Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/1-GNsJaqKCyXDtGs5420QZcLNcCI.roa
File: 1-GNsJaqKCyXDtGs5420QZcLNcCI.roa (raw, json)
Hash identifier: lvmklfDb4iIPZdvT5xnI+Wn+lm13k5oB+w3ZiXBkc9Y=
Subject key identifier: F8:63:6C:25:AA:8A:0B:25:C3:B4:6B:39:E3:6D:10:65:C2:CD:70:22
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0AD19590
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/1-GNsJaqKCyXDtGs5420QZcLNcCI.roa
Signing time: Tue 05 Apr 2022 21:38:02 +0000
ROA not before: Tue 05 Apr 2022 21:38:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 85.133.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181507472 (0xad19590)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Apr 5 21:38:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8636c25aa8a0b25c3b46b39e36d1065c2cd7022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5b:46:b3:0b:ef:c8:74:be:30:30:a4:83:e5:
e4:74:87:52:cd:20:ba:b0:02:ad:a4:68:ef:22:f6:
22:b6:f2:15:8a:cc:13:45:6b:91:e3:da:f7:4f:19:
93:0b:f6:81:42:6c:3d:65:f4:1b:e0:1d:21:5f:e8:
f0:39:73:52:dc:32:45:35:be:40:9d:4c:52:15:73:
e7:41:4d:8e:6f:fd:2c:29:93:0f:0f:01:a4:b1:3f:
d7:80:97:e8:27:7d:41:99:b4:80:ca:86:f7:da:a8:
af:f0:88:9c:54:d3:20:57:fa:5e:1d:87:7c:a6:e3:
f5:16:c9:27:3b:61:d7:79:63:d3:30:f4:50:61:fd:
0e:f0:e2:95:d3:de:54:8a:b1:d6:b4:7a:26:d3:2d:
fb:0b:c7:c0:ed:7b:91:74:1e:fe:37:59:c8:d4:b8:
01:bc:95:34:b5:4f:30:34:7a:a6:40:95:c2:51:26:
ae:ba:83:8b:28:0b:68:2d:4d:20:9f:e3:67:a9:ce:
71:57:b9:42:41:1c:cb:f0:08:1d:59:3e:b8:f9:52:
fc:52:2e:dd:3c:9b:6c:80:3a:e0:6e:62:ab:c0:08:
47:76:7f:b5:d6:27:26:42:2e:46:8e:30:73:57:17:
62:c9:07:3c:a2:d9:a3:e3:c6:4f:fc:97:d7:e8:80:
eb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:63:6C:25:AA:8A:0B:25:C3:B4:6B:39:E3:6D:10:65:C2:CD:70:22
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/1-GNsJaqKCyXDtGs5420QZcLNcCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.169.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:9d:37:c1:ae:f7:b3:ab:22:7e:a5:e5:9c:71:79:f7:b6:b4:
36:cd:4c:5d:56:4e:65:b1:18:a9:07:07:90:13:5d:4b:bb:0e:
5f:07:69:ec:a2:c3:e4:79:bf:af:17:d9:0e:c7:db:9b:9f:3f:
1a:49:67:8c:d1:89:c5:8b:56:32:97:62:5b:c6:89:14:c1:74:
fc:eb:3b:41:e2:80:d4:4f:d0:32:35:7e:20:61:62:19:87:ef:
be:b9:98:cc:e4:2b:99:06:e8:94:64:ca:34:2b:d3:62:6e:2a:
87:29:a3:f6:38:34:74:d2:67:ff:1d:63:84:02:4a:45:c1:9e:
36:44:c5:c1:a4:01:55:95:b7:91:63:48:89:c5:be:6b:c9:80:
e6:fe:5e:51:3c:80:9d:fb:69:f6:16:59:d8:77:4c:37:ba:21:
11:39:e9:f7:5c:e5:1b:fa:43:f6:a0:4d:bc:7c:06:79:07:70:
dc:f1:bb:21:ba:23:01:75:58:99:18:e7:f9:7e:6b:6a:69:6e:
a3:1b:78:53:fd:16:24:04:45:6e:cf:8b:05:40:cb:a9:dc:77:
2c:7b:41:20:ea:26:b2:69:b7:09:11:4a:22:55:4e:e8:4e:c6:
4e:b3:1c:4f:d0:9c:19:6e:c9:47:99:e2:16:c3:63:23:cd:02:
89:8e:9b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:12 2024 by rpki-client on console-fra.rpki-client.org