Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/GKwVfqF_XPwR8JaKlbUnDJcernY.roa
File: GKwVfqF_XPwR8JaKlbUnDJcernY.roa (raw, json)
Hash identifier: CAnE0MgwKs1OwbmC4UmRTHCXYTfTOUCVcKDKqwPoV/0=
Subject key identifier: 18:AC:15:7E:A1:7F:5C:FC:11:F0:96:8A:95:B5:27:0C:97:1E:AE:76
Certificate issuer: /CN=a634878281144a46a856003d622f6141ea4e006f
Certificate serial: 018387E2255A90E51ADFD5693423F56035D4
Authority key identifier: A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/GKwVfqF_XPwR8JaKlbUnDJcernY.roa
Signing time: Thu 29 Sep 2022 06:14:48 +0000
ROA not before: Thu 29 Sep 2022 06:14:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207608
IP address blocks: 217.144.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:87:e2:25:5a:90:e5:1a:df:d5:69:34:23:f5:60:35:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a634878281144a46a856003d622f6141ea4e006f
Validity
Not Before: Sep 29 06:14:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18ac157ea17f5cfc11f0968a95b5270c971eae76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ce:f3:d8:27:37:89:c0:12:dc:64:d0:b0:97:
79:34:9b:9d:a4:53:e8:78:e2:c6:72:f5:62:3d:cb:
00:8f:9b:8a:c3:8e:60:02:cf:0b:42:47:9b:34:05:
cb:d0:4c:2f:9c:b3:2c:11:d7:ef:cb:81:d0:4e:1e:
97:c2:fd:fc:a7:9e:ec:c0:ef:7a:2a:88:4b:7d:0a:
b7:b8:55:e6:1c:ac:e9:68:74:a2:d2:86:63:87:ee:
02:8a:df:26:8f:21:67:ea:39:66:a4:50:1f:dd:66:
95:b6:a8:b4:9b:c3:9a:44:56:e4:1f:63:f8:5b:06:
a7:01:db:d8:ca:3d:d5:8e:ad:44:96:e0:68:03:82:
18:68:28:20:12:81:64:f5:85:c4:41:a0:20:c0:b3:
54:54:56:12:53:f6:c6:b9:0e:b4:d3:9f:6c:8d:03:
ab:40:07:4f:00:df:f9:da:72:65:83:52:11:ba:65:
ef:da:73:38:01:b6:56:6c:e4:8a:fb:a7:24:b4:ff:
16:23:6c:8a:6d:3e:55:65:6e:a8:2f:0f:0d:a9:8c:
37:bc:12:a9:ef:44:48:05:7d:ed:d6:4a:bd:0a:fa:
28:55:d7:1e:35:9b:b5:1d:61:fe:18:38:4c:ee:58:
67:2f:1c:b1:ed:ce:e3:8f:13:4c:c5:07:13:62:c8:
8c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:AC:15:7E:A1:7F:5C:FC:11:F0:96:8A:95:B5:27:0C:97:1E:AE:76
X509v3 Authority Key Identifier:
keyid:A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/GKwVfqF_XPwR8JaKlbUnDJcernY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/pjSHgoEUSkaoVgA9Yi9hQepOAG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.144.75.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:e4:77:03:07:ac:27:b4:89:43:93:d9:44:93:5f:2b:50:7c:
73:4e:ce:20:55:b5:e7:8f:cd:16:70:a8:dc:95:9c:13:81:e4:
95:22:f9:0e:fc:0f:19:5a:11:ef:9b:f8:2f:d7:24:4e:cd:aa:
19:d9:19:5d:d2:11:bc:53:87:7b:27:98:b6:30:d1:fc:13:43:
ef:f0:46:53:be:f5:08:ec:22:0b:91:97:20:b1:82:90:ab:ba:
0b:8a:26:d5:a3:07:94:84:dd:e1:1f:c0:31:cd:5c:74:f0:60:
85:87:04:c0:9f:4d:d0:68:5b:bb:33:18:33:2f:c4:b7:6a:88:
7c:53:fd:9e:b9:84:67:43:fd:c2:67:09:d8:b7:79:4c:ed:95:
0f:56:41:91:5e:66:14:b4:c7:47:01:65:0c:50:ec:9a:21:ad:
b3:c6:1c:75:25:04:16:ad:52:4d:5e:62:63:29:ac:a9:d2:74:
d8:6f:6c:80:41:8a:cb:7b:ee:4a:fe:f5:c7:77:e7:9f:f1:42:
a6:58:42:8f:f6:0b:23:87:77:fe:6e:7f:50:5a:00:1c:52:eb:
ad:44:0a:47:48:98:5a:5f:f9:0b:b4:55:0e:ae:04:03:f9:70:
67:9b:88:6e:1d:c8:d0:9a:2b:fa:bc:95:d4:3b:b4:7a:f4:45:
9d:d6:9c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:56 2024 by rpki-client on console-fra.rpki-client.org