Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/1GtzLLV5Iv9farTqUpZap8FX9Uk.roa
File: 1GtzLLV5Iv9farTqUpZap8FX9Uk.roa (raw, json)
Hash identifier: YgQESacaU1sgMXJ6Dz+HZ/nl19s01sb3qPm1QI/se80=
Subject key identifier: D4:6B:73:2C:B5:79:22:FF:5F:6A:B4:EA:52:96:5A:A7:C1:57:F5:49
Certificate issuer: /CN=70e7ad0598208a6af9d1500a740d73bcf28f0384
Certificate serial: 0481F79B
Authority key identifier: 70:E7:AD:05:98:20:8A:6A:F9:D1:50:0A:74:0D:73:BC:F2:8F:03:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOetBZggimr50VAKdA1zvPKPA4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/1GtzLLV5Iv9farTqUpZap8FX9Uk.roa
Signing time: Fri 08 Apr 2022 19:03:16 +0000
ROA not before: Fri 08 Apr 2022 19:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29663
IP address blocks: 193.201.116.0/24 maxlen: 24
2001:67c:5e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75626395 (0x481f79b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e7ad0598208a6af9d1500a740d73bcf28f0384
Validity
Not Before: Apr 8 19:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d46b732cb57922ff5f6ab4ea52965aa7c157f549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:53:2e:06:4f:59:0b:11:03:b4:a4:f7:38:f1:
dc:91:8e:50:e8:70:2c:af:86:b7:90:fc:94:6e:ca:
61:d5:5f:63:17:79:a2:17:f7:2d:0f:d1:9d:75:b7:
ac:07:8a:1d:74:b9:9b:d7:c4:8e:fc:0e:6c:b8:78:
44:14:d9:6e:a1:e8:f7:61:51:90:e2:b3:a1:95:8d:
02:d6:ba:55:3d:01:ed:47:e1:48:4d:de:03:9d:6c:
6b:52:82:30:87:94:23:80:e3:02:d6:82:10:b0:fc:
cb:6f:8d:42:37:6a:71:1f:67:a3:47:d0:db:47:bd:
23:8e:6e:c6:90:ff:ec:9c:c3:d1:72:5b:68:82:a8:
9c:3d:a2:f3:ef:25:46:b0:36:59:45:e5:5d:e6:d9:
be:91:64:6f:92:91:02:49:b6:85:1c:52:fb:2b:21:
ad:13:41:0d:58:81:7d:24:53:fe:9f:2e:9f:1f:0b:
45:ca:1d:0f:27:67:55:a4:6e:8d:f8:c8:50:1f:7c:
ee:1b:41:ca:3d:56:a7:8c:8d:2e:9e:b0:43:9b:99:
b9:4d:83:b2:73:2e:6d:b3:bb:e6:a1:d6:c4:51:8c:
13:00:28:e6:d6:4d:58:4f:20:57:14:55:44:79:a4:
a5:6f:d9:c5:40:2b:4f:ea:78:ca:10:a7:c3:95:d6:
5d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6B:73:2C:B5:79:22:FF:5F:6A:B4:EA:52:96:5A:A7:C1:57:F5:49
X509v3 Authority Key Identifier:
keyid:70:E7:AD:05:98:20:8A:6A:F9:D1:50:0A:74:0D:73:BC:F2:8F:03:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOetBZggimr50VAKdA1zvPKPA4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/1GtzLLV5Iv9farTqUpZap8FX9Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/cOetBZggimr50VAKdA1zvPKPA4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.116.0/24
IPv6:
2001:67c:5e8::/48
Signature Algorithm: sha256WithRSAEncryption
35:c1:73:c0:99:1c:58:7d:fe:93:12:82:28:91:e9:11:92:00:
60:7f:51:48:88:23:55:7d:cd:f7:41:a9:39:74:ff:02:ea:3b:
9a:ba:dc:aa:eb:49:2b:62:1f:07:d1:3c:af:d0:41:3c:50:84:
6a:dd:f4:e7:2a:56:d2:d4:a0:8c:5e:3a:ce:cc:25:b6:e0:74:
4d:2f:e6:63:3d:36:f9:0c:98:ab:43:36:8a:01:d7:a9:84:82:
6a:24:87:c1:50:7c:e6:f0:3b:21:80:7a:f5:50:14:ae:95:20:
f0:4a:fb:76:a9:1f:4a:d9:61:f4:8f:8b:84:ec:3f:75:05:87:
83:57:0e:12:fd:6e:1d:e5:74:56:61:23:c4:71:6b:96:c3:2d:
b1:a0:0b:1b:9d:a9:05:83:1e:0a:56:13:67:03:d4:ce:5f:34:
b3:aa:3f:3f:7e:36:c4:a7:97:af:5b:d1:8d:8c:7d:47:a4:51:
6a:d8:63:44:b6:69:2a:09:4e:9e:b9:1a:29:e5:fb:eb:ac:0b:
02:ba:41:77:57:8c:37:54:4d:70:64:1e:34:94:11:96:f6:6f:
d1:83:d5:02:03:3e:bf:ba:a5:a4:8c:32:06:3f:ce:56:b9:52:
55:9c:dc:cc:72:e1:2d:9a:bd:68:5d:0d:7f:f2:a5:be:cb:1d:
f4:54:db:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:45 2024 by rpki-client on console-ams.rpki-client.org