Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gcuEXjG391bDJh7Vo5G5IMdJdfQ.roa
File: gcuEXjG391bDJh7Vo5G5IMdJdfQ.roa (raw, json)
Hash identifier: 5vnpBce7HxwPpbmRJF5D2P1kjWr93OSMJC+khRjfwcU=
Subject key identifier: 81:CB:84:5E:31:B7:F7:56:C3:26:1E:D5:A3:91:B9:20:C7:49:75:F4
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17DB8B6C
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gcuEXjG391bDJh7Vo5G5IMdJdfQ.roa
Signing time: Sat 01 Jan 2022 04:54:37 +0000
ROA not before: Sat 01 Jan 2022 04:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202365
IP address blocks: 185.255.155.0/24 maxlen: 24
2a0c:da04::/48 maxlen: 48
2a0c:da04::/38 maxlen: 128
2a06:7243::/43 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400264044 (0x17db8b6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81cb845e31b7f756c3261ed5a391b920c74975f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d3:94:a9:b1:55:e0:e2:a2:78:8d:26:46:fa:
d4:34:a4:57:16:67:db:0d:90:da:a3:ad:29:cf:a2:
29:78:f6:c8:41:ba:24:c9:84:04:71:6f:8c:8f:aa:
19:c1:2c:5e:7f:a6:ba:06:f1:f8:c8:8a:f2:69:6b:
7d:c5:93:cf:a0:48:6e:1a:40:59:49:3a:b8:96:cf:
75:c5:6f:9c:3c:73:a8:7c:b9:0e:81:d2:15:94:7c:
20:5e:97:b0:41:b3:d8:1a:26:f6:b8:f9:ae:0e:15:
05:34:d0:c9:9e:a1:48:ef:2f:9c:95:1b:3c:7a:df:
50:12:c1:e7:7f:9b:65:2e:d0:f1:9a:9d:de:e6:2c:
ac:64:34:dc:ef:fe:c9:0e:b1:6c:96:e0:13:8d:42:
41:33:c7:e1:a6:ad:87:59:e1:a6:56:44:5e:c0:4f:
82:bf:51:c8:12:d2:a8:af:dd:ad:aa:c7:7a:ca:f6:
0c:a1:5a:2e:80:06:15:43:0e:1b:74:28:80:f7:8e:
00:ea:9b:10:b5:91:94:9e:47:1e:16:29:1a:89:ce:
21:9a:fb:a6:37:89:ab:1c:0b:7d:51:1c:44:4a:88:
6e:2a:cc:53:73:8e:63:dd:91:6e:fe:24:b6:8c:c2:
ac:48:db:9f:25:17:d2:00:db:08:71:0f:6c:95:03:
40:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CB:84:5E:31:B7:F7:56:C3:26:1E:D5:A3:91:B9:20:C7:49:75:F4
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gcuEXjG391bDJh7Vo5G5IMdJdfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.155.0/24
IPv6:
2a06:7243::/43
2a0c:da04::/38
Signature Algorithm: sha256WithRSAEncryption
b4:fa:d4:11:bc:73:84:1a:9c:68:38:d6:96:22:e9:8b:e4:75:
c9:84:de:32:86:92:b1:d8:72:4d:e7:b4:e9:50:c3:29:5b:69:
c8:4e:fa:80:ff:b3:7a:ef:45:52:7a:92:8e:77:56:6d:f4:95:
e2:79:11:53:81:1e:c3:3b:3b:53:e8:95:51:4c:ff:ea:58:b6:
7a:eb:e8:74:8a:b5:d2:25:ba:69:bb:2b:4d:a1:d2:c5:1c:af:
d6:69:f2:67:b2:91:46:53:46:7e:08:f0:18:b7:83:fd:05:e2:
3a:bd:c6:f6:fb:c7:19:3e:31:be:1c:86:74:c4:29:b4:20:b7:
34:48:03:21:ab:02:7b:c7:b2:37:7c:22:19:2a:85:d6:6e:88:
1d:6f:80:54:40:55:c6:06:26:00:16:8c:13:17:7e:00:3a:76:
4b:f8:32:88:ec:dd:a7:a0:bb:fb:d4:b1:55:04:1f:4d:8f:a9:
05:31:00:69:bf:35:65:e4:6c:5a:5c:a1:98:3c:d1:1f:fa:ad:
00:40:d8:82:67:79:78:07:97:8d:c4:f3:97:2b:ac:54:04:01:
c2:9c:e7:38:2e:93:d7:1d:f4:6e:f0:ba:8e:c3:7a:e6:ac:51:
61:c7:3e:2f:6f:a2:bc:c5:fe:46:18:c6:36:46:40:e2:7c:30:
a8:21:85:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org