Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/I24kCinqI0zzAJ-NJ_MWqRrqj58.roa
File: I24kCinqI0zzAJ-NJ_MWqRrqj58.roa (raw, json)
Hash identifier: getM70uvIiZWAUKO0zxcHGzxcp5MwJwEN84sEG8848c=
Subject key identifier: 23:6E:24:0A:29:EA:23:4C:F3:00:9F:8D:27:F3:16:A9:1A:EA:8F:9F
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01849EA8D8E2C89B52A308E83227746F5447
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/I24kCinqI0zzAJ-NJ_MWqRrqj58.roa
Signing time: Tue 22 Nov 2022 09:26:16 +0000
ROA not before: Tue 22 Nov 2022 09:26:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 148.222.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:a8:d8:e2:c8:9b:52:a3:08:e8:32:27:74:6f:54:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 22 09:26:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=236e240a29ea234cf3009f8d27f316a91aea8f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6f:99:5e:1a:a8:4c:41:b8:bc:99:e8:a1:ec:
0d:b2:4b:ca:87:02:e5:43:a0:5c:c0:5c:70:5b:1b:
de:33:bc:eb:a5:40:03:81:11:0f:95:0a:62:a2:e1:
c9:e7:4c:f9:94:4f:75:e4:ce:ef:bc:43:71:ec:ba:
eb:e6:ea:4c:01:59:72:aa:79:d1:17:a4:27:e1:03:
16:b2:82:bc:eb:ec:09:20:ac:93:dd:26:3a:6d:eb:
d0:fd:3f:54:ad:ed:87:ca:d7:50:02:4e:1f:1d:a0:
67:b5:f6:44:da:5e:54:7c:cf:0e:b9:47:40:b8:09:
dc:a1:d1:6c:05:ae:0a:41:46:a4:5f:5d:3e:5a:6f:
d2:43:6e:e3:95:e3:5c:f6:06:9d:79:7f:5c:8e:84:
bc:9c:af:b5:67:43:3f:ce:3b:cd:09:37:9f:da:a0:
d6:c4:40:54:eb:a0:e2:ae:8b:39:f4:41:bb:d8:f4:
42:af:06:80:14:0a:c3:f4:0c:b8:d5:6d:16:16:9a:
63:39:ca:d3:04:a2:39:4e:9d:52:2c:32:2e:ad:8d:
c7:ee:0f:9d:8a:5f:3e:5a:6d:10:57:5d:1e:35:2d:
dd:2e:4c:f0:1e:f2:ac:45:f8:28:49:69:30:d3:48:
ef:f7:62:92:79:8c:3d:a0:68:d7:fb:00:4c:70:f2:
69:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:6E:24:0A:29:EA:23:4C:F3:00:9F:8D:27:F3:16:A9:1A:EA:8F:9F
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/I24kCinqI0zzAJ-NJ_MWqRrqj58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:72:1c:f1:b6:c0:67:36:6c:dc:16:3c:47:8e:e2:94:dd:95:
24:77:46:3d:31:b2:9c:ae:95:9d:95:b3:13:a7:86:9e:69:b9:
e3:18:62:30:6e:c2:70:f7:bb:fb:20:df:27:1c:f1:04:29:4d:
4c:19:05:45:33:33:39:26:bd:6e:32:c1:be:b2:0a:bf:78:9a:
c8:03:e0:41:e0:d6:7a:94:33:95:04:c5:a7:57:a3:64:c3:3a:
f6:c3:a0:e8:91:81:3f:68:cb:5a:ca:e5:38:2b:4c:48:12:f0:
75:5c:6c:3b:40:63:5c:e3:e6:9a:56:48:66:ca:91:f6:f1:e1:
2c:6e:51:6f:b7:91:d2:5f:6f:b0:f3:c8:81:a9:13:0a:a0:0f:
1b:a6:b0:56:aa:69:60:6a:d5:61:c6:ad:8f:df:99:78:83:79:
ce:1e:87:1c:85:26:e7:ea:13:64:2f:5d:07:78:9d:f8:a1:81:
49:19:48:18:0f:63:07:31:7f:28:59:ef:e7:f6:54:66:72:0f:
42:5d:8a:a3:be:84:68:30:b3:c1:f2:d9:81:34:16:7b:b2:96:
3a:bb:ed:54:b5:e1:c0:dc:ac:5b:32:6a:7a:8e:f1:24:b7:6d:
98:d8:a3:53:7e:67:9b:57:3f:a1:47:18:8d:1f:d1:7b:a5:27:
4c:e3:53:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org