Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/g5Cx3UioCSPwu9YXzSyNKyafFOw.roa
File: g5Cx3UioCSPwu9YXzSyNKyafFOw.roa (raw, json)
Hash identifier: NC+7IN3vcg2DA18EqrrOykzFdDVtq5oWc4kbpmlEMCE=
Subject key identifier: 83:90:B1:DD:48:A8:09:23:F0:BB:D6:17:CD:2C:8D:2B:26:9F:14:EC
Certificate issuer: /CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Certificate serial: 061888F6
Authority key identifier: 1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/g5Cx3UioCSPwu9YXzSyNKyafFOw.roa
Signing time: Sat 01 Jan 2022 14:58:42 +0000
ROA not before: Sat 01 Jan 2022 14:58:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 195.49.236.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102271222 (0x61888f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Validity
Not Before: Jan 1 14:58:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8390b1dd48a80923f0bbd617cd2c8d2b269f14ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:62:b2:be:d3:b5:0d:b0:9b:91:89:88:83:48:
8d:06:b6:55:85:f9:bd:95:be:25:23:59:8c:75:02:
4a:cd:70:80:08:93:62:f0:ca:ca:8a:88:fa:54:ac:
d7:e2:3c:34:8a:20:ad:05:44:7b:72:e4:37:d4:64:
24:ba:8a:1c:c2:7a:25:3b:4d:01:39:a9:0e:41:04:
da:01:c5:7b:b8:b5:8e:99:da:b9:6f:66:c2:4c:16:
7d:cb:bb:d2:11:e5:be:7c:ba:34:36:e8:9e:52:f5:
ef:b5:66:4e:54:4c:d5:32:9d:e4:d4:00:5c:ce:2f:
ce:95:c9:cb:6c:f4:6b:19:a5:20:89:6e:35:27:9d:
1a:85:4c:f1:16:d3:34:39:73:49:da:69:26:3d:82:
40:c0:99:d7:e9:73:38:43:d0:93:89:82:d2:3d:8e:
e8:71:53:18:aa:10:e1:c1:fb:b1:9f:08:3e:e5:33:
24:9c:02:be:64:a5:3c:d0:e3:13:13:06:d3:96:b4:
c0:08:73:0b:a1:46:62:a8:5d:5f:78:ec:90:76:8d:
43:a1:ed:e5:82:40:b8:39:0c:d2:45:bc:bb:5d:62:
d7:76:eb:25:3a:0f:56:7f:96:64:16:c0:6c:24:33:
29:a0:e1:7a:9a:db:3a:0c:26:5b:08:df:1d:67:0a:
fc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:90:B1:DD:48:A8:09:23:F0:BB:D6:17:CD:2C:8D:2B:26:9F:14:EC
X509v3 Authority Key Identifier:
keyid:1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/g5Cx3UioCSPwu9YXzSyNKyafFOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/Gk-AAcMMrFRuP5IQO0sScy38v1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.236.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:e8:6f:fa:6d:e0:ca:84:cc:ce:78:ad:9a:9c:a8:ca:f3:1b:
f7:83:dd:f9:3a:10:ee:58:4c:d1:41:a4:a6:39:a1:b5:1a:72:
8c:36:fa:20:3f:b7:07:cb:6e:80:7e:38:06:c1:c0:76:da:8e:
84:94:a1:b8:16:9b:7a:ad:4d:8f:e3:f9:eb:72:4d:ad:4f:27:
e4:34:5f:71:7c:ac:53:ff:3f:95:ff:33:3d:58:a8:e2:b7:2d:
71:07:2b:99:49:69:5f:63:b3:38:90:7e:51:aa:bf:77:3a:96:
06:ca:18:a1:8d:d7:4d:01:5f:4e:4b:0f:93:f1:66:a3:d7:68:
d4:da:28:30:1a:68:b7:4d:c0:9c:03:8e:4b:e2:50:e5:40:65:
c0:a0:c4:c8:0d:25:4b:c1:f4:4c:d2:29:81:ff:0c:0a:d4:69:
b7:4c:a1:9c:3c:47:08:36:1c:5d:bc:8f:75:01:c0:e7:ae:0b:
89:64:ad:09:45:0e:12:94:8e:f8:96:0b:61:13:6e:8c:52:30:
3f:52:53:77:15:8b:e7:d3:66:24:ed:75:f7:e1:3f:a6:bf:0a:
69:85:e2:88:7d:64:c6:80:13:8e:78:90:67:4d:ff:36:74:7a:
1d:c9:f7:27:53:39:f4:f4:1e:93:12:f0:f3:01:0c:b6:92:04:
e4:ee:7b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:36 2023 by rpki-client on console-ams.rpki-client.org