Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/gSzmNF_LL42Wida5GG7Y8E42qlo.roa
File: gSzmNF_LL42Wida5GG7Y8E42qlo.roa (raw, json)
Hash identifier: +zxaYBEUgRv8tiFIb39HqOV1oqFlL0gDR59ZwLbKOKQ=
Subject key identifier: 81:2C:E6:34:5F:CB:2F:8D:96:89:D6:B9:18:6E:D8:F0:4E:36:AA:5A
Certificate issuer: /CN=e57731ea857b903aa40a8e5fd8d88446505b5233
Certificate serial: 078A64DE
Authority key identifier: E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/gSzmNF_LL42Wida5GG7Y8E42qlo.roa
Signing time: Sat 01 Jan 2022 06:54:19 +0000
ROA not before: Sat 01 Jan 2022 06:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7046
IP address blocks: 193.67.192.0/22 maxlen: 22
193.67.192.0/20 maxlen: 20
193.67.206.0/23 maxlen: 24
193.67.201.0/24 maxlen: 24
193.67.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126510302 (0x78a64de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e57731ea857b903aa40a8e5fd8d88446505b5233
Validity
Not Before: Jan 1 06:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=812ce6345fcb2f8d9689d6b9186ed8f04e36aa5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a7:24:ba:03:8c:d6:27:26:1f:dd:61:ef:26:
60:5d:57:93:fb:70:bf:b5:2a:66:3f:3e:bc:69:76:
96:42:94:b7:0e:c3:12:f9:08:6a:c4:a6:42:2e:19:
a8:f6:91:14:cd:9f:46:73:40:b6:56:b9:34:14:f7:
84:e6:27:01:fa:a4:ca:fd:be:93:1a:dc:2e:39:45:
c6:46:e1:61:6a:fd:6c:cf:42:23:1d:45:00:c2:10:
05:54:f5:44:2f:27:4c:cc:56:99:30:f7:b0:58:58:
e6:d7:d3:2a:3d:ed:e6:6d:5d:75:7d:94:5f:fa:b8:
3b:88:84:e9:20:2a:7d:21:c8:bb:73:af:52:7e:8a:
c2:e0:ca:85:45:bd:7e:09:dd:ee:59:5b:3d:28:c9:
9e:52:d9:e6:7f:a5:96:e3:b4:ab:d2:77:7a:82:1b:
36:d7:80:84:ad:b6:50:fb:cb:74:51:43:f6:87:92:
4d:6e:a6:60:04:9e:d8:79:29:b8:0d:a5:1d:6d:6e:
51:91:74:b6:2e:f2:e7:4e:3d:18:56:71:52:9f:d0:
f7:1d:99:f5:cd:58:1a:b9:5f:a4:bd:e3:8f:27:b2:
0d:7b:02:fc:5e:04:02:8a:de:14:f7:f4:af:51:f7:
63:19:b4:83:8d:26:8a:8d:dd:15:a3:6b:82:e9:a2:
84:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2C:E6:34:5F:CB:2F:8D:96:89:D6:B9:18:6E:D8:F0:4E:36:AA:5A
X509v3 Authority Key Identifier:
keyid:E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/gSzmNF_LL42Wida5GG7Y8E42qlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.67.192.0/20
Signature Algorithm: sha256WithRSAEncryption
78:df:12:d6:db:9f:ce:73:9e:fb:f2:76:a7:4d:d4:33:8b:b7:
0c:8d:1e:c4:af:a1:1b:ab:6b:71:d0:94:49:d9:27:9f:5a:b2:
93:1b:55:09:06:85:e9:12:b5:a8:9b:d0:ce:65:8d:27:43:5e:
75:43:9b:7a:4b:79:17:e0:fc:3d:93:17:8d:a6:86:39:2a:ed:
d4:4c:08:a3:c1:43:72:2d:18:f8:16:19:19:d3:fc:b7:b3:66:
ba:35:88:c3:84:41:db:af:b5:cd:70:3e:26:2f:d3:92:ba:2f:
73:ef:9f:8d:12:3c:2d:c8:c6:5a:d9:e1:5b:ab:76:4f:eb:40:
64:67:dc:93:b5:d2:63:57:6a:92:1a:0d:a0:e8:08:0a:0d:6d:
5d:9a:e8:20:cc:05:65:2e:a8:32:23:cd:12:59:88:5b:7a:37:
b0:a1:85:79:86:cc:04:d4:96:d4:ad:c2:5d:12:b2:46:2e:13:
ac:31:61:95:82:41:db:a4:9a:f0:1c:44:55:f2:61:07:02:af:
24:ce:21:ea:62:f2:fd:b5:a8:37:d5:db:13:5b:d4:53:9f:0c:
f4:87:52:8e:f7:bf:15:bc:83:e0:f6:25:fb:bc:28:1a:ac:c8:
86:0e:31:81:78:eb:af:3d:31:5d:24:30:65:2a:af:b6:90:71:
6c:51:48:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:57 2024 by rpki-client on console-fra.rpki-client.org