Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/gRM24_NijihKGxGmedEGC2dhNqs.roa
File: gRM24_NijihKGxGmedEGC2dhNqs.roa (raw, json)
Hash identifier: XEFGy9Yg7pM2j8/LZKIE27uysEnRjxKRY15N4cKw+U4=
Subject key identifier: 81:13:36:E3:F3:62:8E:28:4A:1B:11:A6:79:D1:06:0B:67:61:36:AB
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 33FCD79C
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/gRM24_NijihKGxGmedEGC2dhNqs.roa
Signing time: Sat 01 Jan 2022 13:59:50 +0000
ROA not before: Sat 01 Jan 2022 13:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50327
IP address blocks: 185.60.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 872208284 (0x33fcd79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Jan 1 13:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=811336e3f3628e284a1b11a679d1060b676136ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d2:a9:9f:cc:36:32:3c:5d:16:49:e3:fd:e6:
17:cb:f0:3b:2c:64:91:80:b2:6a:79:79:c2:20:8d:
9f:12:4f:e3:31:ec:53:72:ea:de:a1:2e:5f:b3:b8:
a0:d7:60:17:ad:8c:04:d2:0f:24:5c:d4:fd:59:db:
fc:ec:b2:d9:91:fc:9b:9d:ba:23:b3:93:ab:23:c1:
93:bf:23:40:99:51:8f:f3:b6:6c:80:49:74:b0:9c:
ff:2a:84:70:de:c7:71:33:7c:19:1e:e1:c2:2b:df:
c4:9d:01:f8:9c:b7:47:07:ae:59:7c:be:a8:39:39:
d1:7e:54:cb:d0:32:67:d4:61:2f:0f:75:e4:06:84:
c3:07:c5:91:17:0f:ab:db:2a:5a:75:af:7c:83:11:
bf:60:c4:8a:e0:74:a2:c7:86:2e:68:7f:84:7d:27:
6e:7c:50:fd:d9:c9:fe:65:6a:00:3f:ad:85:0b:31:
cd:90:a9:eb:32:17:61:e2:7b:5e:4a:89:32:c3:1d:
fe:38:bb:5d:80:cb:f1:3b:9e:ce:65:8f:fb:cd:f4:
cc:ba:4d:48:6f:98:01:32:9c:7c:e4:12:78:9a:6d:
53:e6:fc:c2:2b:af:d1:a5:89:d1:b9:45:52:e4:62:
e8:9f:ef:3e:6b:15:ba:a5:24:46:e4:37:72:e3:b7:
b6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:13:36:E3:F3:62:8E:28:4A:1B:11:A6:79:D1:06:0B:67:61:36:AB
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/gRM24_NijihKGxGmedEGC2dhNqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.52.0/24
Signature Algorithm: sha256WithRSAEncryption
31:26:dd:7c:d6:fc:28:a3:0b:32:40:9a:1a:0a:a1:da:d7:1b:
d5:6d:66:84:9d:fa:ab:c2:78:6d:32:e3:82:e7:9d:23:99:8b:
dd:f3:f1:ec:fb:51:df:1d:5a:4c:3a:08:c1:e8:74:fe:50:5a:
5a:fc:13:db:f1:37:70:78:61:4c:af:84:e1:f6:fe:a4:11:d9:
2c:c6:92:ca:c4:c9:f6:7c:86:f6:2c:13:b0:31:e1:d5:3c:33:
47:fe:4b:f2:e9:df:40:4f:66:97:b7:5d:89:63:3d:cc:b0:38:
00:9b:95:8f:be:7e:d1:3e:4c:3c:dc:b5:fa:26:75:82:5d:f7:
eb:d0:38:47:50:8c:b3:97:12:b2:8e:68:c9:30:f2:f0:15:3d:
79:dc:57:c8:45:ba:e5:29:ad:e6:7a:34:84:01:b9:cb:f0:b1:
9e:9b:6d:82:c5:fd:d0:9b:89:8f:2e:65:7f:d4:e0:ef:0c:93:
9a:3d:38:50:09:f2:9d:f5:c3:d7:5e:e8:72:12:d6:12:af:03:
1a:86:0f:73:37:71:c5:43:9f:04:af:1f:3e:01:3a:9a:1f:c0:
59:43:72:46:14:f2:7d:8d:d2:2b:4e:9d:86:77:d6:99:cb:7e:
ed:54:84:09:f9:0b:6c:3c:e9:2c:ce:34:46:c8:30:98:19:87:
ec:78:28:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:53 2023 by rpki-client on console-fra.rpki-client.org