Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/GxFGxNOv5kVNyq3TkE33DvQ9OcI.roa
File: GxFGxNOv5kVNyq3TkE33DvQ9OcI.roa (raw, json)
Hash identifier: 1uz8/coY1qETtziTsV6P3V/zUZCk0biNbHO9l36b8y4=
Subject key identifier: 1B:11:46:C4:D3:AF:E6:45:4D:CA:AD:D3:90:4D:F7:0E:F4:3D:39:C2
Certificate issuer: /CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Certificate serial: 02783D75
Authority key identifier: 3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/GxFGxNOv5kVNyq3TkE33DvQ9OcI.roa
Signing time: Wed 01 Jun 2022 08:42:22 +0000
ROA not before: Wed 01 Jun 2022 08:42:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 80.73.247.0/24 maxlen: 24
2a11:1680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41434485 (0x2783d75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Validity
Not Before: Jun 1 08:42:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b1146c4d3afe6454dcaadd3904df70ef43d39c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7f:ed:84:ab:e5:f4:87:29:34:f4:6d:31:9f:
9c:54:fe:6d:15:6a:58:f6:e6:e8:4d:95:3e:14:5b:
1b:ac:3e:16:49:22:9f:3d:ac:99:0b:67:7b:99:5a:
bd:d0:b6:13:b8:7c:d3:6c:14:b2:6d:09:6f:5b:23:
77:b4:f3:e5:c4:1f:09:2e:3b:39:ce:1a:4a:b3:b5:
bf:67:a5:40:fb:8e:9a:1a:5a:02:a1:5e:5c:47:37:
27:05:7c:04:aa:6e:90:27:dd:d9:63:43:00:95:7c:
88:f9:2a:58:dd:77:6e:67:b7:9f:fb:15:51:cb:77:
c9:fb:04:d9:95:f8:3d:d6:80:09:13:fa:4b:90:4e:
f4:4e:4e:80:62:91:97:bd:d1:00:dd:0a:89:18:cc:
53:a8:f1:7f:c7:5c:d9:2e:9b:a7:d3:7b:d4:bf:78:
cb:f9:cf:18:95:24:9e:24:47:ef:7d:aa:0d:9c:6f:
83:e3:2b:e0:0d:64:c9:29:9e:84:2a:ba:19:da:51:
5b:01:6c:50:fc:17:4c:6e:41:a2:d7:94:be:d2:b8:
5e:d1:43:cf:13:57:02:66:96:ce:06:85:e2:24:f1:
b7:43:fe:02:50:01:ac:88:03:d5:c1:51:a8:80:0b:
c6:57:ef:8e:f0:a8:1f:80:fa:af:98:37:cc:f2:2e:
0f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:11:46:C4:D3:AF:E6:45:4D:CA:AD:D3:90:4D:F7:0E:F4:3D:39:C2
X509v3 Authority Key Identifier:
keyid:3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/GxFGxNOv5kVNyq3TkE33DvQ9OcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.247.0/24
IPv6:
2a11:1680::/29
Signature Algorithm: sha256WithRSAEncryption
72:f1:bc:e5:07:70:7e:cc:b5:b8:a2:d5:84:da:5f:4d:5e:57:
04:df:85:01:9a:9c:69:11:8a:c5:72:13:32:78:c6:49:60:03:
6c:1a:96:5a:84:f6:31:29:03:b4:a7:be:36:c6:a4:a0:e8:60:
cb:88:f0:59:c1:f2:fd:fc:bb:2e:78:d0:a0:6b:45:9c:9c:03:
4c:35:34:9b:7c:b8:93:8f:c3:81:18:51:33:6b:86:87:1f:c7:
4d:91:33:93:75:31:ae:c4:02:52:2e:d6:e3:9e:ae:4c:3a:c9:
8e:0b:06:81:fa:a0:f8:d9:52:f1:d0:f9:2f:a9:d7:c5:d8:9a:
e5:82:da:25:14:62:07:2e:0d:8a:3d:a2:00:bb:47:84:d5:15:
02:3f:b5:42:69:ae:e7:61:dc:62:65:7d:31:45:0c:5e:9f:0f:
bb:cd:98:6b:b0:1f:84:7d:16:21:c2:1e:73:0f:f2:be:33:62:
45:0b:69:5f:83:3c:47:16:9e:29:22:32:99:8a:a2:60:3e:32:
2c:4a:e0:9b:5e:63:15:f6:98:80:fe:a6:eb:0b:fc:54:84:de:
58:99:9e:e7:82:40:84:6a:90:22:c9:c7:e7:a4:05:55:e3:4c:
e1:30:71:29:df:ec:9c:41:2c:c7:5b:f2:e1:74:b3:22:47:97:
3f:5c:92:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:03 2024 by rpki-client on console-ams.rpki-client.org