Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1-w8C25M8_gCOlJhE7_ZgjWD-EtM.roa
File: 1-w8C25M8_gCOlJhE7_ZgjWD-EtM.roa (raw, json)
Hash identifier: G5pMjR1THFQ4XKxtnmsZ+735D5jhxfWY0kdpLrUdu5A=
Subject key identifier: FB:0F:02:DB:93:3C:FE:00:8E:94:98:44:EF:F6:60:8D:60:FE:12:D3
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 347B4E2D
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1-w8C25M8_gCOlJhE7_ZgjWD-EtM.roa
Signing time: Wed 02 Mar 2022 14:13:58 +0000
ROA not before: Wed 02 Mar 2022 14:13:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48811
IP address blocks: 193.255.70.0/23 maxlen: 23
193.255.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 880496173 (0x347b4e2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Mar 2 14:13:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb0f02db933cfe008e949844eff6608d60fe12d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:18:c5:67:b1:0b:81:57:54:28:26:a2:bf:ab:
3e:06:53:53:f6:6a:89:9b:e2:cc:6d:f8:09:cf:6f:
9d:6a:0e:b9:1c:a2:52:60:63:f3:60:2c:58:d1:c3:
fa:d1:56:e2:60:ed:5d:e6:d7:5d:98:82:1b:08:61:
5a:ec:96:0f:0a:0a:4a:89:63:26:85:78:bf:a2:15:
b0:96:58:ff:ac:7d:c9:9d:75:1a:d0:37:69:d6:1e:
99:6e:6e:8d:37:7b:63:45:3d:e7:b8:e4:06:c3:38:
41:80:04:00:6a:dd:c0:93:69:ff:1d:23:8d:da:5f:
e5:69:f6:dd:35:87:6c:3b:0b:bd:26:1a:12:ea:fd:
6a:a8:26:93:8f:3d:13:85:0d:ea:1e:02:e8:2d:f4:
d8:71:a1:5a:8b:b9:13:72:5f:8e:76:cc:96:4b:2e:
6d:06:77:56:0f:3f:ea:c2:3d:30:90:a3:eb:61:b2:
de:6d:2b:59:ca:ff:54:07:2d:4f:79:82:6c:0d:f3:
da:ec:a4:67:b0:f3:ca:57:ea:94:67:bc:5a:a4:86:
03:e8:0e:4e:27:64:ed:01:6a:4e:53:36:d5:21:b7:
6e:22:77:df:75:b2:ba:d8:d7:5f:46:cf:ac:47:1c:
6f:62:20:5c:8f:08:8f:b4:d0:9d:16:76:bc:e4:c6:
07:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:0F:02:DB:93:3C:FE:00:8E:94:98:44:EF:F6:60:8D:60:FE:12:D3
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1-w8C25M8_gCOlJhE7_ZgjWD-EtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.255.70.0-193.255.72.255
Signature Algorithm: sha256WithRSAEncryption
2b:ee:67:ef:23:2d:79:81:6a:99:ed:0f:62:07:39:af:47:5d:
b5:02:39:e6:d0:07:fc:85:20:60:0f:8f:9a:d1:44:04:3b:db:
da:75:67:c8:01:45:b3:b9:ba:4d:cf:6d:92:53:76:34:cd:bd:
56:90:d6:06:3d:c6:fb:5e:23:b6:94:30:dd:3c:65:94:10:f9:
c5:f6:b8:b4:9e:83:27:bd:c5:20:f4:b6:49:0a:df:c7:9f:d5:
67:fb:a5:e1:9c:46:df:cd:82:06:38:bd:45:ee:48:c2:08:56:
97:fe:a3:b7:3b:81:05:10:63:7a:27:5e:d3:19:4a:23:7f:c9:
3e:8e:22:2e:b8:bc:17:cc:42:db:ee:67:cf:36:fe:d7:78:99:
ef:ad:cf:3a:e5:09:99:b6:bc:38:f2:1f:a8:59:5f:9c:8a:9f:
81:80:88:50:dd:6b:59:52:80:9d:f6:95:cc:47:d8:ad:54:03:
dc:7a:e1:0d:7a:57:9f:6d:a4:15:b9:38:f9:54:86:b5:2a:56:
d1:55:fa:1f:79:f0:5a:1d:39:cd:53:21:18:26:1c:7b:6c:bc:
ce:e0:4e:81:68:88:6f:4c:68:fd:4b:db:c5:cf:84:15:59:d7:
36:66:3b:8f:57:69:2b:8a:23:42:18:40:42:4f:7c:4e:b3:60:
0f:85:7c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org