Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/GxJYWR1gNIWt9U3_TypO4k9LpIM.roa
File: GxJYWR1gNIWt9U3_TypO4k9LpIM.roa (raw, json)
Hash identifier: EcI7TSBiofjzBiIt8iJblix4B2Cz80ETM81PhhbAAiM=
Subject key identifier: 1B:12:58:59:1D:60:34:85:AD:F5:4D:FF:4F:2A:4E:E2:4F:4B:A4:83
Certificate issuer: /CN=d9527368206e3e9a5924081df63880246e5c541a
Certificate serial: 090D1753
Authority key identifier: D9:52:73:68:20:6E:3E:9A:59:24:08:1D:F6:38:80:24:6E:5C:54:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VJzaCBuPppZJAgd9jiAJG5cVBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/GxJYWR1gNIWt9U3_TypO4k9LpIM.roa
Signing time: Sat 01 Jan 2022 10:55:34 +0000
ROA not before: Sat 01 Jan 2022 10:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 140.105.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151852883 (0x90d1753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9527368206e3e9a5924081df63880246e5c541a
Validity
Not Before: Jan 1 10:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b1258591d603485adf54dff4f2a4ee24f4ba483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d2:58:b6:e6:69:70:39:68:6b:00:cb:b7:5b:
08:d7:d2:a3:b7:a3:ff:ef:d6:4e:dd:50:41:fb:5d:
8c:9a:a6:95:d9:97:e2:e0:f7:56:ba:58:49:e7:58:
ea:40:81:02:17:4b:58:5d:05:ec:92:56:8f:e0:d2:
84:ea:a4:2b:4d:7a:8a:25:09:cb:78:31:64:87:be:
fd:0f:35:8f:59:11:01:8d:b0:f9:da:33:0c:d1:c9:
a6:0b:43:4e:7e:d7:51:88:58:70:e9:6b:f9:39:a3:
43:ed:29:18:41:e0:79:bf:65:02:1c:9d:c6:36:51:
d9:ae:d3:35:c3:73:87:38:ff:2c:41:1b:bf:3a:8b:
59:87:2f:56:ab:94:80:9c:85:bd:3e:0b:67:cf:89:
04:a4:47:58:af:9f:f1:43:5a:d9:76:a6:89:ce:90:
65:2a:50:4a:5d:0b:97:e8:f9:c5:2d:79:07:85:39:
f8:d5:da:b2:5b:81:98:38:31:b1:ae:21:07:16:e2:
8a:54:6e:5d:1d:75:32:22:2b:3b:aa:41:da:9e:10:
06:b6:76:02:70:b5:a5:b5:da:f5:25:a0:b8:18:7d:
dd:72:6c:69:be:9e:df:60:d3:b0:4d:92:99:35:e0:
01:d1:d9:c8:a2:5a:d3:0b:e7:97:d7:3b:0f:dc:42:
57:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:12:58:59:1D:60:34:85:AD:F5:4D:FF:4F:2A:4E:E2:4F:4B:A4:83
X509v3 Authority Key Identifier:
keyid:D9:52:73:68:20:6E:3E:9A:59:24:08:1D:F6:38:80:24:6E:5C:54:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VJzaCBuPppZJAgd9jiAJG5cVBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/GxJYWR1gNIWt9U3_TypO4k9LpIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/2VJzaCBuPppZJAgd9jiAJG5cVBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.105.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3f:f0:79:99:d0:4f:5e:ce:cb:ac:33:5e:36:c3:ab:e4:7e:ca:
23:b6:f4:0c:ae:b5:0e:9e:8e:48:2c:f2:74:c5:b5:3f:4c:42:
a7:fb:2e:56:cf:91:8e:2e:a6:0a:52:0f:3d:9c:a5:47:e3:32:
8c:ed:5d:5e:13:dd:e7:8a:10:fa:1e:11:62:af:1b:76:0f:5b:
67:40:96:cb:d5:01:4f:5c:9f:1f:3a:c5:d3:a5:ea:53:23:2b:
0d:b1:4a:ff:35:9b:ce:e4:3d:84:33:d7:83:d3:2a:c4:2e:e3:
3b:9b:4c:61:b6:32:03:a7:9a:8f:aa:1b:50:00:ab:42:fb:1e:
a6:b9:ad:b7:89:eb:18:a4:8d:33:a3:02:9c:fc:d8:c8:57:95:
48:69:7f:71:5c:39:b2:d3:58:8b:d1:70:8f:c9:8c:2d:88:f7:
b8:b8:66:cd:9b:cd:34:f9:0e:a2:a6:f4:6a:34:e8:20:02:04:
f0:b6:88:e9:27:62:12:a6:5b:05:f8:a0:a9:9f:d6:f1:7c:dc:
d2:d1:c4:d4:27:6d:18:9a:b4:44:1e:ed:f8:b7:c7:11:64:68:
81:25:1d:cb:36:26:9b:df:30:64:06:fa:f1:4e:38:e0:44:09:
77:ad:e3:97:3b:d9:bb:8d:b9:55:73:8c:14:36:13:ce:28:cc:
5f:b7:c3:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:46 2024 by rpki-client on console-fra.rpki-client.org