Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/GM8FPFZ_97JwjaHxAkS-OEwnfX4.roa
File: GM8FPFZ_97JwjaHxAkS-OEwnfX4.roa (raw, json)
Hash identifier: DxYqn6k7E2TfnbJkkQOZ3zW6OJzHgcTkcvbhZLF1/Ik=
Subject key identifier: 18:CF:05:3C:56:7F:F7:B2:70:8D:A1:F1:02:44:BE:38:4C:27:7D:7E
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04E68C62
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/GM8FPFZ_97JwjaHxAkS-OEwnfX4.roa
Signing time: Tue 01 Mar 2022 14:06:30 +0000
ROA not before: Tue 01 Mar 2022 14:06:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210352
IP address blocks: 193.233.49.0/24 maxlen: 24
193.233.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82218082 (0x4e68c62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 1 14:06:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18cf053c567ff7b2708da1f10244be384c277d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d0:16:e0:5b:0e:dd:0c:2e:ae:75:d7:20:44:
39:6f:38:0e:27:a8:4a:e4:43:77:cf:b3:4b:cb:0e:
e7:9b:4d:f8:6d:75:52:27:19:7f:c9:a1:f7:8e:7e:
c2:a4:32:46:9e:83:d4:db:61:41:bc:30:78:a3:be:
6e:89:ce:f2:5a:4a:ae:c2:1a:38:3e:cc:af:9b:82:
e9:c6:dd:ff:b6:67:b7:e9:30:e7:cc:72:19:99:0d:
00:e0:b0:be:04:11:79:11:01:8f:42:fa:49:93:09:
c2:bb:c6:fd:cf:30:c8:b2:de:72:fe:9f:09:77:27:
11:5f:6a:ce:e6:4a:bc:89:2b:8e:e6:f0:98:e2:f3:
c0:38:b6:be:cc:f5:21:9f:f6:38:19:6d:81:4c:66:
ab:da:e0:d0:89:92:f7:d8:8e:23:c1:8a:88:85:3a:
ec:fd:b0:2f:a3:50:3d:cb:96:5a:c6:78:0c:f5:92:
c7:c3:1e:2a:d0:86:68:17:4a:04:2f:2f:58:ed:f2:
53:9f:e3:27:3d:b8:f7:5d:6f:87:ae:fc:31:a2:68:
9e:16:94:29:71:49:fb:5e:54:6f:ad:cd:bc:23:d4:
f2:ef:2f:e9:23:6f:9f:8e:e4:1d:b1:b9:a7:8c:3c:
f2:86:3f:7d:1a:1b:8c:f1:84:90:a6:1b:fd:35:3b:
9d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CF:05:3C:56:7F:F7:B2:70:8D:A1:F1:02:44:BE:38:4C:27:7D:7E
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/GM8FPFZ_97JwjaHxAkS-OEwnfX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.48.0/23
Signature Algorithm: sha256WithRSAEncryption
61:47:ed:45:b2:29:68:ec:58:e2:e3:45:45:5d:ca:71:99:ce:
fe:48:3c:17:bb:97:aa:d0:42:1e:2f:24:a0:de:10:c2:e4:e8:
4c:e0:a2:2c:6c:42:bf:38:58:fe:b6:f7:eb:cb:4c:c7:81:4a:
aa:a8:2c:b4:ba:c6:f3:7e:0a:c6:bd:2d:c6:b5:72:e1:aa:88:
0c:e2:8f:2d:c9:ba:60:07:89:c8:4b:17:c9:96:30:1f:2b:d0:
16:c6:b8:e5:cc:0e:52:46:c8:bf:c5:6e:63:47:9d:56:05:75:
8d:59:9c:ca:1d:10:e6:36:72:d9:5a:12:b8:24:29:bc:85:c4:
51:c6:1a:f5:bc:a1:51:f1:14:d6:72:f0:99:fa:03:fb:36:cc:
e7:ef:22:92:3c:a3:57:63:a4:42:c1:71:d5:83:1e:fa:f0:bc:
ee:47:76:98:5f:e7:19:9b:a4:03:59:39:fb:42:58:41:79:d2:
00:4b:e1:22:e5:8c:e2:dc:a4:6b:c7:f0:bb:cd:1e:55:e2:b5:
54:ec:e9:d4:59:c8:48:06:c2:07:67:1a:f9:07:00:67:25:71:
1d:52:7d:06:68:55:a3:20:c7:4e:34:14:f5:16:8c:fa:83:4a:
5b:5e:8a:14:d1:35:47:da:b5:b6:de:79:7d:c8:d0:aa:c1:36:
3c:6b:8c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org