Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/Gq9vdmSdAOhGeBlo2GpXS_lpkWA.roa
File: Gq9vdmSdAOhGeBlo2GpXS_lpkWA.roa (raw, json)
Hash identifier: xmmlHjDV3Byei+6y6jFzpjxx75uZ9yNwK4VqDeaw8u0=
Subject key identifier: 1A:AF:6F:76:64:9D:00:E8:46:78:19:68:D8:6A:57:4B:F9:69:91:60
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 018317C1090F15E019BAC796E4D084B0B6B0
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/Gq9vdmSdAOhGeBlo2GpXS_lpkWA.roa
Signing time: Wed 07 Sep 2022 11:41:10 +0000
ROA not before: Wed 07 Sep 2022 11:41:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43120
IP address blocks: 176.39.32.0/23 maxlen: 24
86.111.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:17:c1:09:0f:15:e0:19:ba:c7:96:e4:d0:84:b0:b6:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Sep 7 11:41:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1aaf6f76649d00e846781968d86a574bf9699160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4e:30:2e:62:93:e7:e3:e0:9a:73:c2:6a:ed:
5f:e4:b4:2a:f9:90:2c:61:12:32:a4:dd:56:80:9a:
e8:56:ee:f4:f5:8d:c9:d2:e4:75:8f:4e:69:a3:e2:
d6:fc:87:0b:07:4a:68:3a:bb:ba:0e:23:8a:e1:1b:
49:52:e7:4c:87:8c:4a:32:04:7d:61:71:e2:59:92:
9f:35:24:13:25:83:4b:53:60:ee:df:e0:55:31:41:
1b:8b:ea:2f:8b:b9:24:11:af:46:e2:29:7d:a7:7f:
a4:62:17:d1:46:ab:5c:d7:22:56:09:8e:bd:84:e1:
92:47:c3:f3:72:8f:8b:b8:90:c7:32:57:dd:ca:70:
bf:db:10:dd:5b:12:f7:84:b0:55:06:39:03:b8:bc:
3c:83:48:75:b0:34:fb:5d:aa:ef:96:f6:a7:1c:40:
92:71:79:d8:8e:1a:38:bc:e9:c2:1a:13:4e:09:a5:
a8:5d:aa:30:78:5e:bf:ce:82:96:03:4e:bf:63:5a:
ba:36:78:9e:70:44:3a:37:c3:78:f9:2e:52:d4:25:
a1:ba:6d:4f:fb:a3:91:2b:83:67:da:42:52:ab:67:
f2:fa:5f:71:b3:57:9c:61:fe:cf:97:9b:5a:33:d5:
b7:f4:6e:8a:b8:b1:58:dd:96:6b:b9:52:b6:46:e6:
19:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AF:6F:76:64:9D:00:E8:46:78:19:68:D8:6A:57:4B:F9:69:91:60
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/Gq9vdmSdAOhGeBlo2GpXS_lpkWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.87.0/24
176.39.32.0/23
Signature Algorithm: sha256WithRSAEncryption
64:64:a5:8e:9e:bb:a1:46:dc:19:72:a0:39:cd:d7:8f:c8:32:
5a:ba:d2:97:02:33:0a:11:3e:cc:f3:45:e2:33:be:93:5b:e7:
5f:51:9c:00:5a:ac:51:da:45:ad:b9:d3:bc:70:0f:94:7e:32:
f2:7d:93:63:59:90:a1:4a:f3:c9:4e:90:d6:db:16:d9:9f:90:
04:a1:15:fd:dd:03:46:2c:23:21:d0:a7:40:5c:dc:ac:be:d6:
41:78:01:8c:0f:85:8d:8e:73:25:8f:c2:70:6d:0f:54:46:a0:
be:e5:ca:c1:7a:8b:51:02:44:4b:fe:1b:14:3f:78:a2:87:11:
60:0d:7e:30:f3:41:d2:43:9f:86:8c:a4:be:8b:78:d2:e3:2a:
a4:61:3e:07:6c:4a:dc:30:3f:f6:a8:94:95:ff:92:85:88:c3:
96:d7:85:e0:c9:cb:a7:fe:ea:78:3a:a4:bb:5a:e6:a5:0c:2c:
de:8d:4c:f2:2d:fe:7a:c2:57:05:52:bc:c0:9c:a1:87:8f:1d:
44:32:4f:48:48:cf:45:b8:9b:1e:c9:50:80:10:a3:f4:90:91:
35:d5:ef:59:07:d7:74:7c:4d:bb:c8:21:e9:79:f4:75:e1:13:
59:84:eb:1c:ce:51:d7:4b:8f:67:b9:5e:57:46:b7:4e:4a:03:
89:da:eb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org