Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/GTCPwRObyly6S4fbXMAQrmUvfGU.roa
File: GTCPwRObyly6S4fbXMAQrmUvfGU.roa (raw, json)
Hash identifier: SJrNvKwB0QM9fiOGxn/mGbbcgo8XfOPU1QDnCaz/SvA=
Subject key identifier: 19:30:8F:C1:13:9B:CA:5C:BA:4B:87:DB:5C:C0:10:AE:65:2F:7C:65
Certificate issuer: /CN=39e4059e519e7cad0536bd54d91bc97875644cdb
Certificate serial: 08C3AEC1
Authority key identifier: 39:E4:05:9E:51:9E:7C:AD:05:36:BD:54:D9:1B:C9:78:75:64:4C:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OeQFnlGefK0FNr1U2RvJeHVkTNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/GTCPwRObyly6S4fbXMAQrmUvfGU.roa
Signing time: Sat 01 Jan 2022 13:06:33 +0000
ROA not before: Sat 01 Jan 2022 13:06:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 145.238.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147041985 (0x8c3aec1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39e4059e519e7cad0536bd54d91bc97875644cdb
Validity
Not Before: Jan 1 13:06:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19308fc1139bca5cba4b87db5cc010ae652f7c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d4:a8:c0:d5:40:33:70:36:b0:35:03:0c:c1:
51:b5:1a:d1:54:16:b9:c1:4e:f8:59:3e:6c:8c:62:
33:c9:74:54:ee:a9:dd:87:4f:b5:12:69:ec:4a:dc:
89:3f:23:b5:82:95:83:73:de:01:d0:fd:93:19:50:
bd:a0:a9:5e:c9:45:f4:67:3d:8a:ee:4f:00:9d:7a:
d1:76:39:3b:b6:10:09:94:9e:3d:2d:19:46:a9:df:
98:59:2e:92:d3:01:d6:6f:21:55:be:a7:0a:e8:35:
33:dd:66:c1:bf:18:8f:d2:6d:cc:eb:b4:f1:50:4f:
6a:b7:63:dd:3c:14:ac:ef:9e:63:26:dc:fa:b4:78:
d5:c1:4e:da:5d:a8:f0:07:56:b2:3c:74:c8:c8:70:
a4:4b:76:ff:1c:b7:ba:05:91:12:db:1d:dc:25:29:
20:fb:05:4f:6e:ea:83:10:50:57:09:9a:a6:d2:97:
84:3a:09:17:4a:7b:e6:39:3f:b7:5d:d8:81:41:11:
00:16:a8:19:1c:87:d5:78:8c:90:70:4c:c1:35:3b:
9a:f9:5e:04:d9:39:10:e1:88:48:e1:49:cd:ac:72:
aa:9e:c4:1d:af:6b:e1:6b:ec:34:7c:60:d4:91:ab:
71:c1:60:91:9f:7c:7a:21:f0:de:01:9f:61:d6:0f:
a4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:30:8F:C1:13:9B:CA:5C:BA:4B:87:DB:5C:C0:10:AE:65:2F:7C:65
X509v3 Authority Key Identifier:
keyid:39:E4:05:9E:51:9E:7C:AD:05:36:BD:54:D9:1B:C9:78:75:64:4C:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OeQFnlGefK0FNr1U2RvJeHVkTNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/GTCPwRObyly6S4fbXMAQrmUvfGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/OeQFnlGefK0FNr1U2RvJeHVkTNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.238.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:2c:9e:06:c7:27:9d:02:cf:53:d2:77:54:25:f9:59:7e:1c:
48:6b:61:e2:e8:35:1c:9e:4f:fb:e4:19:d8:27:0f:34:e8:f3:
9a:c0:48:24:c8:46:45:8b:67:f4:c8:08:6e:ed:5a:ef:71:24:
1c:a9:53:cb:71:4b:ba:24:13:7f:c0:e6:6d:b0:62:73:76:37:
da:41:5e:cd:3e:a5:a2:2f:5f:f7:17:27:29:34:1b:d0:0f:9e:
cd:5c:1b:d6:6d:a2:36:11:c5:83:30:ac:c3:c8:a1:f0:ab:31:
58:6d:ea:9e:1e:94:5d:08:d4:0f:32:99:cf:e0:d1:74:04:28:
35:87:46:41:74:00:69:00:86:2c:c9:ae:7e:14:60:4c:00:59:
6b:28:15:ee:e4:39:fa:3c:bb:a0:ca:f7:79:c9:8a:29:a5:86:
8a:3d:36:b0:1f:96:40:e1:90:3f:9c:ae:28:48:c4:b9:fe:39:
25:bf:a8:cc:59:96:47:74:24:98:83:d2:81:e0:9d:87:75:0f:
43:10:ae:7b:b8:1e:96:ee:82:97:c0:86:95:13:5b:9c:d8:89:
bb:4a:2e:67:67:23:9e:42:ed:51:c4:34:cb:7d:cd:f9:06:ad:
f3:c3:9a:ce:e4:80:56:4f:c6:df:06:90:34:70:38:fd:66:ae:
39:4b:bf:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:51 2024 by rpki-client on console-fra.rpki-client.org