Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/GK8x8C_QDIxV3bdGDtNCDfpLhi8.roa
File: GK8x8C_QDIxV3bdGDtNCDfpLhi8.roa (raw, json)
Hash identifier: XakFa392rDGA8dwcNAJR/Fpej6ToVXTgqKYXYzhiOww=
Subject key identifier: 18:AF:31:F0:2F:D0:0C:8C:55:DD:B7:46:0E:D3:42:0D:FA:4B:86:2F
Certificate issuer: /CN=e801f23ce821c264d67727536ec183537594c5f2
Certificate serial: 371A82F5
Authority key identifier: E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/GK8x8C_QDIxV3bdGDtNCDfpLhi8.roa
Signing time: Sat 01 Jan 2022 11:59:57 +0000
ROA not before: Sat 01 Jan 2022 11:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25176
IP address blocks: 193.10.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 924484341 (0x371a82f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e801f23ce821c264d67727536ec183537594c5f2
Validity
Not Before: Jan 1 11:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18af31f02fd00c8c55ddb7460ed3420dfa4b862f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5a:6f:61:00:cd:0b:35:6a:4b:5d:19:07:b2:
b2:ed:7e:0c:7f:d4:3b:90:df:d3:83:1f:44:3c:f0:
85:e3:09:87:68:bf:2d:6e:eb:54:3a:96:a8:2c:3e:
e6:70:34:5f:4d:5c:92:4e:4d:a6:47:1b:77:97:40:
a8:fb:b1:ba:00:0b:cf:73:08:ca:38:6a:c0:a7:14:
eb:71:cb:e2:ca:18:46:fb:d1:83:f0:75:e8:e3:13:
8d:3d:c8:73:07:ef:96:70:bb:1f:5f:df:9a:56:a9:
39:e5:7e:78:41:a1:5b:bb:81:8f:24:8b:c7:58:17:
71:97:55:09:71:6c:50:8a:d6:90:25:2b:ce:e6:84:
cf:35:3f:4f:a2:49:85:bc:7e:82:cc:ef:12:7c:bc:
0a:f7:8c:6d:c3:52:16:b9:be:22:98:77:75:29:4e:
eb:97:d6:4e:87:73:dd:bf:a5:74:af:c4:9e:ae:9e:
46:71:0f:57:22:2d:86:38:99:51:8f:92:c2:7d:1b:
3e:b5:17:18:5f:f7:c9:1c:9d:1a:27:ec:47:51:6a:
43:91:31:99:4b:d7:95:27:13:66:c2:7a:5f:89:92:
92:72:18:75:70:94:68:05:45:fc:44:0d:44:6c:3d:
fb:02:2f:da:d6:b9:27:eb:c2:b8:5c:bb:b9:46:84:
af:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:AF:31:F0:2F:D0:0C:8C:55:DD:B7:46:0E:D3:42:0D:FA:4B:86:2F
X509v3 Authority Key Identifier:
keyid:E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/GK8x8C_QDIxV3bdGDtNCDfpLhi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/6AHyPOghwmTWdydTbsGDU3WUxfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.10.32.0/24
Signature Algorithm: sha256WithRSAEncryption
82:c9:ca:58:f8:b5:d8:53:91:36:54:a7:e0:c8:4b:31:5b:15:
7d:66:0b:32:46:6f:2d:da:35:0c:1d:c5:50:7c:97:99:44:7f:
67:6b:37:74:4c:31:15:56:e5:ed:22:3d:05:2c:2a:c1:59:fd:
39:1e:92:c6:6e:bb:17:f9:9a:7e:e5:2c:b2:31:5a:5f:44:e5:
ac:f4:e5:76:56:3a:c7:98:9b:97:16:6c:eb:d1:d2:e2:80:45:
30:a2:10:65:ad:d1:bc:28:97:c5:23:6d:c9:53:22:a1:16:ff:
1c:45:39:c4:74:b4:c2:89:a4:55:fb:1e:f4:c7:8d:84:37:81:
2a:b4:83:fd:17:fc:db:d3:8e:2a:8a:92:e6:04:d4:45:a4:15:
da:11:f7:bb:bb:6f:3e:cd:2c:a7:98:d4:8f:b9:2e:67:41:e7:
f4:95:03:3d:e9:1e:e3:15:95:9c:c3:69:ff:f4:5b:98:d9:ed:
f4:88:bd:ed:98:3a:df:67:cd:d0:bc:0a:ac:80:1a:18:a1:31:
5a:e7:7e:56:50:a3:c2:15:d9:3a:7c:02:a0:98:8c:cb:75:47:
92:78:f8:ff:01:96:90:88:72:9d:ea:5e:55:0d:2e:6c:a5:ea:
52:81:11:e2:aa:f3:41:20:a2:80:0d:f5:70:94:ca:d1:7d:3a:
74:fc:9f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:39 2023 by rpki-client on console-ams.rpki-client.org