Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/G2DDVtk5ffYEfDVxh4Lob5S2wM4.roa
File: G2DDVtk5ffYEfDVxh4Lob5S2wM4.roa (raw, json)
Hash identifier: oQChD+s+svLqm9W+h9apki3uYjD85SbqSsnUnuwPaRM=
Subject key identifier: 1B:60:C3:56:D9:39:7D:F6:04:7C:35:71:87:82:E8:6F:94:B6:C0:CE
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 018383024C2A93E6CA26BCC090E547822E07
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/G2DDVtk5ffYEfDVxh4Lob5S2wM4.roa
Signing time: Wed 28 Sep 2022 07:31:49 +0000
ROA not before: Wed 28 Sep 2022 07:31:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.150.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:02:4c:2a:93:e6:ca:26:bc:c0:90:e5:47:82:2e:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Sep 28 07:31:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b60c356d9397df6047c35718782e86f94b6c0ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e8:0c:b3:a0:b6:15:8c:aa:b4:23:6d:21:5a:
55:6f:8b:c0:3d:ae:73:db:60:c5:b8:39:4d:53:9e:
f1:88:b5:f4:f3:8a:85:1e:28:10:27:8a:7c:a5:34:
0c:d2:0d:06:79:18:ab:1d:8b:77:e2:9f:1a:08:27:
d6:95:10:ab:bd:b8:99:b3:41:73:62:70:5b:f5:ec:
0b:cb:ce:75:5b:a2:3a:68:76:7b:62:78:71:61:50:
06:c7:14:f9:38:ba:26:38:e9:64:1a:08:3d:ba:a8:
d8:6e:95:0d:bc:c5:45:f1:f6:3d:40:3c:8b:bb:69:
3e:84:a7:cc:be:c2:92:bd:44:c7:8a:68:83:0f:73:
9c:f0:44:3d:01:37:f5:a2:bf:f8:9c:fa:5d:ae:e8:
04:49:45:9e:39:72:d8:17:98:91:7a:88:f0:cb:cd:
03:f3:0b:27:22:1e:6f:f3:16:37:63:07:37:59:b8:
26:c8:d8:de:c2:6a:29:6a:d1:9b:23:42:db:91:59:
2f:0a:24:fe:8b:e6:5b:d4:a2:f6:0e:d7:18:1b:86:
d4:d2:46:b1:c4:e0:00:a0:ab:77:ec:40:54:8b:a0:
05:80:9c:63:8e:f2:58:0e:0f:d7:ad:92:05:4e:f8:
94:c3:83:ef:c9:fd:16:7f:ef:6c:06:9a:bf:0c:0b:
d2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:60:C3:56:D9:39:7D:F6:04:7C:35:71:87:82:E8:6F:94:B6:C0:CE
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/G2DDVtk5ffYEfDVxh4Lob5S2wM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.188.0/22
Signature Algorithm: sha256WithRSAEncryption
40:6b:21:4a:92:30:f5:20:88:64:52:cd:5a:10:08:ff:13:8f:
16:3e:13:04:b9:be:3b:9d:8f:e2:79:68:6e:9a:99:1c:07:f2:
79:a8:dc:f7:6c:09:c1:81:d8:dc:78:10:32:58:7e:0b:2f:c4:
6e:04:2c:ec:32:8f:c7:7b:df:15:f7:79:e4:28:41:20:ed:ab:
c4:f3:4b:17:4b:b7:08:9b:60:a8:71:e5:23:64:fb:35:1e:50:
5d:b7:e0:8c:c0:11:07:14:cc:60:53:9c:cc:d8:35:6f:8f:79:
47:33:1f:de:6b:76:32:c0:be:79:f1:f3:be:18:10:3a:14:fc:
13:c1:5a:ab:2e:ce:1a:c0:68:d9:2e:ba:bc:aa:f4:02:6b:b6:
0c:61:76:50:4e:36:a7:08:b3:01:96:67:75:e9:5d:a6:48:a0:
f8:25:6b:8d:f2:e9:68:07:a7:86:dc:76:e4:69:f6:7e:97:59:
73:8f:4d:60:53:9c:79:65:63:de:5c:48:a1:01:49:fd:94:45:
61:80:f3:24:36:79:d8:18:99:b4:82:39:60:17:e1:3e:30:2f:
81:13:f0:89:8c:eb:a9:56:de:f9:4d:c9:cc:99:5f:d8:d7:c6:
65:d7:07:23:2e:af:33:c8:79:0e:bc:3f:7a:ba:a3:19:bd:13:
06:e2:86:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org