Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/gJjaXT04t684s6y4n4v6OVq6jew.roa
File: gJjaXT04t684s6y4n4v6OVq6jew.roa (raw, json)
Hash identifier: COGH8bwkGVC4+KqEKULFh++9yMHjAARZkxBiin7zrxc=
Subject key identifier: 80:98:DA:5D:3D:38:B7:AF:38:B3:AC:B8:9F:8B:FA:39:5A:BA:8D:EC
Certificate issuer: /CN=6ffa59013a3af03f7c96c24e68d95e181a0305a8
Certificate serial: 06C7081A
Authority key identifier: 6F:FA:59:01:3A:3A:F0:3F:7C:96:C2:4E:68:D9:5E:18:1A:03:05:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_pZATo68D98lsJOaNleGBoDBag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/gJjaXT04t684s6y4n4v6OVq6jew.roa
Signing time: Sat 01 Jan 2022 14:02:45 +0000
ROA not before: Sat 01 Jan 2022 14:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210222
IP address blocks: 193.176.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113707034 (0x6c7081a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ffa59013a3af03f7c96c24e68d95e181a0305a8
Validity
Not Before: Jan 1 14:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8098da5d3d38b7af38b3acb89f8bfa395aba8dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:aa:df:7e:49:30:03:c0:8f:36:ba:33:ad:2f:
e5:90:f7:27:8b:3f:83:32:4a:9d:93:6f:df:cf:7a:
7a:05:87:88:12:42:0c:e8:84:60:76:a7:36:e9:19:
0d:1f:da:af:eb:c6:23:e6:71:70:ea:78:7b:29:f6:
f1:46:54:4a:d6:20:c7:15:08:bb:10:fa:d6:1a:2f:
11:58:c6:bd:42:11:02:66:8b:2d:9d:a0:da:27:2a:
d3:e3:9d:01:b8:f3:96:92:e7:54:d6:d8:27:6d:19:
d3:c3:eb:34:4e:4b:47:b2:8d:44:0a:98:89:c3:d1:
6f:1f:38:d5:ae:5f:d7:75:df:32:b3:2d:33:44:01:
c0:d4:35:26:31:20:f0:27:3c:4d:80:04:f4:d4:01:
48:d5:f5:fc:36:2d:55:1f:41:1f:eb:e8:e2:00:75:
c4:37:9f:de:23:cb:36:ec:93:05:1a:ef:02:5e:42:
db:37:9e:7c:00:e6:7c:4e:ac:d8:78:5e:d0:8c:09:
12:59:5f:8d:93:40:06:c2:f7:dc:4f:7d:a5:df:f8:
9e:32:06:c6:fc:68:d9:f3:b9:07:2d:88:09:f1:1f:
44:eb:53:25:fe:88:19:c0:ed:70:65:ad:eb:a3:89:
1c:b1:bc:4e:ab:85:ca:1a:f8:8b:11:eb:80:77:4c:
8e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:98:DA:5D:3D:38:B7:AF:38:B3:AC:B8:9F:8B:FA:39:5A:BA:8D:EC
X509v3 Authority Key Identifier:
keyid:6F:FA:59:01:3A:3A:F0:3F:7C:96:C2:4E:68:D9:5E:18:1A:03:05:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_pZATo68D98lsJOaNleGBoDBag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/gJjaXT04t684s6y4n4v6OVq6jew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7e2131-db8a-4c89-b50f-d82297e945ac/1/b_pZATo68D98lsJOaNleGBoDBag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.24.0/22
Signature Algorithm: sha256WithRSAEncryption
98:5f:31:d5:c0:70:a6:36:fe:2a:84:55:c0:6c:4f:5d:60:4d:
ce:96:6b:cd:09:ab:ef:fc:88:6d:d9:ca:35:46:d6:3f:74:3d:
58:32:5d:d9:59:73:72:4e:56:af:00:6c:f0:ee:c8:ad:8c:d5:
a8:50:ae:ff:55:a0:4e:a9:a9:9e:71:a8:2b:e0:d5:08:c6:ff:
f7:54:c4:b9:f6:4e:66:62:9a:3e:58:34:32:5e:d3:22:bb:a4:
e4:dd:62:c1:f3:69:7f:97:71:1a:b2:8c:09:da:c6:06:24:e1:
9c:f4:4e:d3:6b:10:0e:39:df:50:9a:2e:53:04:0c:54:f6:b9:
a3:b8:88:15:ed:f6:1a:52:28:ff:db:08:74:e4:86:8c:06:01:
84:13:0d:a3:4a:00:77:30:76:89:af:f7:b8:ac:7e:5b:ac:dd:
39:64:8f:cc:b8:18:0b:f7:11:31:bf:64:7e:00:9a:01:cb:ff:
a7:ef:fd:3c:01:94:0c:dc:4b:7c:f0:6b:c9:36:ff:6b:b7:aa:
49:a3:b9:94:c6:c2:22:cd:bb:43:db:64:e6:a3:0a:bb:07:f8:
90:b8:55:bd:fc:ff:37:fa:cf:6a:ae:58:d5:85:0a:be:65:50:
d7:eb:f4:ab:5f:2a:5c:f9:91:8b:20:4b:22:59:30:86:b4:fa:
82:7a:6e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:24 2023 by rpki-client on console-ams.rpki-client.org