Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/4c4cd2-6c70-4db9-94f6-b637381b4f79/1/GXUPHTscXE-8BxSNZ8m9zZh4tmc.roa
File: GXUPHTscXE-8BxSNZ8m9zZh4tmc.roa (raw, json)
Hash identifier: ofJm15CTr7ogpq6rSnkZPnF0FetsTVcRRWoOcXTjCWY=
Subject key identifier: 19:75:0F:1D:3B:1C:5C:4F:BC:07:14:8D:67:C9:BD:CD:98:78:B6:67
Certificate issuer: /CN=88e8e1cafa7b604859840c57af48e817c327f644
Certificate serial: D68DA9
Authority key identifier: 88:E8:E1:CA:FA:7B:60:48:59:84:0C:57:AF:48:E8:17:C3:27:F6:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOjhyvp7YEhZhAxXr0joF8Mn9kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/4c4cd2-6c70-4db9-94f6-b637381b4f79/1/GXUPHTscXE-8BxSNZ8m9zZh4tmc.roa
Signing time: Sat 01 Jan 2022 07:54:57 +0000
ROA not before: Sat 01 Jan 2022 07:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399130
IP address blocks: 185.104.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14060969 (0xd68da9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e8e1cafa7b604859840c57af48e817c327f644
Validity
Not Before: Jan 1 07:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19750f1d3b1c5c4fbc07148d67c9bdcd9878b667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:28:f6:80:6c:d4:80:0b:bb:ab:71:db:d3:64:
ed:d3:2d:c2:73:20:f0:55:03:66:14:47:db:14:15:
d3:3d:64:90:51:1e:fd:02:d1:24:c9:66:41:cb:c3:
4c:80:35:1f:62:e5:02:37:3b:bf:14:40:13:b1:c6:
bf:74:ef:b6:be:04:26:4b:e0:1f:dc:68:2a:ae:f2:
30:a7:1a:01:0e:9a:26:03:37:59:d2:67:4b:94:7f:
52:17:34:16:f6:2c:2a:14:0f:06:44:ef:25:34:e7:
12:24:f1:8d:2f:7a:47:cc:0e:bd:75:f6:c1:7e:c4:
26:5a:64:6b:fc:a4:5c:ba:08:2d:ea:d2:8f:84:ae:
0d:1a:1c:ab:87:9b:90:13:fa:1a:0c:88:88:83:dc:
9f:27:4a:16:6b:28:16:cf:3e:75:ae:85:7e:e1:d0:
67:00:ef:b7:bb:44:fc:f5:3e:3f:42:aa:a1:24:45:
d1:d3:2a:ea:41:00:02:ed:ce:e5:f0:d5:f9:90:7d:
f0:8a:cf:3e:6f:2f:1e:27:89:fc:af:85:d5:fe:74:
e3:36:e4:0c:29:86:ac:34:6b:a2:31:0b:23:4a:ba:
b9:4d:37:a9:cf:50:09:07:d6:5e:c1:cf:58:69:b2:
3f:48:eb:bd:55:4b:2a:ce:f5:aa:bc:32:68:94:f5:
98:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:75:0F:1D:3B:1C:5C:4F:BC:07:14:8D:67:C9:BD:CD:98:78:B6:67
X509v3 Authority Key Identifier:
keyid:88:E8:E1:CA:FA:7B:60:48:59:84:0C:57:AF:48:E8:17:C3:27:F6:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOjhyvp7YEhZhAxXr0joF8Mn9kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/4c4cd2-6c70-4db9-94f6-b637381b4f79/1/GXUPHTscXE-8BxSNZ8m9zZh4tmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/4c4cd2-6c70-4db9-94f6-b637381b4f79/1/iOjhyvp7YEhZhAxXr0joF8Mn9kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.191.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:e5:b9:60:31:f9:5f:b6:9e:12:0a:8c:31:ec:45:c8:f4:37:
f6:9f:15:bc:25:92:1f:78:94:22:3e:d3:d6:36:ad:25:f8:4f:
16:76:c1:07:d6:22:fb:5c:86:2a:6c:09:be:39:b8:2a:0f:14:
9a:60:65:d0:26:a5:08:5e:a4:b8:5c:5e:80:dd:00:b6:55:62:
29:b6:61:58:38:fe:5d:ad:ab:67:6e:96:38:7d:f0:00:95:f8:
d4:b0:e5:4a:f6:58:ec:75:89:7c:8e:c3:ec:e1:f4:bd:ed:2b:
39:70:87:7a:a9:f4:d3:64:2d:91:68:e1:96:e4:0d:83:5e:cf:
8a:4f:58:92:ec:39:fc:d3:39:f7:d9:27:56:70:02:4a:3c:f5:
25:ef:65:45:a9:21:57:2d:dc:05:a0:2e:18:45:f7:f6:1a:eb:
a2:f2:00:b9:8b:76:5f:55:aa:a4:fe:8d:6a:5f:b3:87:bd:d5:
b5:3c:59:8e:17:dd:99:2b:52:78:59:0d:96:09:ab:57:35:ea:
94:14:95:c5:28:8c:c5:c1:d7:53:15:49:5c:97:56:eb:e4:ea:
9c:69:c4:39:21:d5:dd:75:b4:c4:72:45:04:e4:a8:81:91:ee:
8e:c9:c7:18:0c:a8:5a:35:9f:8f:59:6a:e4:27:89:db:c8:1a:
31:03:b1:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:07 2023 by rpki-client on console-fra.rpki-client.org