Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/G8t80dpPFw6kqnxTx6EnxctrAs0.roa
File: G8t80dpPFw6kqnxTx6EnxctrAs0.roa (raw, json)
Hash identifier: qqzjWKw9GDIYLGWLTx40POXYjGbEiKyYBMeNz2gTiBA=
Subject key identifier: 1B:CB:7C:D1:DA:4F:17:0E:A4:AA:7C:53:C7:A1:27:C5:CB:6B:02:CD
Certificate issuer: /CN=e801f23ce821c264d67727536ec183537594c5f2
Certificate serial: 37A8E57C
Authority key identifier: E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/G8t80dpPFw6kqnxTx6EnxctrAs0.roa
Signing time: Fri 25 Feb 2022 08:27:32 +0000
ROA not before: Fri 25 Feb 2022 08:27:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8748
IP address blocks: 194.47.128.0/19 maxlen: 19
193.11.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933815676 (0x37a8e57c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e801f23ce821c264d67727536ec183537594c5f2
Validity
Not Before: Feb 25 08:27:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bcb7cd1da4f170ea4aa7c53c7a127c5cb6b02cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:57:70:76:b3:5b:1e:7a:15:b5:8c:91:0f:
a1:67:f4:b2:f8:e4:67:29:fd:b0:9a:98:7b:8d:dd:
65:1f:d0:a7:58:78:d7:d3:a5:82:87:cc:4e:a1:cb:
89:3a:47:50:26:e2:36:51:d6:02:15:17:0b:2c:37:
36:8f:4f:52:c4:d8:13:91:a0:8a:d6:5c:c7:93:49:
21:90:0f:d6:55:4e:20:93:d7:c8:00:bf:a6:f9:42:
c6:1c:8a:73:a0:6b:bd:71:a2:50:2b:31:33:c6:4d:
18:9f:e0:e6:f8:c9:9f:75:e2:ca:2f:ce:2e:35:c3:
80:d3:91:03:4c:8e:1a:9c:a3:1a:99:d1:fd:3b:b2:
15:de:b0:3a:1b:a4:e5:ed:3f:41:4e:07:0a:41:af:
7e:79:a5:08:b2:12:ee:ea:ce:ba:e4:cd:87:1a:f3:
9c:bd:aa:ca:b0:e1:ca:2c:98:91:df:65:5c:a5:e0:
14:ea:5b:34:d9:ed:ba:45:fb:3f:66:29:9e:c1:65:
ef:2c:d8:ec:15:f8:6b:aa:19:62:94:5c:d9:04:eb:
ff:fb:ca:57:aa:db:d9:9b:e0:e5:28:41:bb:26:3e:
5f:99:83:18:c6:a7:72:6a:6c:c8:e3:94:8f:50:9f:
98:ee:18:e7:fd:c3:ed:12:e8:07:01:c4:a4:2d:52:
0d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CB:7C:D1:DA:4F:17:0E:A4:AA:7C:53:C7:A1:27:C5:CB:6B:02:CD
X509v3 Authority Key Identifier:
keyid:E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/G8t80dpPFw6kqnxTx6EnxctrAs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/6AHyPOghwmTWdydTbsGDU3WUxfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.11.184.0/21
194.47.128.0/19
Signature Algorithm: sha256WithRSAEncryption
35:5b:94:95:a7:84:71:d5:1c:f7:76:08:0d:5b:22:e2:ab:a6:
29:f2:75:7c:13:a6:53:5d:f4:6c:d2:a9:26:94:07:d2:f1:a9:
a9:5b:b1:19:21:f8:88:e7:6a:47:ef:fb:6d:33:ec:1e:9f:ea:
ee:60:41:08:3c:79:70:26:2e:08:66:e4:ee:ef:e2:be:12:46:
bc:0a:2b:d0:0a:d5:a8:0d:8d:67:6b:9b:5c:38:3c:69:ce:d9:
67:48:62:c8:81:94:4c:7b:9e:b5:91:04:c6:ca:75:09:2c:56:
2e:48:93:27:a1:9a:b6:a8:46:f3:8d:f6:ef:6d:12:d1:50:42:
21:f8:47:93:e0:bf:d6:bf:72:e1:e5:19:c2:26:70:7a:59:c2:
eb:de:7c:2e:3d:88:68:2d:10:ba:9b:35:c9:7c:d4:2f:5b:ac:
c5:21:c6:f6:18:c3:92:1f:f2:63:11:c5:45:87:44:02:04:2f:
f2:96:3f:08:49:00:ef:50:8b:01:b2:9e:10:7a:91:bb:1e:1c:
71:fe:f3:38:06:bc:41:3f:09:69:de:80:6c:9b:df:a3:81:c0:
46:ed:35:ba:0a:82:34:d0:45:3f:48:f5:31:83:5d:a0:a2:11:
70:ec:ba:c2:23:44:0a:ce:4d:ee:78:49:44:ea:17:65:e4:10:
f3:49:95:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:57 2023 by rpki-client on console-fra.rpki-client.org