Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/goxB-J-ezd3Uxx_BLcWfNT1wtD8.roa
File: goxB-J-ezd3Uxx_BLcWfNT1wtD8.roa (raw, json)
Hash identifier: bdyfTvE/UHO0WCEyUkRxxcsgxvpGwTo2ejutDXMmdv0=
Subject key identifier: 82:8C:41:F8:9F:9E:CD:DD:D4:C7:1F:C1:2D:C5:9F:35:3D:70:B4:3F
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 3803A065
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/goxB-J-ezd3Uxx_BLcWfNT1wtD8.roa
Signing time: Sat 01 Jan 2022 11:02:19 +0000
ROA not before: Sat 01 Jan 2022 11:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31486
IP address blocks: 185.96.170.0/24 maxlen: 24
2a06:9140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939761765 (0x3803a065)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jan 1 11:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=828c41f89f9ecdddd4c71fc12dc59f353d70b43f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:52:d9:35:d2:03:d0:73:2f:9d:8b:50:ef:d5:
ef:f4:a6:47:25:a5:1a:8f:52:33:85:c7:76:3d:b0:
2b:a7:f6:ed:8c:01:ac:7e:a3:7a:43:7e:93:02:69:
7e:f6:ac:d8:e7:2a:70:c3:45:e7:28:3b:e0:35:cf:
69:91:00:2b:23:36:96:67:47:27:9c:c3:ae:2a:0e:
59:50:d1:c9:a1:83:58:d7:68:45:97:0a:2b:db:e2:
5a:f8:f4:62:3f:31:2f:f4:46:98:88:70:e6:3a:1a:
27:9d:4b:d6:a5:6f:6c:b8:6c:ed:83:a4:80:8f:3c:
f4:e1:c3:44:ef:c3:e9:f9:8d:5c:12:d7:d2:53:ee:
16:ec:da:b9:d9:0b:54:ef:08:26:f7:df:05:32:52:
d5:af:f8:9f:be:60:fd:44:4a:24:e9:4e:86:65:a4:
72:0a:57:69:18:41:30:3e:3c:d7:f3:25:bd:a4:05:
d7:24:71:ab:82:86:4e:18:88:6d:b4:36:34:30:7c:
3e:9f:62:6d:49:81:9e:81:8c:fb:f5:d1:be:63:85:
0b:30:7d:0a:c0:ef:f8:d6:f6:98:8b:10:fc:e5:48:
a4:eb:91:09:7c:87:4a:a3:5a:b9:3d:57:8d:fe:fa:
bf:f3:1d:2a:34:8b:f8:dd:ca:f1:e9:99:15:5e:44:
35:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8C:41:F8:9F:9E:CD:DD:D4:C7:1F:C1:2D:C5:9F:35:3D:70:B4:3F
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/goxB-J-ezd3Uxx_BLcWfNT1wtD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.170.0/24
IPv6:
2a06:9140::/29
Signature Algorithm: sha256WithRSAEncryption
b2:6a:12:b2:6f:6c:69:e8:3a:49:4c:96:cd:33:a1:94:c5:ee:
33:8c:10:ed:ab:0e:95:0f:b5:49:be:8e:d4:5a:49:ae:5a:f4:
30:18:d0:1c:07:f4:59:b8:9c:bf:ea:a4:bc:d9:72:cf:7f:88:
48:37:44:e4:75:b7:f4:1f:87:a8:56:19:55:1d:08:81:8b:db:
0a:06:12:7b:96:20:b5:f2:31:1b:e6:c8:a9:0b:44:65:b5:f9:
16:67:9c:db:0d:94:d5:4e:6e:30:7a:4a:01:a2:15:3f:db:00:
82:94:69:5b:78:eb:b9:71:fb:af:22:90:46:49:d3:84:b3:cf:
53:77:3a:12:f7:e6:f0:75:6f:3f:9d:24:6b:ce:20:9c:09:0b:
6a:e7:08:0c:99:e7:4e:98:e8:b4:12:16:63:6a:c0:ff:96:43:
9a:26:aa:34:08:58:46:84:1f:b0:f9:99:24:d0:ec:71:58:c4:
ee:78:2a:19:10:6a:fa:16:9f:53:9a:0a:d7:6a:28:5d:2f:3a:
76:8f:15:d7:7b:72:f3:5d:11:ad:a9:cf:cd:ec:3a:ae:e7:8d:
ad:81:26:03:70:7f:b8:f5:47:4e:12:9f:5c:a6:6f:b0:83:bc:
b0:6d:ce:80:de:95:8a:2a:95:d3:24:08:c4:2c:70:85:1d:e3:
79:60:c6:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:44 2023 by rpki-client on console.sobornost.net