Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/GeK-8Kw5fa_50FBbLAsKU9mZ9Uw.roa
File: GeK-8Kw5fa_50FBbLAsKU9mZ9Uw.roa (raw, json)
Hash identifier: fjW0wblxSJbB16BlPciI6r8zpTpD+fQR1X8Axn2olBk=
Subject key identifier: 19:E2:BE:F0:AC:39:7D:AF:F9:D0:50:5B:2C:0B:0A:53:D9:99:F5:4C
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3C3BB1E0
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/GeK-8Kw5fa_50FBbLAsKU9mZ9Uw.roa
Signing time: Fri 01 Jul 2022 05:46:02 +0000
ROA not before: Fri 01 Jul 2022 05:46:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62147
IP address blocks: 88.220.250.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1010545120 (0x3c3bb1e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jul 1 05:46:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19e2bef0ac397daff9d0505b2c0b0a53d999f54c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2c:11:cd:a0:22:a6:fb:f8:06:b7:69:da:d3:
44:1f:51:38:02:81:5b:9f:2f:63:3b:45:b6:8a:99:
79:38:52:34:82:8e:70:e7:6b:7a:e7:81:8b:57:b3:
e8:08:0f:a8:88:a7:02:cc:92:43:d8:a2:53:2a:f3:
a5:cf:3f:ad:d3:72:ed:4d:ec:f6:d6:6c:a6:cb:13:
f7:d3:9f:d7:50:9d:80:b0:08:f8:4b:b8:20:71:d8:
61:db:b6:d1:cd:0e:89:1c:3c:05:e8:19:3e:e0:bf:
5e:29:56:8b:0d:73:1b:d9:d8:29:2a:10:ae:9c:19:
e2:a6:d6:7c:ce:8c:27:4a:e1:b9:e5:10:02:5b:a1:
63:11:0d:84:0c:70:c7:8d:7a:a8:f4:18:e1:27:4d:
9f:83:a2:ee:9c:ff:de:e3:da:c3:58:47:b0:fe:34:
63:ad:bf:67:2e:bf:2f:ba:36:06:f0:d1:05:b4:34:
d6:47:1f:fa:69:82:ee:a0:1b:d0:d3:13:62:2e:dc:
77:a1:5b:b7:2c:c4:86:15:f7:e8:74:e3:32:f1:4c:
26:c0:6c:18:68:d1:e4:84:56:cb:fe:0c:48:e8:80:
97:c6:d9:44:2d:1d:e2:d3:54:42:49:8d:3a:ae:7d:
68:30:36:d0:d2:9d:83:d1:05:a1:ff:79:6e:e4:84:
81:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E2:BE:F0:AC:39:7D:AF:F9:D0:50:5B:2C:0B:0A:53:D9:99:F5:4C
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/GeK-8Kw5fa_50FBbLAsKU9mZ9Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.250.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:be:b1:85:1c:62:c7:af:89:21:0a:c3:77:6d:b5:4f:2d:df:
25:d2:26:3c:a2:2f:35:21:1e:f8:0b:80:01:4f:24:d7:13:04:
1a:91:4e:dd:1a:94:8f:bd:43:cc:ae:28:16:d7:40:e1:de:7d:
74:d4:da:47:bc:23:ea:60:e5:b7:3c:7c:d1:23:f6:fc:36:60:
d8:17:51:ba:1f:8e:51:22:4f:d4:d4:a7:2d:e0:9b:b2:67:0a:
b8:5b:be:01:90:ff:2d:ee:8c:42:cf:99:f3:a0:e8:26:0b:5e:
48:29:8c:d8:a4:4f:10:a2:dd:15:40:90:37:e0:cd:6a:69:69:
94:90:a7:e1:33:7c:7b:5d:50:d4:f9:9a:81:ac:19:aa:a1:10:
50:fa:2e:00:50:1a:0f:67:c1:02:91:68:ec:77:69:b4:bf:1c:
c0:90:4e:76:e0:85:36:2b:16:22:fa:23:03:9e:54:30:25:49:
de:26:0a:c9:c7:01:bd:39:70:d8:bb:b1:6e:40:e4:0c:ab:01:
4f:68:80:32:ff:91:55:4f:71:8e:8a:9d:fd:d0:c1:12:60:77:
d9:b3:fb:36:31:b3:55:a3:74:12:f3:f0:7b:8b:10:50:47:8f:
9f:d7:78:7a:9c:17:3e:9e:f2:10:51:02:8f:79:c3:19:f9:80:
50:4d:d2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org