Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/cgvs_sOR8oWCYtszy5g7c2XBfaU.roa
File: cgvs_sOR8oWCYtszy5g7c2XBfaU.roa (raw, json)
Hash identifier: GjoMz/2UMQhTVHC/HClz5hcBJ3nzTOSa50qV0L4eR6I=
Subject key identifier: 72:0B:EC:FE:C3:91:F2:85:82:62:DB:33:CB:98:3B:73:65:C1:7D:A5
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07240D5E
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/cgvs_sOR8oWCYtszy5g7c2XBfaU.roa
Signing time: Fri 11 Mar 2022 06:28:12 +0000
ROA not before: Fri 11 Mar 2022 06:28:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 188.209.136.0/22 maxlen: 24
45.11.188.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119803230 (0x7240d5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Mar 11 06:28:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=720becfec391f2858262db33cb983b7365c17da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:be:0e:c5:8f:3f:7e:3e:87:ce:46:68:77:
84:4a:44:29:ce:f9:cb:e5:6a:fd:5e:3b:31:35:59:
38:db:62:d6:1a:c9:c3:a1:e6:a3:f0:5e:e7:02:fa:
c5:ce:d9:09:fa:d5:ca:56:54:94:0b:89:98:9e:c7:
57:34:77:91:ed:d1:c5:b9:bc:6a:31:cf:e3:a8:1e:
5a:ac:33:69:b4:99:1e:5d:26:1e:e7:e7:b3:cb:45:
ad:a7:a3:f5:c3:3e:55:c9:af:8c:52:66:dd:84:48:
28:c8:07:1f:1b:c8:3d:31:df:39:79:1c:1b:65:d3:
26:fd:9d:45:3d:de:c8:bc:f3:18:91:75:7c:8a:2c:
9c:15:1a:d1:fe:0b:d5:36:9c:c1:6b:3e:cd:3e:a7:
16:b1:b2:e2:df:9d:27:b5:7f:b1:6c:17:91:0e:13:
11:bf:55:88:ea:3d:25:2e:03:71:29:1c:59:7e:c6:
5e:15:83:ea:04:15:8e:72:b7:f9:94:99:9b:98:24:
1e:6e:2b:7c:70:d0:a6:b4:89:f0:47:0d:5b:3e:85:
41:58:af:3c:36:20:8b:68:95:96:ba:78:4f:d4:f1:
53:ed:b2:95:36:51:d9:cd:4b:0f:3d:8a:43:14:e7:
c3:2b:eb:1d:10:cb:fd:99:c3:bf:ed:f3:f2:f6:05:
4e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:0B:EC:FE:C3:91:F2:85:82:62:DB:33:CB:98:3B:73:65:C1:7D:A5
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/cgvs_sOR8oWCYtszy5g7c2XBfaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.188.0/23
188.209.136.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:15:30:3c:97:58:69:ba:c6:1a:20:7f:17:a2:9c:e2:b0:4c:
3d:89:8e:a7:d1:99:41:48:3b:91:69:b9:88:f3:c6:62:de:a0:
79:f5:1f:71:38:62:b4:60:30:75:44:ac:93:c0:ec:98:7d:ed:
6d:fb:98:95:47:63:83:d8:eb:66:4d:31:8c:35:de:55:da:b8:
13:eb:d2:18:fc:53:f5:bb:37:05:23:d1:cf:33:b3:5b:d1:28:
16:be:f3:18:2e:63:d4:77:97:f0:94:06:c1:b7:4e:77:e8:c4:
ac:e3:9f:bc:15:4e:3f:3c:28:59:78:d9:62:f2:ee:b3:0d:86:
0e:53:85:ee:a6:18:6c:f8:03:af:7d:c4:18:61:c2:5b:82:3f:
ef:91:c5:4e:13:42:07:c2:48:bc:c2:31:09:5e:8f:45:98:35:
9f:28:c9:c4:6a:75:b3:78:fe:62:33:f0:39:16:b6:9a:06:d6:
ec:fd:e0:42:16:44:6f:21:13:15:47:90:c9:2d:94:3a:8f:bf:
12:5a:39:f8:f4:e1:52:04:73:39:57:a3:80:06:eb:31:02:32:
8c:53:99:1b:3b:b1:1d:bb:02:64:fb:87:d2:f4:40:ae:24:76:
2c:77:3f:2c:21:54:09:32:08:9d:0a:e6:c7:d4:5b:c6:c4:d5:
92:67:36:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:14 2023 by rpki-client on console-fra.rpki-client.org