Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/gVDBqsMsFFtFZBNjaELyCoZGgK0.roa
File: gVDBqsMsFFtFZBNjaELyCoZGgK0.roa (raw, json)
Hash identifier: Gnk4Agd8Sj76gyeiUG8hioDrsIq9fYlCqNvxDzHynjA=
Subject key identifier: 81:50:C1:AA:C3:2C:14:5B:45:64:13:63:68:42:F2:0A:86:46:80:AD
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04C0F454
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/gVDBqsMsFFtFZBNjaELyCoZGgK0.roa
Signing time: Tue 15 Feb 2022 18:14:57 +0000
ROA not before: Tue 15 Feb 2022 18:14:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 193.233.228.0/22 maxlen: 22
193.233.136.0/22 maxlen: 22
193.233.140.0/22 maxlen: 22
193.233.82.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79754324 (0x4c0f454)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 15 18:14:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8150c1aac32c145b456413636842f20a864680ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fa:7b:91:93:ac:bf:f4:85:76:ac:d3:cd:26:
00:fd:3f:8d:22:c6:52:f5:6b:21:39:37:00:96:97:
c1:7a:af:a4:7a:e2:7b:6e:4a:13:31:3c:f0:3b:53:
cc:73:72:80:22:e3:16:e9:20:7c:6a:75:d7:56:e7:
e9:bc:fa:90:88:d6:cd:96:0f:44:02:01:41:fb:30:
bc:5a:a3:03:ec:91:dd:57:25:ba:ed:21:1d:94:89:
63:fd:a9:1f:f2:90:f1:1d:56:b4:9f:c7:1b:c9:64:
51:4e:e0:ad:d4:82:bc:7e:ed:eb:a5:f5:59:69:50:
c5:10:a5:1d:fe:dd:76:56:2b:79:20:89:73:f9:49:
c4:8f:97:63:81:c5:60:32:bd:03:b5:28:62:96:4c:
84:f4:88:fc:0a:c4:7b:b7:a0:9c:e4:d9:0d:94:5d:
cc:38:08:04:9f:17:e1:fe:03:4e:7f:b8:af:68:cd:
20:33:a3:13:0e:18:b8:4d:ee:70:d3:42:19:68:f7:
5e:0a:52:cd:67:53:d7:17:7e:8e:c8:58:d9:88:5e:
a0:69:d3:92:c2:c5:8a:a3:9d:c6:ef:41:1d:85:db:
9b:bc:e0:c7:44:a6:35:6d:c0:52:e1:52:2c:24:6e:
3c:7c:28:9b:cb:9b:ef:4e:0b:ce:cf:d1:3a:ad:e5:
39:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:50:C1:AA:C3:2C:14:5B:45:64:13:63:68:42:F2:0A:86:46:80:AD
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/gVDBqsMsFFtFZBNjaELyCoZGgK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.82.0/23
193.233.136.0/21
193.233.228.0/22
Signature Algorithm: sha256WithRSAEncryption
86:82:bd:bb:58:b3:37:af:3a:be:41:ae:4b:2f:23:0a:ef:da:
9e:82:ff:0a:85:88:d8:cb:d0:8a:38:62:ee:f5:7d:76:54:45:
e8:ee:bb:0d:a4:a8:ac:66:85:23:a0:db:31:2b:11:15:8b:bc:
e5:88:08:26:1a:6c:77:8e:ed:8e:fc:ca:a1:81:94:ff:b8:8d:
0c:93:ab:fe:5b:c5:71:48:19:21:87:64:ce:22:86:f4:1f:94:
a9:a5:92:39:29:e6:a1:16:8b:15:f2:41:bd:cb:96:72:fd:40:
8a:81:84:79:af:67:9f:82:23:a5:84:3a:b0:15:cb:a9:98:0a:
cb:8e:6e:5d:11:8a:02:4c:2c:ac:45:54:b1:fa:4c:84:c0:85:
91:ff:31:0d:0d:d5:31:fb:80:cc:af:26:4c:43:b5:13:f6:23:
8c:cb:dc:10:e8:63:a7:7d:ea:20:b0:67:28:96:b1:a5:fc:1f:
f9:52:54:e1:34:a3:43:57:53:16:e8:53:98:58:6f:82:8a:14:
74:0d:21:e9:f4:8a:85:ae:f7:c7:fb:21:06:0c:e2:a8:ca:ef:
0f:da:9c:b9:49:f6:6b:82:69:df:99:65:69:30:6d:8b:ac:8e:
1d:62:38:f3:f8:de:50:c5:fc:27:9e:46:22:e9:f3:d9:08:13:
68:41:f7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org