Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/GdRQUcUF_URzPQOX7xiIzi75NLQ.roa
File: GdRQUcUF_URzPQOX7xiIzi75NLQ.roa (raw, json)
Hash identifier: chLO2HYS0P3id6B4wA9xPnTjDw+DxvcN5yGLDg+uchs=
Subject key identifier: 19:D4:50:51:C5:05:FD:44:73:3D:03:97:EF:18:88:CE:2E:F9:34:B4
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B022F9F
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/GdRQUcUF_URzPQOX7xiIzi75NLQ.roa
Signing time: Sat 01 Jan 2022 13:58:00 +0000
ROA not before: Sat 01 Jan 2022 13:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199538
IP address blocks: 193.192.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 721563551 (0x2b022f9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19d45051c505fd44733d0397ef1888ce2ef934b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cc:c1:67:18:d6:71:9e:92:22:44:6f:0e:24:
1b:b2:7e:87:39:7d:4d:ce:2b:18:4f:48:86:dc:07:
58:5e:d6:f3:01:85:c6:e0:6b:55:0f:70:5a:bd:45:
3a:87:96:6c:88:21:bb:c6:2f:8a:6f:24:0f:c8:50:
50:4e:db:ff:88:70:43:98:a9:b1:33:c9:03:9c:c2:
ad:79:57:03:c9:65:23:87:27:71:20:2a:e5:89:0c:
4f:ba:aa:14:4f:71:76:9d:1d:1e:e1:50:44:39:e5:
e3:ef:b7:e8:87:00:51:b0:38:f2:8d:0d:69:ab:e5:
7c:b2:84:e4:ea:27:d5:38:63:ad:30:ee:b2:11:a2:
21:1d:6b:4e:24:8d:ba:5a:6b:6c:33:89:0d:e4:04:
b5:af:6c:ec:26:e5:26:37:15:9f:d5:cd:81:43:9c:
b0:e3:d2:9c:2a:97:4d:fa:5b:ca:39:5b:5a:40:82:
6e:37:da:14:cb:c6:58:61:ac:c6:5c:04:b8:b1:5c:
e9:6c:68:8f:c7:c6:34:da:ee:6b:bd:6f:19:91:fd:
64:4f:4c:07:a5:04:89:5a:b8:80:ee:30:cf:47:0a:
0d:80:0a:73:e7:2c:ca:1a:9d:8e:0b:d8:be:2a:92:
00:a2:8e:f3:f3:81:64:43:45:a4:e5:db:c2:a9:3c:
48:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D4:50:51:C5:05:FD:44:73:3D:03:97:EF:18:88:CE:2E:F9:34:B4
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/GdRQUcUF_URzPQOX7xiIzi75NLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.184.0/24
Signature Algorithm: sha256WithRSAEncryption
51:8b:e9:b0:92:27:60:b5:75:1c:2b:6e:58:2d:7c:ba:43:96:
f7:22:8f:e1:49:df:38:d6:c9:51:10:ae:ac:fa:25:b3:6d:f4:
39:2a:c2:cb:24:66:1b:bc:65:b8:0a:2e:66:bb:12:cb:0a:8c:
80:5a:73:e1:58:e5:7b:f6:24:f8:71:d3:fb:2c:46:a7:05:94:
21:6c:b0:24:0a:03:46:92:ed:41:a4:77:aa:e6:25:39:ed:ad:
f3:4f:b1:e8:e0:60:8c:c8:b7:f9:6c:85:1a:31:21:81:f8:ca:
83:1c:fe:19:7f:b3:da:7f:c1:2a:85:2c:33:e2:90:b3:42:de:
4e:57:29:48:aa:5a:d3:77:33:d7:dd:6d:23:f1:66:d5:b2:b4:
11:21:bd:52:8e:77:f3:80:5d:bb:19:71:26:b1:48:d6:7a:6c:
ad:08:38:90:d1:1b:6d:9f:e2:89:4a:59:ff:a7:a6:18:19:29:
aa:fc:4b:ae:61:99:d4:93:13:6f:1e:f5:03:40:43:cd:47:95:
cb:9d:65:92:4b:cc:74:9f:4c:4b:2d:a3:90:13:cb:9d:69:2b:
96:3f:4e:48:f9:fb:dc:72:c5:9a:c4:b6:5e:bb:6c:fd:68:81:
2f:f4:0c:a8:7c:11:2e:0a:29:fc:34:33:52:3b:17:cd:cc:06:
f1:df:07:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org