Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gks8KOrLJm1Ex-WB1GYQdGKfvqc.roa
File: gks8KOrLJm1Ex-WB1GYQdGKfvqc.roa (raw, json)
Hash identifier: H9yvdgL10ys2lhYGp0mp2cYG3KuWfRltw6CROeR2FPM=
Subject key identifier: 82:4B:3C:28:EA:CB:26:6D:44:C7:E5:81:D4:66:10:74:62:9F:BE:A7
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27DE6202
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gks8KOrLJm1Ex-WB1GYQdGKfvqc.roa
Signing time: Sat 01 Jan 2022 16:09:01 +0000
ROA not before: Sat 01 Jan 2022 16:09:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59430
IP address blocks: 93.170.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 668885506 (0x27de6202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=824b3c28eacb266d44c7e581d4661074629fbea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:62:79:66:7d:64:0f:34:39:2b:21:ea:7e:db:
c2:0d:39:62:91:2b:1d:6e:df:c8:2e:eb:4f:70:e6:
0d:64:1c:fb:9d:c6:3c:66:d6:46:00:f1:e3:05:a4:
f2:d0:df:c2:0a:9a:a5:6b:9c:5e:58:19:fb:b2:83:
05:bf:eb:88:de:91:28:20:6d:79:68:61:c8:90:99:
92:fa:bd:ed:5a:1f:90:f7:f2:58:65:3c:dd:3c:54:
88:ed:c8:a6:20:4f:8b:32:b5:fc:d1:8e:17:78:f0:
1f:af:f4:34:df:48:fe:cf:e0:bb:f8:0a:53:fe:2c:
03:c4:35:bf:fa:58:2a:da:c8:e0:b4:b5:7f:38:18:
a7:c2:33:f0:e3:17:61:ad:8c:29:f2:2e:16:38:79:
c9:48:2a:64:01:93:69:f1:6b:1e:eb:42:57:b9:dc:
13:44:30:0a:46:58:4f:04:fb:d1:c4:bd:5a:79:ea:
7e:cf:41:e9:03:c5:1a:ac:99:5f:20:23:86:2b:1a:
71:38:72:97:fb:9a:4e:4f:b3:da:4f:6a:c2:50:01:
4f:41:e8:a4:a7:a7:d0:41:9e:86:95:0d:f5:86:7b:
c7:f6:f5:93:63:d6:c7:a9:ba:d2:16:a4:ed:9e:2f:
1a:b8:e4:43:13:19:50:c8:08:02:d9:95:b2:57:be:
34:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:4B:3C:28:EA:CB:26:6D:44:C7:E5:81:D4:66:10:74:62:9F:BE:A7
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gks8KOrLJm1Ex-WB1GYQdGKfvqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.8.0/24
Signature Algorithm: sha256WithRSAEncryption
53:c4:2e:a2:c0:b6:6e:5c:ca:5d:e6:1f:82:09:40:15:e5:b4:
9f:da:3e:a6:80:68:4e:97:34:57:11:2c:a0:42:fe:07:f5:5d:
e4:95:ee:51:af:3f:d6:43:13:4c:cb:a3:6e:3f:b1:c2:49:69:
e9:45:86:5e:7a:18:39:fb:68:ff:9c:96:f7:e7:24:3b:2b:aa:
37:64:09:09:b2:12:50:7a:42:5b:cb:3e:71:2a:03:a1:2d:ac:
15:ca:4d:14:51:fc:f5:e6:1e:b8:25:d3:2c:ea:38:fe:3a:01:
5c:48:3f:2f:ab:b6:66:dc:98:2e:58:ed:0d:ca:bf:e8:14:a2:
e2:8b:2a:e7:a5:d6:e7:aa:20:77:9b:76:03:0c:9c:16:cb:bd:
db:a0:bd:45:54:7b:f6:67:e4:74:37:cf:92:5a:95:e1:b6:65:
12:46:18:d3:14:c9:19:5c:8f:58:4e:a3:2c:fa:17:16:d3:62:
3d:38:be:0a:eb:0f:c2:af:6f:bc:86:f8:f3:03:e2:c2:e2:15:
1d:55:92:8b:a6:a2:19:b8:b3:8a:44:68:00:51:71:05:5e:8b:
5e:f9:9a:85:7b:a5:33:a5:58:3f:7c:2d:e5:bd:6a:34:31:47:
0b:8f:c1:16:a9:34:0c:ce:fa:8b:70:d9:49:5a:6e:57:1e:88:
83:3c:e9:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org