Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/2a4ee3-d76d-48be-add6-78f992475e1f/1/GCuZ6PUVLW9Ynx7u698ThW0BdG0.roa
File: GCuZ6PUVLW9Ynx7u698ThW0BdG0.roa (raw, json)
Hash identifier: G7WU9fLZ3RUuwd3I7cogosA7coAgLxbjaMKgdR+FFKo=
Subject key identifier: 18:2B:99:E8:F5:15:2D:6F:58:9F:1E:EE:EB:DF:13:85:6D:01:74:6D
Certificate issuer: /CN=d33a620b2acc8fc30b8c4d518f9297e3f7c9a60a
Certificate serial: 01821A50BE04CB62394573571DC337E7515E
Authority key identifier: D3:3A:62:0B:2A:CC:8F:C3:0B:8C:4D:51:8F:92:97:E3:F7:C9:A6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zpiCyrMj8MLjE1Rj5KX4_fJpgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/2a4ee3-d76d-48be-add6-78f992475e1f/1/GCuZ6PUVLW9Ynx7u698ThW0BdG0.roa
Signing time: Wed 20 Jul 2022 06:34:35 +0000
ROA not before: Wed 20 Jul 2022 06:34:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198061
IP address blocks: 194.0.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:50:be:04:cb:62:39:45:73:57:1d:c3:37:e7:51:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33a620b2acc8fc30b8c4d518f9297e3f7c9a60a
Validity
Not Before: Jul 20 06:34:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=182b99e8f5152d6f589f1eeeebdf13856d01746d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:09:0f:03:f6:f7:c2:e2:8c:de:c1:76:da:fe:
51:a9:e8:22:29:97:3e:a3:76:a0:36:ac:b7:c3:62:
ee:c4:04:64:8c:fd:e8:b3:d9:08:d5:3d:d5:31:33:
96:ec:90:6b:25:1d:d0:bb:da:bf:37:6b:4f:77:be:
17:1a:7f:4f:e1:a4:74:e5:9d:04:a0:65:c1:94:c7:
f4:ed:ab:a1:b9:ba:56:01:c7:c5:a3:b5:db:bb:79:
74:56:14:c9:0b:91:66:52:c9:d9:b0:be:32:22:b4:
34:96:fe:ca:cd:51:25:a8:81:2e:2b:f5:4a:d4:2d:
2a:00:1f:ef:a6:2b:e1:3e:f2:f6:49:75:bb:c0:75:
f0:68:99:57:2e:00:7d:30:ab:cd:21:f2:10:78:97:
41:b5:b3:ee:bb:95:38:bb:b1:b5:2d:04:5c:71:c8:
ad:56:0a:d6:2f:09:e4:54:ed:b2:05:3c:f4:74:59:
28:7c:d5:39:c5:59:49:5f:4c:6f:c4:30:d4:bd:60:
65:67:54:7a:5a:49:fb:c9:c9:aa:a3:cb:ae:ee:4d:
a8:e2:0e:55:bc:1a:6f:b1:d4:88:37:bf:0a:f9:b7:
7f:8f:43:fc:d7:cc:d5:0f:c9:7a:06:49:a2:a8:27:
9d:d4:72:9b:b3:e5:17:98:8a:da:dc:3d:a2:7c:5c:
9e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2B:99:E8:F5:15:2D:6F:58:9F:1E:EE:EB:DF:13:85:6D:01:74:6D
X509v3 Authority Key Identifier:
keyid:D3:3A:62:0B:2A:CC:8F:C3:0B:8C:4D:51:8F:92:97:E3:F7:C9:A6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zpiCyrMj8MLjE1Rj5KX4_fJpgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/2a4ee3-d76d-48be-add6-78f992475e1f/1/GCuZ6PUVLW9Ynx7u698ThW0BdG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/2a4ee3-d76d-48be-add6-78f992475e1f/1/0zpiCyrMj8MLjE1Rj5KX4_fJpgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.191.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:5a:93:7c:89:c3:4e:f3:43:8b:01:ca:56:92:d8:42:7d:64:
2d:ab:88:06:e6:bc:15:5d:41:8d:e2:d9:00:c8:4f:57:2b:a4:
d4:ec:f3:18:1e:9a:77:bb:55:a1:0a:d6:b5:27:03:1f:19:6c:
84:25:39:97:98:d3:10:1d:f7:c8:68:19:a0:c7:e0:66:dd:be:
9a:91:86:21:3d:b3:ec:0d:4f:27:a2:de:41:fd:20:9d:b9:c6:
aa:9c:90:db:dd:8b:b8:a3:2b:30:30:33:1f:a5:de:a7:d5:f8:
2f:c6:79:ac:82:10:b6:43:17:9d:6b:7a:e5:ce:73:4d:43:87:
15:d6:3a:b1:d7:9b:6b:c2:9f:1c:ce:3d:50:4b:36:2c:02:a5:
a8:ca:c4:6a:72:4f:70:dc:51:1a:5e:f6:95:f4:b8:91:7b:40:
49:50:b9:3f:4c:c6:de:ff:c9:b4:8f:dc:9a:00:6a:5f:94:53:
d9:24:b3:1f:c3:3c:1c:6b:d7:5e:bc:fc:a1:48:cd:ad:5e:4f:
82:44:ed:ab:6b:98:f4:48:7c:7a:86:06:3b:82:65:09:ad:41:
bb:24:1a:99:bd:b3:93:70:50:e9:fe:16:90:7e:d0:60:e1:d5:
91:48:dd:93:fb:30:18:f7:16:70:cf:50:0c:84:28:64:9e:75:
27:c5:65:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:24 2024 by rpki-client on console-ams.rpki-client.org