Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/20dd04-abec-44c3-95eb-5e37d5587be5/1/gPQ0k1IDoSjLuO6ZjejfE-GWFbs.roa
File: gPQ0k1IDoSjLuO6ZjejfE-GWFbs.roa (raw, json)
Hash identifier: 9Asg0n/MClKl6mHr3jfWWSODkVGmvqz+NWJxoWCLZFU=
Subject key identifier: 80:F4:34:93:52:03:A1:28:CB:B8:EE:99:8D:E8:DF:13:E1:96:15:BB
Certificate issuer: /CN=58bb6e2938a2251dc4384daf65efa520dc1a5882
Certificate serial: 091E28CF
Authority key identifier: 58:BB:6E:29:38:A2:25:1D:C4:38:4D:AF:65:EF:A5:20:DC:1A:58:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLtuKTiiJR3EOE2vZe-lINwaWII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/20dd04-abec-44c3-95eb-5e37d5587be5/1/gPQ0k1IDoSjLuO6ZjejfE-GWFbs.roa
Signing time: Sat 01 Jan 2022 08:55:15 +0000
ROA not before: Sat 01 Jan 2022 08:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 137.204.0.0/16 maxlen: 16
130.136.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152971471 (0x91e28cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bb6e2938a2251dc4384daf65efa520dc1a5882
Validity
Not Before: Jan 1 08:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80f434935203a128cbb8ee998de8df13e19615bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:58:3f:03:2b:c6:ab:15:19:5d:fb:e4:1a:4c:
50:ed:21:74:0a:1c:ec:6e:65:10:df:15:88:c8:6f:
7e:c0:c6:ac:24:c6:c7:4c:bf:36:a5:5b:be:52:fd:
56:46:cc:75:bb:7b:89:79:3e:89:db:92:e4:23:65:
de:1e:10:c4:eb:86:f9:98:bc:2e:9e:23:3c:5a:04:
64:66:cb:a2:eb:d8:bc:e0:39:50:03:93:06:79:ac:
00:6e:37:5f:c3:69:0c:0c:3a:6c:ee:03:10:90:f1:
66:26:7b:79:ce:58:71:10:0c:ff:df:d2:09:c0:f4:
67:e0:08:bb:14:38:d7:d5:08:94:05:49:55:99:d5:
1a:12:32:55:4b:b1:92:41:b3:8e:ac:94:ef:10:2b:
a2:23:0e:03:db:39:20:04:9e:8f:6c:1e:7e:1c:b2:
3a:a1:d2:bd:51:a7:c9:fd:d7:2a:c7:9f:6f:87:b7:
c0:d7:ef:1f:42:4f:0c:de:04:0a:f8:db:bd:de:3b:
f5:25:42:c6:36:f3:b5:30:76:6f:c4:45:13:e3:29:
82:3c:30:1a:77:62:59:f6:0c:2b:98:9b:14:28:04:
e0:25:4f:d4:cf:6d:f2:62:f0:f0:c7:9d:ac:22:8e:
36:64:5e:bc:1c:84:ea:ff:b1:98:82:46:30:d5:e4:
9e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F4:34:93:52:03:A1:28:CB:B8:EE:99:8D:E8:DF:13:E1:96:15:BB
X509v3 Authority Key Identifier:
keyid:58:BB:6E:29:38:A2:25:1D:C4:38:4D:AF:65:EF:A5:20:DC:1A:58:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLtuKTiiJR3EOE2vZe-lINwaWII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/20dd04-abec-44c3-95eb-5e37d5587be5/1/gPQ0k1IDoSjLuO6ZjejfE-GWFbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/20dd04-abec-44c3-95eb-5e37d5587be5/1/WLtuKTiiJR3EOE2vZe-lINwaWII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.136.0.0/16
137.204.0.0/16
Signature Algorithm: sha256WithRSAEncryption
65:66:44:ef:44:63:1a:4a:e3:12:45:30:23:23:a9:50:11:88:
33:8b:9c:f8:0b:16:37:9d:25:df:61:84:ea:1b:d6:8b:73:d0:
25:a7:6c:b9:a2:6c:6b:8b:19:cf:ae:92:b6:4d:15:8d:03:a4:
87:35:e6:4f:45:07:14:8d:c5:72:43:85:57:a0:a9:0c:10:93:
50:f9:6a:f2:6a:82:ee:2d:86:de:ed:f6:ba:81:94:d2:94:b2:
c6:ba:d5:ad:b4:97:ee:93:e1:2b:02:e2:41:8f:e2:b3:be:f0:
c6:af:47:8c:a6:85:d3:6a:a9:58:32:cd:47:c5:db:41:01:f0:
c0:ce:09:0f:75:b3:b6:b4:d9:78:f2:8b:6d:50:80:f5:a8:97:
5c:d1:62:6f:87:be:e2:d7:52:65:0c:05:4f:11:f0:90:43:3a:
43:af:b1:2d:6f:c8:a1:98:26:81:68:16:0f:b5:48:8b:ef:7d:
64:83:a7:9a:04:84:6b:0b:6e:86:e2:99:a2:b6:b1:b6:cd:3e:
ff:31:c1:72:6a:34:09:fe:78:11:6c:26:ae:6d:b4:ec:ec:30:
58:c6:39:bc:83:60:07:de:5e:9e:09:fc:32:12:31:7b:c5:64:
81:65:ad:d2:c5:ad:d3:29:bd:52:68:15:a4:f9:74:fa:8f:ee:
d5:7a:e9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:31 2024 by rpki-client on console-fra.rpki-client.org