Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/4fGGJQCni3KGNYVqqDY80vb0mYU.roa
File: 4fGGJQCni3KGNYVqqDY80vb0mYU.roa (raw, json)
Hash identifier: Spvrwwu0MtOo0i7iji5IVREugSeONuhQ4dSQq3Cn8Ss=
Subject key identifier: E1:F1:86:25:00:A7:8B:72:86:35:85:6A:A8:36:3C:D2:F6:F4:99:85
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D4EB897
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/4fGGJQCni3KGNYVqqDY80vb0mYU.roa
Signing time: Wed 18 May 2022 15:06:17 +0000
ROA not before: Wed 18 May 2022 15:06:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 194.163.88.0/23 maxlen: 24
195.180.180.0/22 maxlen: 24
194.195.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223262871 (0xd4eb897)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 18 15:06:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1f1862500a78b728635856aa8363cd2f6f49985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9c:03:a8:7f:f7:16:58:8f:39:48:ed:25:08:
b8:f1:b7:b6:68:f8:fe:53:d4:7e:f4:e9:d2:df:5a:
ac:91:fc:da:21:40:7b:5e:4d:d0:cc:ac:d1:84:e9:
fa:61:3f:d6:fc:bc:27:cc:a3:7d:62:b6:23:27:bd:
4a:c4:4b:0a:bc:eb:f3:e2:4b:c5:06:82:7e:31:a9:
bf:5b:86:3c:b4:78:da:89:8d:1b:4f:98:29:c8:40:
81:d6:25:b7:7c:ae:ce:ce:7c:b5:14:71:0d:75:02:
ea:28:20:16:c2:a8:7e:ee:7a:96:39:c0:be:03:33:
e7:8a:38:7d:39:6d:13:27:72:41:88:5c:bc:e6:d0:
a0:ac:e4:bc:8c:70:63:b1:10:71:b8:60:88:26:0d:
00:55:c4:62:d8:80:1f:e4:d3:f6:ad:b8:c8:e5:88:
4b:6e:b8:48:2b:db:c7:2d:35:05:cc:a2:60:54:48:
5f:d6:25:28:79:d9:a8:5b:79:c2:35:c7:31:86:93:
f5:f7:bb:27:eb:c6:4d:79:d4:1f:c1:9a:4b:24:de:
6f:ea:aa:e4:61:4a:f3:08:b0:fa:8d:4b:b4:90:91:
d2:3a:f5:94:c8:36:9a:f4:28:31:14:6e:14:78:33:
28:e4:eb:3f:b3:55:71:30:1c:6b:5f:ae:97:38:9e:
b6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F1:86:25:00:A7:8B:72:86:35:85:6A:A8:36:3C:D2:F6:F4:99:85
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/4fGGJQCni3KGNYVqqDY80vb0mYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.88.0/23
194.195.236.0/22
195.180.180.0/22
Signature Algorithm: sha256WithRSAEncryption
53:de:77:ac:8f:21:54:3e:ab:00:b5:ed:78:7f:b9:f7:76:a4:
c1:54:00:0c:97:fb:e9:a1:0c:b0:62:78:6f:cb:49:3c:d5:0c:
c1:c0:50:f0:97:ce:61:e4:57:0e:9e:19:96:71:69:76:8b:85:
8e:a8:68:fd:19:8c:f2:b3:f1:a4:42:ad:1f:c6:56:e6:18:31:
c3:5b:26:1b:fe:0b:f8:ee:99:64:52:db:31:1a:92:c8:79:c9:
9b:3e:70:54:38:56:7a:3e:13:ad:3c:8b:71:5d:8e:80:de:dd:
18:13:79:a5:dd:6b:11:a3:91:9c:56:23:a6:5f:04:36:c6:00:
6d:fc:79:31:aa:4b:fb:2d:eb:35:d0:c6:4c:1c:e4:2f:8e:cc:
11:3b:1e:52:d2:c3:a1:27:84:0b:fc:89:b9:1d:33:a1:5d:c1:
9c:42:e2:25:0c:5c:f9:f6:29:af:2f:fd:2b:51:f3:1f:61:b0:
91:f4:0b:8a:33:5f:2b:03:97:1d:b0:17:43:1a:b1:37:04:a8:
93:0d:2d:ef:7b:b8:f0:e8:31:da:50:e9:64:ab:34:ff:5e:5f:
ac:f2:69:30:46:00:d0:5c:8c:7b:66:ea:0c:2a:72:d9:92:1e:
a6:9b:41:4d:e9:8c:f4:2c:34:ee:22:c4:66:1d:ad:a7:91:9e:
bb:5b:bc:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org