Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/SGC_uFRrcWjn9ezR5JAOlRlUxIY.roa
File: SGC_uFRrcWjn9ezR5JAOlRlUxIY.roa (raw, json)
Hash identifier: NhgIywR3KfKWnzbdv6j3c6+bG42ZrMK3HyDmmZlPtOs=
Subject key identifier: 48:60:BF:B8:54:6B:71:68:E7:F5:EC:D1:E4:90:0E:95:19:54:C4:86
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 0530213E
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/SGC_uFRrcWjn9ezR5JAOlRlUxIY.roa
Signing time: Sat 01 Jan 2022 12:57:14 +0000
ROA not before: Sat 01 Jan 2022 12:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211947
IP address blocks: 195.64.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87040318 (0x530213e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 12:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4860bfb8546b7168e7f5ecd1e4900e951954c486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cd:52:8b:eb:c5:04:f5:6e:d8:96:d1:df:f9:
d3:fd:a2:91:af:de:b0:5b:eb:a2:5c:9a:0f:b3:44:
a7:ee:c9:f0:ef:da:56:2b:84:d4:91:b2:57:0c:c7:
bf:a4:dc:05:0f:fe:c7:c8:9c:f4:2e:6c:72:68:d2:
79:4f:13:2b:27:f6:81:35:7e:99:c0:90:eb:6d:ac:
6a:de:27:0d:da:d5:65:9a:cf:61:b1:ff:82:57:fc:
f5:74:e6:b7:ba:1b:ab:b1:b6:78:c9:05:0f:65:ee:
98:93:1e:a5:0e:ce:2e:ae:9a:a9:dd:52:4e:28:7b:
9b:9e:dd:94:2a:44:84:c7:36:5a:87:84:4b:16:e2:
3f:93:79:ec:3b:91:5d:c0:f3:b9:d8:fa:f6:7e:13:
d1:80:aa:3a:31:d5:69:9a:7c:aa:5b:eb:61:ff:ca:
47:f6:5d:3a:62:13:fd:66:47:ce:7a:cc:7f:bd:31:
ca:00:f7:68:d0:bb:2f:63:60:c7:c1:e1:2c:a9:e3:
4e:f9:4c:db:d4:0a:aa:38:77:7e:4d:0f:61:1b:f0:
f1:ad:4b:3a:0e:4b:c3:a6:57:c6:0d:fd:1b:5c:1d:
63:5e:2c:cb:39:ab:37:f8:a8:64:d5:5a:fc:44:15:
e2:cf:f5:b8:4e:13:84:8e:02:81:1e:fa:3e:de:47:
eb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:60:BF:B8:54:6B:71:68:E7:F5:EC:D1:E4:90:0E:95:19:54:C4:86
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/SGC_uFRrcWjn9ezR5JAOlRlUxIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.231.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:fb:e2:85:f8:b8:59:c6:14:3f:8b:f1:aa:71:18:12:8e:cc:
b6:5a:82:d3:a6:13:6b:0f:d6:fd:e5:9a:fa:57:b7:16:ee:cb:
6d:af:33:36:c5:49:35:9f:ca:72:26:57:ba:a7:21:49:1c:03:
d5:86:f0:37:d0:78:07:e2:4f:0c:bf:a9:b2:a1:01:a4:c6:b7:
54:49:33:d4:cf:4d:e8:21:8e:4c:20:b0:66:da:68:64:71:79:
a0:04:ee:c2:b1:8c:a8:ff:e7:2f:57:47:48:8c:47:77:bd:2a:
45:29:9b:a1:80:c7:30:cb:3c:c8:5c:11:f2:97:ad:11:e1:0f:
08:66:75:d6:68:e7:b7:bb:46:ec:95:0d:d9:e1:db:47:30:07:
52:b9:57:45:e9:c6:23:fb:25:e2:2f:e5:27:3d:96:f8:ea:33:
90:e5:1d:d4:a3:06:86:3c:24:3a:0d:a3:67:fe:93:79:89:a2:
f1:31:f5:d6:12:34:d6:28:bd:19:2f:40:81:ed:88:0c:55:7d:
23:76:2f:79:6f:60:31:a1:3f:cb:96:82:60:6f:d1:66:4c:e8:
c5:64:1d:79:36:31:e0:f8:54:23:5a:00:58:66:9c:c8:bb:e3:
b9:08:f6:76:1d:33:63:1d:5c:87:f4:89:4c:1f:ea:54:e0:11:
5e:bb:89:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-ams.rpki-client.org