Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/GZxYWEz3YJUJfEizMiWYzTQPXts.roa
File: GZxYWEz3YJUJfEizMiWYzTQPXts.roa (raw, json)
Hash identifier: RlTK3kER2BL1g0qT/qbVDpnfKasU2V4t/6GH0P0tDDk=
Subject key identifier: 19:9C:58:58:4C:F7:60:95:09:7C:48:B3:32:25:98:CD:34:0F:5E:DB
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 01829708F1348C2ECB05AA363336AC95EDA7
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/GZxYWEz3YJUJfEizMiWYzTQPXts.roa
Signing time: Sat 13 Aug 2022 11:48:41 +0000
ROA not before: Sat 13 Aug 2022 11:48:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47285
IP address blocks: 185.105.236.0/24 maxlen: 24
185.105.238.0/24 maxlen: 24
2a12:2600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:97:08:f1:34:8c:2e:cb:05:aa:36:33:36:ac:95:ed:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Aug 13 11:48:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=199c58584cf76095097c48b3322598cd340f5edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:96:0b:5a:63:d0:39:5d:70:ba:6b:45:55:eb:
39:0c:2f:7a:e4:ff:7a:5c:69:2e:db:a8:0a:29:92:
9d:6c:21:57:4a:18:21:f3:7e:be:46:7e:7c:b7:8b:
1f:ca:17:bc:9f:80:a9:79:b9:78:b3:4e:6d:b7:c2:
46:8c:b0:99:6b:74:ae:e5:80:b5:55:f8:6e:f3:d7:
a2:9f:b3:b4:50:a6:dd:80:d1:cd:0b:b9:72:23:1d:
24:12:d9:6e:4f:11:39:b6:95:2a:34:92:9c:01:40:
9f:74:5a:09:e2:84:78:f6:2c:35:1b:1b:da:70:bd:
18:88:8a:a7:cb:0d:0e:95:17:50:1d:5a:32:19:46:
c8:b5:f7:25:09:63:37:79:ef:ce:fc:65:ca:18:f0:
07:bb:4b:72:7c:82:32:0e:0b:3d:5b:3f:5a:6c:ac:
24:0c:3a:74:2b:70:e5:d0:7a:08:2c:98:86:cf:16:
5e:ab:d3:48:2c:f0:b5:b1:ee:53:ed:b2:38:11:e9:
25:04:8f:07:68:14:0c:31:fc:80:e4:2b:52:d8:09:
85:a3:a1:ed:ff:52:28:02:e9:a3:15:01:95:d7:0e:
7c:64:7f:cc:41:8d:56:f7:94:0a:48:76:9b:bb:cb:
19:ca:94:6c:a8:f0:b2:7f:94:ec:96:9c:bd:82:2d:
c3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9C:58:58:4C:F7:60:95:09:7C:48:B3:32:25:98:CD:34:0F:5E:DB
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/GZxYWEz3YJUJfEizMiWYzTQPXts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.236.0/24
185.105.238.0/24
IPv6:
2a12:2600::/29
Signature Algorithm: sha256WithRSAEncryption
36:0a:e8:30:74:dd:0e:1d:28:7e:bc:b6:47:cc:86:fc:a3:dd:
6e:1f:13:5c:ec:8f:ac:f5:bf:f8:1f:02:72:d9:81:97:ce:b1:
85:a5:43:22:ce:64:eb:f2:c3:da:1f:fb:74:e5:88:dc:90:06:
a7:95:36:de:c9:63:7d:74:d5:4c:b8:18:6c:10:04:ee:85:00:
2a:de:96:01:b9:20:5b:9f:3c:c6:46:7c:2f:8d:c5:89:64:49:
85:d6:43:f9:61:b3:d9:2c:5e:1a:8a:1f:03:a5:55:6a:8a:b0:
27:cd:c4:4c:43:4f:82:19:33:30:ad:0b:7a:34:2e:dd:c9:f5:
72:e7:4c:cf:2f:9e:53:1b:6c:43:ba:16:f7:87:df:d0:34:09:
7e:4e:5a:ae:b6:24:01:2b:82:8a:32:1f:8e:34:e8:6d:e5:19:
ea:40:9e:ce:c1:44:34:9e:d8:1b:c3:d1:a6:c5:42:dd:81:76:
ad:1f:3d:71:88:12:da:7d:71:a4:18:00:7a:6c:17:07:ee:eb:
74:0a:7b:37:01:6d:dd:31:ff:9b:65:17:31:c1:40:ba:e3:9f:
88:df:ea:52:e9:ab:18:52:ee:07:c5:e3:8e:e2:3e:4d:27:ed:
e7:cb:19:e8:cb:a9:f0:95:6b:b8:d7:3b:62:cd:4c:d1:29:df:
d7:54:97:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org