Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1-scfWI_ypg8UeiegPe4kTirjQJY.roa
File: 1-scfWI_ypg8UeiegPe4kTirjQJY.roa (raw, json)
Hash identifier: 1rzQgH7YxPmMivNiyCgq1dYzA8hE3lxymnSo7BLDdIo=
Subject key identifier: FA:C7:1F:58:8F:F2:A6:0F:14:7A:27:A0:3D:EE:24:4E:2A:E3:40:96
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 073A8EFA
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1-scfWI_ypg8UeiegPe4kTirjQJY.roa
Signing time: Mon 13 Jun 2022 11:43:31 +0000
ROA not before: Mon 13 Jun 2022 11:43:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50832
IP address blocks: 188.64.104.0/22 maxlen: 24
188.64.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121278202 (0x73a8efa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jun 13 11:43:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fac71f588ff2a60f147a27a03dee244e2ae34096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8c:3e:dd:43:bc:81:c7:32:25:bf:14:69:9b:
9c:12:3e:88:92:eb:b7:4b:1a:d0:1c:86:7b:db:3c:
ae:9a:6b:b8:c4:45:f9:6c:3b:a6:14:0b:e4:b0:ce:
82:2e:16:8a:b6:d4:29:b0:ae:99:1d:ed:fc:61:df:
6a:32:bb:ba:0b:81:52:78:3e:10:26:5c:cb:f4:73:
e2:b4:2e:02:85:3b:48:99:31:db:25:f7:1d:1b:55:
bb:a7:3a:9e:13:1b:d6:69:25:d5:3d:b0:bd:fb:91:
60:19:89:51:df:83:93:9a:ff:a5:59:d3:73:06:36:
a8:f0:d4:b3:0f:db:62:e3:75:61:cb:06:25:0f:45:
17:ea:3f:2f:de:64:b5:26:fc:28:38:a7:76:e6:16:
36:93:50:b7:fa:1c:51:03:37:b1:03:3e:9b:92:83:
5f:3b:fe:51:63:4c:01:a6:d5:a0:b6:c9:92:fb:4f:
d1:65:3a:b8:ba:c3:3b:12:04:76:9d:5c:f6:61:f7:
37:ca:63:39:28:ae:20:ad:cf:66:db:2b:51:ac:ef:
e0:78:62:f5:ed:2c:6e:ae:fb:07:35:7c:51:25:26:
81:71:19:a5:bd:b7:66:aa:b7:cf:58:b5:ef:ce:2b:
bf:7b:90:c0:ca:7c:84:39:f0:0c:92:f0:ec:d2:26:
ca:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C7:1F:58:8F:F2:A6:0F:14:7A:27:A0:3D:EE:24:4E:2A:E3:40:96
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1-scfWI_ypg8UeiegPe4kTirjQJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.104.0/21
Signature Algorithm: sha256WithRSAEncryption
17:a4:36:0c:7f:2b:65:4a:76:1c:55:38:e4:55:bb:4b:64:7b:
e4:7c:35:a6:b5:8f:5c:5a:77:44:0f:66:90:c5:06:dd:22:3a:
19:ac:a6:ac:e9:2b:80:9f:fb:32:3f:fd:95:68:7f:f8:64:c9:
d3:53:47:60:d4:a6:66:f3:a2:5b:12:e9:63:8c:31:a8:52:86:
92:46:e2:ee:1c:e0:07:1d:d4:12:36:b3:49:88:af:c5:94:fa:
3c:55:2e:51:ef:80:20:4b:6b:5f:2c:0f:75:84:72:9b:78:9c:
1b:99:d4:9b:65:f6:8c:8a:57:e9:a5:28:c9:2a:35:38:b8:43:
f0:56:bd:ed:0a:80:6f:2a:c9:43:29:0f:e9:8a:01:89:56:4f:
da:14:05:08:1b:62:94:82:70:ea:6f:e5:f8:61:db:39:77:ff:
e1:cc:6f:b7:49:23:8d:cc:a7:ed:88:fc:f2:2c:47:98:43:15:
5e:49:05:33:eb:a9:d8:4d:64:0f:dd:51:17:56:b8:80:c6:61:
86:fa:84:cd:91:01:67:44:74:1b:55:29:3c:f8:af:4f:cf:b3:
bf:59:c7:c2:c8:32:37:52:d0:6c:ee:a2:d3:a6:dc:46:03:9e:
54:46:99:3c:25:bc:fe:6d:54:99:94:83:fa:f2:15:fd:98:d9:
28:30:d5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org