Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/GWKGuQFcW6W2IpYHvBJQRTjAQCw.roa
File: GWKGuQFcW6W2IpYHvBJQRTjAQCw.roa (raw, json)
Hash identifier: OKhFGOrTQLOJALpCkJQ5KPqW49rdWGs3FbQmenSY+pU=
Subject key identifier: 19:62:86:B9:01:5C:5B:A5:B6:22:96:07:BC:12:50:45:38:C0:40:2C
Certificate issuer: /CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Certificate serial: 169D5129
Authority key identifier: 72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/GWKGuQFcW6W2IpYHvBJQRTjAQCw.roa
Signing time: Sat 01 Jan 2022 09:06:37 +0000
ROA not before: Sat 01 Jan 2022 09:06:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199606
IP address blocks: 151.248.8.0/21 maxlen: 24
2a01:a7c0::/32 maxlen: 37
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379408681 (0x169d5129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Validity
Not Before: Jan 1 09:06:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=196286b9015c5ba5b6229607bc12504538c0402c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1d:b6:fe:7e:2b:90:b6:0b:7c:7d:40:ed:d6:
0c:95:cd:cc:46:88:d9:52:a3:a0:f7:66:12:8f:06:
8a:a4:ba:ab:e3:23:ba:06:f1:a3:52:8b:51:d7:41:
c9:af:b5:87:16:ee:bc:0d:81:3c:88:c7:5c:0c:0b:
bf:54:41:2e:44:18:9d:18:f7:cf:dc:62:9a:a8:d2:
2b:e8:79:f8:e1:37:bd:c4:f9:a3:68:ba:82:24:5f:
58:27:84:00:72:97:e4:16:70:22:3a:1c:88:d0:c0:
68:8c:5b:e7:e2:92:82:ff:ff:9f:d4:e6:21:65:fe:
d4:6e:d7:c6:30:dd:b0:11:60:1f:a9:46:a1:a5:e2:
03:fe:9a:7d:7a:41:03:c1:52:c2:75:e8:d9:f7:c7:
33:c5:38:37:b9:87:68:8c:1d:89:de:9e:c8:05:2a:
ad:cd:f8:26:fe:e6:41:83:52:39:f0:51:5e:4c:7c:
2c:db:15:78:77:7e:a4:bc:66:02:bf:f1:f3:7e:4f:
46:b7:b6:41:5f:05:c6:94:8e:31:66:a6:4f:96:89:
5c:e9:65:39:e2:d6:83:39:a2:6f:ee:14:73:c1:cd:
78:43:5a:86:1a:15:c5:3f:27:7b:45:10:bd:ca:e3:
e7:1a:cf:da:c0:32:5c:04:cf:9c:4e:b7:c0:a7:74:
fa:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:62:86:B9:01:5C:5B:A5:B6:22:96:07:BC:12:50:45:38:C0:40:2C
X509v3 Authority Key Identifier:
keyid:72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/GWKGuQFcW6W2IpYHvBJQRTjAQCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.248.8.0/21
IPv6:
2a01:a7c0::/32
Signature Algorithm: sha256WithRSAEncryption
6e:64:79:df:cd:d8:8f:34:c8:d6:90:b2:97:2f:ad:dd:bd:75:
cf:b7:b8:38:25:af:5f:e3:95:3e:01:3a:f6:7e:00:34:cf:aa:
de:d8:bf:b0:4f:7b:2f:b6:e7:70:17:08:ba:31:e0:68:c6:13:
ed:a2:5d:bc:d4:eb:13:15:69:46:46:7f:80:2d:d1:bc:19:5e:
31:48:8b:f3:63:d9:6d:b3:04:52:a1:d7:ab:61:e6:7d:cc:44:
45:35:3a:bd:13:de:a0:c6:76:40:79:e8:ad:fb:4b:84:49:01:
46:31:27:f7:28:03:a5:db:14:cc:2b:6a:67:c9:e8:12:db:39:
c0:5c:64:31:58:e0:1d:cc:ad:6a:d3:25:46:51:2c:40:d7:ff:
cc:dc:6e:4f:58:65:ea:96:ab:38:05:d2:94:8f:8f:1b:f0:3d:
f4:d7:f1:dc:34:12:28:a4:09:8d:60:00:66:58:25:93:61:ae:
a8:de:72:02:4d:f6:58:bf:78:7d:15:c4:8f:cf:6a:1a:e5:6e:
ef:da:fe:64:b8:5a:45:b1:41:47:56:5d:5d:64:f7:ce:ec:61:
8e:97:d6:9d:c6:eb:f8:42:f2:55:19:5b:1c:68:94:9f:e3:2d:
a5:bf:9c:0a:91:3a:57:6c:3d:6c:92:21:87:7f:54:19:45:6f:
0b:57:51:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:14 2025 by rpki-client