Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/guixE-qW3SoPOqZ2n3dWsXzn0BI.roa
File: guixE-qW3SoPOqZ2n3dWsXzn0BI.roa (raw, json)
Hash identifier: jModMM2RGqt1VPa9bvxj8j537Tv+jmoNC3IRGMrgHqI=
Subject key identifier: 82:E8:B1:13:EA:96:DD:2A:0F:3A:A6:76:9F:77:56:B1:7C:E7:D0:12
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 03DE6F55
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/guixE-qW3SoPOqZ2n3dWsXzn0BI.roa
Signing time: Sat 01 Jan 2022 01:54:05 +0000
ROA not before: Sat 01 Jan 2022 01:54:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6903
IP address blocks: 213.189.192.0/24 maxlen: 24
213.189.196.0/23 maxlen: 23
213.189.198.0/24 maxlen: 24
213.189.200.0/24 maxlen: 24
213.189.207.0/24 maxlen: 24
213.189.208.0/23 maxlen: 23
213.189.211.0/24 maxlen: 24
213.189.212.0/23 maxlen: 23
213.189.214.0/24 maxlen: 24
62.113.120.0/21 maxlen: 21
195.2.82.0/23 maxlen: 23
62.113.124.0/22 maxlen: 22
195.2.87.0/24 maxlen: 24
195.2.88.0/22 maxlen: 22
195.2.94.0/23 maxlen: 23
62.113.80.0/22 maxlen: 22
62.113.86.0/24 maxlen: 24
62.113.89.0/24 maxlen: 24
62.113.90.0/24 maxlen: 24
62.113.95.0/24 maxlen: 24
195.2.64.0/23 maxlen: 23
195.2.68.0/23 maxlen: 23
195.2.72.0/24 maxlen: 24
195.2.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64909141 (0x3de6f55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Jan 1 01:54:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82e8b113ea96dd2a0f3aa6769f7756b17ce7d012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f3:5e:3f:99:fa:fc:0c:dd:35:51:fd:1a:8e:
20:71:7b:4b:78:7b:fd:6a:77:33:0e:b1:31:b6:b4:
39:39:3d:c2:33:bc:d9:18:8f:be:fd:be:74:b7:44:
e4:0b:ff:0a:0e:39:83:6b:f0:de:ed:c8:af:95:98:
87:7e:79:b9:12:cc:ea:25:b6:1f:62:4d:cf:a6:b9:
f1:45:9c:87:43:de:dd:da:39:90:cc:ca:0a:74:ff:
e9:a0:77:e1:06:aa:c7:5b:f1:fe:d7:b2:2c:2a:28:
54:f5:10:ba:89:54:c8:61:40:01:14:95:9d:4a:bd:
93:4b:78:ee:7b:06:24:f5:32:ab:eb:f8:c5:ea:30:
5c:c3:9d:64:55:fa:b7:11:1e:1f:bc:e1:8c:8b:fd:
11:10:fa:d4:ca:0f:a1:60:75:b4:a8:b5:ff:36:f8:
72:5e:f7:5a:c8:08:07:29:1d:5e:c2:f6:d0:6c:09:
87:92:c5:8b:7d:57:0c:26:89:2b:9b:09:7a:f7:ea:
42:0d:cb:da:85:91:11:4e:af:1f:47:6f:e0:34:fb:
f6:48:67:d3:fc:e9:52:2c:b1:7f:04:88:fb:5a:18:
a0:4e:3b:89:26:31:6e:32:21:7e:29:ba:fd:59:f5:
55:38:99:09:d1:ac:8c:de:af:d8:d8:c8:ed:83:3e:
ef:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E8:B1:13:EA:96:DD:2A:0F:3A:A6:76:9F:77:56:B1:7C:E7:D0:12
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/guixE-qW3SoPOqZ2n3dWsXzn0BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.113.80.0/22
62.113.86.0/24
62.113.89.0-62.113.90.255
62.113.95.0/24
62.113.120.0/21
195.2.64.0/23
195.2.68.0/23
195.2.72.0/24
195.2.77.0/24
195.2.82.0/23
195.2.87.0-195.2.91.255
195.2.94.0/23
213.189.192.0/24
213.189.196.0-213.189.198.255
213.189.200.0/24
213.189.207.0-213.189.209.255
213.189.211.0-213.189.214.255
Signature Algorithm: sha256WithRSAEncryption
90:9b:25:6c:c9:36:6f:f6:0e:86:6b:f6:f9:c0:85:30:15:4a:
4d:50:f3:ba:51:21:a2:8c:de:fe:ea:86:e0:0e:48:8b:f0:1e:
ab:3a:8a:f5:b1:80:0e:66:7f:1c:a9:02:43:b6:05:5e:16:49:
c5:96:a7:e9:d4:10:b8:17:8e:8d:76:d4:90:ee:fc:e5:16:86:
1f:5b:1e:16:a3:d2:05:08:b2:80:19:fe:8f:ba:b5:48:64:3a:
ba:07:27:52:4e:ed:64:fa:c0:9c:0d:c2:2f:43:df:42:77:b9:
6e:1b:3b:09:33:fd:70:ed:d1:98:cf:56:47:a9:fc:a3:0d:3c:
bb:22:28:d4:b1:61:09:e8:a9:03:6b:81:b8:e8:d7:c1:f0:9d:
60:32:89:c4:7b:d3:b2:41:65:b6:a6:ac:85:39:95:5d:1f:c9:
59:34:7c:30:65:4e:32:a1:a9:e4:83:79:7f:8d:29:87:b7:ba:
67:2b:75:88:21:cb:f1:4a:33:02:cd:bc:68:33:38:80:b4:a3:
f1:a7:94:e2:1b:7b:3c:f7:2e:a2:92:83:28:81:8a:db:b4:dd:
56:ab:12:83:5b:92:0c:01:bf:ae:b4:22:1e:6d:fb:d7:c9:74:
8e:2e:3e:8c:f8:cb:23:f3:80:0b:32:96:51:5d:ec:8a:b3:75:
a5:1f:2b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:05 2024 by rpki-client on console-fra.rpki-client.org