:e9:5b:71:13:d2:1e:1e:6b:
d9:a2:ce:4e:8f:96:8b:1e:20:99:23:02:55:33:d5:
54:4b:0f:52:85:38:5f:0a:fe:3a:83:8e:84:48:62:
ba:96:ca:fb:36:54:f5:6e:9f:62:68:02:18:cc:35:
f5:b2:ea:c6:cb:12:f3:7b:36:8f:a2:8e:c1:0f:e5:
b3:c4:ec:ba:6b:28:9a:21:ec:69:0d:e1:4c:b0:91:
1e:7f:8a:c7:bc:ab:ef:90:e4:fe:e4:02:74:34:74:
6e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B0:89:BB:4F:56:00:72:2D:60:35:A8:9F:8D:23:2A:C9:9B:4D:62
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gLCJu09WAHItYDWon40jKsmbTWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.164.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d0:d5:17:db:d4:75:af:e9:ae:2e:9a:f0:b9:d9:99:b2:1b:
03:3b:99:24:fd:0b:69:be:97:64:95:2b:00:07:28:df:43:98:
e0:9e:8f:33:0a:9f:6d:b8:08:1c:8a:52:95:d7:47:fa:8a:d1:
57:77:39:db:3b:46:c9:22:01:8b:23:02:42:92:b6:51:0c:1f:
dc:06:da:5e:a2:3f:82:ac:3d:38:e2:76:0d:0d:2d:62:eb:07:
a6:17:14:cc:77:25:7d:e6:a9:c8:b6:ff:22:ce:7f:8f:9c:4b:
fb:a1:9c:8f:0f:f2:f3:fa:9e:c8:ec:04:cf:22:d3:08:62:1c:
6e:ad:91:0e:5f:62:c2:43:01:5e:41:34:27:f1:07:71:63:71:
ea:a0:08:f8:15:31:44:52:e7:51:ae:a6:f0:d1:9a:d5:ce:35:
21:1e:34:cf:6c:64:61:07:c1:07:6c:44:16:a1:f2:4a:43:9c:
0a:39:87:f7:b4:40:87:08:3e:ef:63:bf:20:ce:03:4c:87:04:
4b:18:25:95:08:d4:9d:a4:57:d9:22:41:75:ae:a3:54:fb:1f:
99:43:15:5e:42:4f:28:aa:6e:19:34:5c:b7:8b:dc:73:9f:b9:
6d:1c:39:5d:22:ee:67:b4:35:69:52:47:ce:6c:4f:a2:b1:f7:
f0:17:5a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org