Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/8xGJNx2_5tfgS-9C3pVpBoEkQ_E.roa
File: 8xGJNx2_5tfgS-9C3pVpBoEkQ_E.roa (raw, json)
Hash identifier: yeNue66qSq8Cr6h+CXplaskVdR12Y5OqnIl3HKrYas0=
Subject key identifier: F3:11:89:37:1D:BF:E6:D7:E0:4B:EF:42:DE:95:69:06:81:24:43:F1
Certificate issuer: /CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Certificate serial: 12C6A01F
Authority key identifier: 6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/8xGJNx2_5tfgS-9C3pVpBoEkQ_E.roa
Signing time: Sat 01 Jan 2022 10:54:59 +0000
ROA not before: Sat 01 Jan 2022 10:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205042
IP address blocks: 188.74.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315007007 (0x12c6a01f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c66d5cb2f9cad3f4843f714a4dc62d7213debe8
Validity
Not Before: Jan 1 10:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f31189371dbfe6d7e04bef42de956906812443f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:69:3a:a3:6e:ba:46:80:1a:fe:00:15:e1:86:
89:7a:57:18:ba:22:b6:31:c2:ce:22:d8:e5:4e:7e:
96:f7:ac:01:8d:23:a1:02:38:6b:21:a5:09:bd:03:
6e:b2:fd:6d:cc:8f:69:b9:4e:eb:89:3c:c0:c9:ea:
ec:3b:93:a7:1f:2e:8e:67:61:46:d7:a6:4c:1f:41:
13:56:d8:d6:da:0c:4d:91:71:4e:60:71:3c:71:12:
82:68:b2:9d:4e:29:cc:1a:cc:f2:61:26:17:7f:f1:
0d:c9:f9:96:9f:f8:ac:43:6d:f9:e9:4a:3a:2d:2b:
d9:9f:e0:5c:d5:e5:76:44:ba:8f:85:1c:28:8b:46:
a1:04:3c:15:8e:b9:94:16:a0:90:91:c3:96:69:69:
66:71:b9:ea:54:e2:e0:03:a4:ea:58:91:31:d6:33:
ad:21:ef:57:e2:2f:42:d4:f2:50:9f:af:fe:62:2e:
1d:7b:e8:a4:e3:c1:af:ff:33:42:c3:ba:7b:e6:98:
05:e3:5b:81:cf:a8:ff:6b:40:6b:5d:5f:02:5f:33:
42:ff:6f:7f:17:0a:0b:67:38:9c:60:de:06:65:44:
63:c6:ec:c9:4b:26:3d:28:aa:15:87:82:02:f7:48:
39:b6:71:fa:f4:80:69:7d:df:9f:2c:65:07:f4:a1:
43:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:11:89:37:1D:BF:E6:D7:E0:4B:EF:42:DE:95:69:06:81:24:43:F1
X509v3 Authority Key Identifier:
keyid:6C:66:D5:CB:2F:9C:AD:3F:48:43:F7:14:A4:DC:62:D7:21:3D:EB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bGbVyy-crT9IQ_cUpNxi1yE96-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/8xGJNx2_5tfgS-9C3pVpBoEkQ_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/edecb7-bd59-4ebe-b201-6cf131c1caac/1/bGbVyy-crT9IQ_cUpNxi1yE96-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.74.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:f7:39:4d:c7:e5:ac:8e:d3:e2:2c:28:6a:ef:fc:0e:5a:9a:
75:72:80:e2:67:6e:0b:c4:22:7f:5b:0e:59:21:d1:0e:52:c7:
49:16:d6:2b:ba:69:86:d7:9e:28:2f:5a:8a:f9:8d:8c:78:e2:
22:5f:46:22:3f:29:0b:a5:98:a4:0d:a9:d5:71:f6:df:3d:8c:
a9:c6:57:38:80:71:fd:74:1c:2a:80:95:c8:96:24:e0:c5:5c:
26:e8:af:30:a5:e1:55:13:ec:9b:bc:5b:01:5f:27:b4:31:c9:
a6:9b:23:57:6b:df:59:8f:a7:49:3b:cb:53:0f:b1:ce:4a:ea:
cf:c2:02:a6:96:83:82:9a:d0:63:f3:61:49:97:ae:65:f0:9b:
06:2f:a2:08:f6:37:4a:a4:22:e0:57:c6:7b:ad:02:4a:39:c5:
5d:00:5e:5c:1a:e3:0a:78:ee:e8:1b:b2:62:8d:ea:26:55:52:
3d:1b:df:8d:ab:04:25:2b:ca:46:d9:0f:29:20:7c:42:1c:79:
27:91:40:d8:3f:e0:64:0d:2a:6b:e0:39:3d:54:ee:64:bf:d3:
18:1e:b4:ee:22:01:28:45:9c:bc:65:e4:f7:04:c2:30:1e:a4:
eb:3f:c9:7d:fb:fb:c6:ec:31:f0:5d:8c:b5:56:58:38:5f:96:
22:af:bb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:05 2023 by rpki-client on console-ams.rpki-client.org