Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gr0J0cBKJsxHFxc0TJHWuJiZ8Iw.roa
File: gr0J0cBKJsxHFxc0TJHWuJiZ8Iw.roa (raw, json)
Hash identifier: ea0KHc0TnHqKTr51tAk8Vj67neUp9k8qWnA6I7OfbqU=
Subject key identifier: 82:BD:09:D1:C0:4A:26:CC:47:17:17:34:4C:91:D6:B8:98:99:F0:8C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0182820724EEA66BFF73FE2D8D7E01A55EB0
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gr0J0cBKJsxHFxc0TJHWuJiZ8Iw.roa
Signing time: Tue 09 Aug 2022 09:54:42 +0000
ROA not before: Tue 09 Aug 2022 09:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60117
IP address blocks: 193.47.60.0/24 maxlen: 24
193.222.99.0/24 maxlen: 24
193.37.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:82:07:24:ee:a6:6b:ff:73:fe:2d:8d:7e:01:a5:5e:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 9 09:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82bd09d1c04a26cc471717344c91d6b89899f08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c0:fd:83:d1:9e:2f:a0:3a:33:10:75:54:ad:
da:64:78:2a:fd:d9:5d:65:16:93:58:b7:eb:d0:7a:
6b:34:b4:69:89:b6:42:97:1f:c6:8a:78:e3:cc:ca:
45:57:07:f7:57:4d:a3:71:2c:1d:a2:c5:cf:52:0c:
a3:b8:1a:ca:d7:5c:a5:37:1a:d1:d8:98:71:c5:c9:
f4:ce:73:cb:72:d6:cb:69:af:e7:7c:b0:57:81:3e:
75:0a:4e:e2:db:b1:73:52:8b:17:7d:29:79:b4:99:
31:2c:42:58:9c:3d:13:a2:a4:62:0c:c7:e2:c4:e6:
45:a0:89:c5:99:d3:ab:dd:6e:9c:f7:be:28:a1:69:
6e:a0:d0:49:d1:5b:af:92:99:56:48:d2:e6:95:c0:
70:91:4b:b3:a4:a2:e4:ef:31:2a:53:c2:b7:8c:af:
92:49:06:85:a3:fa:5e:1e:3d:46:56:ba:d2:4d:62:
49:8d:0b:5e:7b:a8:a6:a5:e0:77:af:4f:da:47:2f:
1f:6b:6a:35:47:63:9e:5e:19:ee:f7:aa:21:00:85:
e4:20:ad:bd:67:a0:6e:ad:dc:01:5e:44:f1:bf:b7:
20:a0:44:f3:ff:3c:a4:83:af:0a:22:17:ea:fc:34:
e1:5b:69:d4:39:e0:ff:a0:54:c2:05:bf:b1:a3:4b:
5c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BD:09:D1:C0:4A:26:CC:47:17:17:34:4C:91:D6:B8:98:99:F0:8C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gr0J0cBKJsxHFxc0TJHWuJiZ8Iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.44.0/24
193.47.60.0/24
193.222.99.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:86:e2:02:35:1f:7a:df:17:9e:2d:0e:89:75:42:e3:ca:a6:
74:d3:b7:f4:83:6e:ff:3d:ab:80:52:e7:3c:ca:97:bf:b3:6f:
00:6d:b3:a5:a2:4e:1e:23:f4:36:40:05:93:97:13:59:18:71:
48:c2:8f:9e:96:47:83:04:f0:50:39:d3:34:7b:01:8b:d7:27:
e0:d7:38:e6:b1:09:00:aa:05:3f:3c:f9:d0:3a:a1:ed:6b:b4:
be:fa:22:04:8a:73:a4:6e:d9:7e:84:78:b1:f5:05:62:9e:65:
f2:64:36:41:3a:5c:56:e8:03:dc:7b:3d:a3:64:1c:9c:8e:91:
8d:6b:b8:ba:d6:69:b6:3e:40:9e:b1:f3:c5:ea:38:2c:94:f6:
36:9a:96:86:42:48:fa:aa:f8:19:66:64:d7:d7:42:69:76:4e:
08:34:c1:0a:2c:af:11:91:48:8a:fd:af:3e:58:63:58:f0:16:
42:c8:c2:a2:e3:19:be:3b:7d:e3:e8:d6:94:1a:53:cb:54:50:
d1:1b:77:fd:b9:db:89:b6:a6:cf:7b:ed:74:aa:69:23:4a:71:
15:99:2b:7f:6d:73:8f:d3:7e:33:55:70:da:58:28:5e:9b:e4:
cb:d9:58:d1:3e:f5:c4:25:d8:85:c1:85:5c:2f:07:c1:df:93:
c2:3a:1a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:40 2023 by rpki-client on console-ams.rpki-client.org