Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f6b1b9-9ed6-4af2-a73b-f8874a6bad38/1/GMVdIno367yYspjyf-9RnAg1SVU.roa
File: GMVdIno367yYspjyf-9RnAg1SVU.roa (raw, json)
Hash identifier: MZ8RCSv8K4vFsa2qiGVQSawee1X4aTvpDTG3B55Psb4=
Subject key identifier: 18:C5:5D:22:7A:37:EB:BC:98:B2:98:F2:7F:EF:51:9C:08:35:49:55
Certificate issuer: /CN=87f1cac0de8f66a7076f2810f3f3518aa70643ba
Certificate serial: 015D6E0B
Authority key identifier: 87:F1:CA:C0:DE:8F:66:A7:07:6F:28:10:F3:F3:51:8A:A7:06:43:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_HKwN6PZqcHbygQ8_NRiqcGQ7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f6b1b9-9ed6-4af2-a73b-f8874a6bad38/1/GMVdIno367yYspjyf-9RnAg1SVU.roa
Signing time: Sat 01 Jan 2022 11:55:52 +0000
ROA not before: Sat 01 Jan 2022 11:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210964
IP address blocks: 194.150.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22900235 (0x15d6e0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87f1cac0de8f66a7076f2810f3f3518aa70643ba
Validity
Not Before: Jan 1 11:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18c55d227a37ebbc98b298f27fef519c08354955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:55:49:e9:13:fa:5a:9e:dc:3d:e4:aa:48:bf:
04:0c:9f:e1:66:ee:fa:cc:e8:26:83:31:80:75:17:
7c:19:36:56:85:aa:18:49:61:b9:c9:de:21:1d:0f:
cd:55:3e:28:ee:98:76:5f:0e:8f:b8:72:14:eb:0b:
78:91:85:24:76:b3:15:fd:5a:6e:2d:9e:7d:bf:10:
63:a0:e7:6e:0c:51:fe:c2:96:16:6a:c5:81:32:55:
be:5c:ae:7b:fb:4c:73:ca:9f:59:b7:6e:09:4b:86:
27:a9:24:e8:80:37:bb:3d:5a:23:3c:1f:0e:dd:8d:
ef:41:82:df:38:09:f3:10:10:26:bf:73:71:df:18:
51:a7:18:65:2c:82:27:fe:b4:d6:d4:15:12:7f:37:
7c:4c:ef:37:6a:7f:87:3c:2c:17:39:27:af:ff:b2:
0d:be:e8:cd:8e:e4:fc:f4:22:ce:6c:6f:1b:39:3b:
61:98:12:19:1e:15:f9:ec:d2:0a:da:ef:fb:f7:d5:
3c:92:6a:82:36:db:ce:03:70:40:61:7b:66:c1:03:
f7:e3:af:aa:a9:2d:7d:a7:d7:35:65:63:c8:0b:b2:
ad:0a:18:71:60:5f:25:4a:47:ce:5c:42:8d:4e:eb:
2b:d8:86:d5:c5:5f:da:59:c1:1d:93:36:dc:6b:f7:
09:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C5:5D:22:7A:37:EB:BC:98:B2:98:F2:7F:EF:51:9C:08:35:49:55
X509v3 Authority Key Identifier:
keyid:87:F1:CA:C0:DE:8F:66:A7:07:6F:28:10:F3:F3:51:8A:A7:06:43:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_HKwN6PZqcHbygQ8_NRiqcGQ7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f6b1b9-9ed6-4af2-a73b-f8874a6bad38/1/GMVdIno367yYspjyf-9RnAg1SVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f6b1b9-9ed6-4af2-a73b-f8874a6bad38/1/h_HKwN6PZqcHbygQ8_NRiqcGQ7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.78.0/24
Signature Algorithm: sha256WithRSAEncryption
12:36:28:0f:ef:96:c7:4c:30:e9:b4:d7:26:67:e8:82:16:c9:
bd:86:d1:37:65:cf:b2:8a:8e:c0:41:f8:59:7d:2b:58:e5:34:
83:37:8e:d0:db:32:f2:cc:6d:4c:48:9a:ab:7f:eb:68:02:9e:
0a:21:2d:c3:54:84:93:34:09:16:b6:5b:58:0d:88:e7:71:5c:
e7:18:1e:bc:23:66:43:ef:de:68:32:09:52:a3:1e:b5:a8:5e:
db:53:a2:85:7a:95:57:4f:f9:03:df:6e:0f:79:e2:7a:f0:1b:
4f:58:f0:86:f9:c1:99:5c:ec:00:bf:a4:32:aa:a2:0f:63:e8:
0e:8e:ea:db:f1:84:36:41:52:3f:e8:0b:c5:a7:28:d5:92:bd:
c6:ef:5f:c5:0d:9c:40:75:96:a3:b7:f1:ad:0d:56:aa:72:fc:
c2:31:28:b7:69:b9:4f:96:85:0f:7c:17:91:10:dc:18:5d:6a:
a5:12:bd:ec:df:e5:16:4b:25:0e:a8:d5:4e:75:ee:8a:c3:92:
19:5e:4e:d1:90:67:d4:67:25:f3:3c:64:b4:96:6e:44:74:6e:
3f:cf:2e:74:01:ae:69:0d:0d:82:26:23:72:79:ec:b2:df:f6:
b1:0c:60:d2:7e:9a:b8:a0:44:6e:0b:e1:89:13:0c:93:09:7e:
42:ed:db:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:00 2023 by rpki-client on console.sobornost.net