Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/GtPTxhQHPPySwbBQ1ZhMrcfOvXM.roa
File: GtPTxhQHPPySwbBQ1ZhMrcfOvXM.roa (raw, json)
Hash identifier: ZiNjLp6DkPz956HelCtkTXR7x/sBuu/fKk6mP+wZPoU=
Subject key identifier: 1A:D3:D3:C6:14:07:3C:FC:92:C1:B0:50:D5:98:4C:AD:C7:CE:BD:73
Certificate issuer: /CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Certificate serial: 01886CF04085C65CC7930C66F860150F75A1
Authority key identifier: C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/GtPTxhQHPPySwbBQ1ZhMrcfOvXM.roa
Signing time: Tue 30 May 2023 13:54:24 +0000
ROA not before: Tue 30 May 2023 13:54:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8410
IP address blocks: 212.15.41.0/24 maxlen: 24
212.15.42.0/24 maxlen: 24
212.15.43.0/24 maxlen: 24
212.15.44.0/24 maxlen: 24
212.15.48.0/24 maxlen: 24
212.15.49.0/24 maxlen: 24
212.15.46.0/24 maxlen: 24
212.15.48.0/21 maxlen: 21
212.15.47.0/24 maxlen: 24
212.15.50.0/24 maxlen: 24
212.15.51.0/24 maxlen: 24
212.15.45.0/24 maxlen: 24
212.15.52.0/24 maxlen: 24
212.15.55.0/24 maxlen: 24
194.55.163.0/24 maxlen: 24
194.55.161.0/24 maxlen: 24
212.15.53.0/24 maxlen: 24
212.15.54.0/24 maxlen: 24
194.55.171.0/24 maxlen: 24
194.55.168.0/24 maxlen: 24
195.140.180.0/22 maxlen: 22
212.15.32.0/20 maxlen: 20
212.15.32.0/21 maxlen: 21
194.0.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:f0:40:85:c6:5c:c7:93:0c:66:f8:60:15:0f:75:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Validity
Not Before: May 30 13:54:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ad3d3c614073cfc92c1b050d5984cadc7cebd73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e9:fd:e4:96:30:86:84:bd:6b:d4:29:3b:15:
64:bc:ea:c8:99:82:31:86:2d:d2:39:82:a2:29:a6:
fd:fa:90:a0:cc:ad:e8:15:2c:23:a0:12:39:ae:df:
9b:56:fe:4b:71:af:fa:a8:ba:35:c1:74:54:22:3b:
4f:59:01:cd:70:c7:c7:26:7b:98:2a:8c:0c:0f:27:
8d:32:ec:3a:e0:49:81:70:2f:4b:ef:60:be:e0:78:
50:80:aa:0b:9d:ca:94:10:49:b1:27:9d:6b:aa:cf:
77:93:c9:0f:b0:c7:34:a8:7b:bb:eb:f7:71:88:36:
5c:2d:00:c5:15:4d:77:cf:35:bf:5a:30:71:73:9f:
06:c8:15:2a:f2:1f:69:40:54:bc:d5:0c:93:15:4f:
74:17:d6:80:2a:aa:0b:74:9f:e7:8c:f7:b1:6e:b1:
78:e5:bc:e8:45:56:4f:6e:f6:ad:a5:7a:f7:cf:a3:
82:c0:23:44:4b:6a:9e:33:66:0c:5f:d9:5d:97:18:
1c:bd:9a:72:24:5f:69:6d:2e:5e:ab:29:e5:ed:eb:
d7:af:fa:24:65:05:64:b5:9a:66:16:cb:18:31:f6:
07:8c:ce:a8:3d:11:83:97:07:96:cf:f4:bd:ae:73:
d3:91:b9:1f:5c:25:0d:9f:8b:88:b4:05:22:17:4d:
8b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D3:D3:C6:14:07:3C:FC:92:C1:B0:50:D5:98:4C:AD:C7:CE:BD:73
X509v3 Authority Key Identifier:
keyid:C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/GtPTxhQHPPySwbBQ1ZhMrcfOvXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wur6ows0Ds-BCky5rztRxwJWZZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.120.0/22
194.55.161.0/24
194.55.163.0/24
194.55.168.0/24
194.55.171.0/24
195.140.180.0/22
212.15.32.0-212.15.55.255
Signature Algorithm: sha256WithRSAEncryption
66:76:3d:16:0a:ac:b6:8b:c2:d0:cc:da:c3:6d:d8:62:e7:82:
26:e7:46:9a:f5:ba:09:8f:9b:f4:e6:9e:fe:c7:1a:9e:e8:67:
40:52:2a:fa:02:44:62:6b:85:20:a1:52:9a:49:78:ee:ef:4a:
67:4b:c7:1c:07:5a:a5:05:30:78:3c:a9:2c:41:b4:63:2a:5f:
30:78:a0:be:db:40:8f:6f:a4:92:d2:a2:9d:6a:cd:dd:9e:d3:
41:69:ed:c7:45:f2:16:e3:b2:d7:f0:6e:49:46:f5:2e:ab:ed:
67:40:cf:7d:42:24:a5:09:fd:33:cb:99:88:7b:ee:23:e4:07:
3c:32:29:07:72:50:e4:99:14:bc:f4:ee:dd:92:07:0c:d6:26:
7e:cc:ca:7e:9f:1e:d5:3c:f0:ac:db:a9:b4:02:6c:54:1c:aa:
94:ea:fb:93:56:44:70:c6:8f:05:4a:26:28:f5:49:be:91:09:
0f:ad:23:64:77:8e:ab:0f:5b:e6:ea:6f:d5:d0:37:f5:7e:78:
9f:5b:bd:02:6c:35:cb:18:dd:48:3c:8a:20:23:d5:e5:c6:98:
fb:7b:e7:5f:f6:17:33:63:84:61:fa:a3:81:f7:9d:e2:2c:2d:
77:09:d2:b8:00:3f:2a:4e:09:00:39:fc:a5:6b:fb:1b:46:d0:
78:fd:4a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:02:43 2025 by rpki-client