Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/avgjvI85-_xiK1d0fLusudGsgDY.roa
File: avgjvI85-_xiK1d0fLusudGsgDY.roa (raw, json)
Hash identifier: H4x4l0YRvKAULULFeCHgFApOzEShDPeJW906OJDqaUQ=
Subject key identifier: 6A:F8:23:BC:8F:39:FB:FC:62:2B:57:74:7C:BB:AC:B9:D1:AC:80:36
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018451254F16321085A9797B9407CD4EB8DE
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/avgjvI85-_xiK1d0fLusudGsgDY.roa
Signing time: Mon 07 Nov 2022 08:11:50 +0000
ROA not before: Mon 07 Nov 2022 08:11:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52035
IP address blocks: 158.41.24.0/21 maxlen: 24
185.179.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:25:4f:16:32:10:85:a9:79:7b:94:07:cd:4e:b8:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 7 08:11:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6af823bc8f39fbfc622b57747cbbacb9d1ac8036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5f:24:a5:13:de:d5:4e:3a:d0:12:5e:80:1d:
10:77:9b:55:a6:b4:6b:a3:7a:36:7f:c9:d3:ab:cc:
2e:a7:cc:3e:a7:db:0c:c5:75:4e:d4:76:5a:fb:15:
f2:4a:47:0d:22:ce:1d:43:f4:2b:04:64:07:59:fa:
a0:7e:26:98:07:e7:5d:a0:a9:f8:04:2f:44:66:7f:
d0:6e:ce:54:d0:d5:6d:90:02:df:c8:dd:7b:91:07:
ce:2c:94:8c:bf:b6:58:8a:e8:17:a6:52:2d:c6:dd:
07:78:c2:74:e9:26:cb:34:27:e2:df:26:e7:3a:b3:
03:8a:df:69:4d:5e:8b:ab:42:ad:bb:8a:69:ff:9b:
b2:41:06:bc:b3:38:9c:9e:1a:66:c4:22:77:7a:94:
ad:30:f9:b5:e9:f5:da:1b:2b:cb:3b:f9:9c:5d:fa:
c9:b7:ac:d9:02:96:3a:de:ef:3a:ff:8d:b9:d9:ae:
ef:31:70:2a:64:fb:34:95:ec:07:15:59:b8:bd:d6:
6e:10:96:81:8e:1a:b8:72:3e:22:7a:0a:fc:2d:d3:
c0:43:ab:ee:e1:e2:28:d9:d8:85:e2:40:32:de:33:
e1:79:d8:28:ae:1d:29:97:d9:3d:df:d7:6b:7b:33:
cd:1e:85:5c:a5:a9:cf:a4:d9:7f:b2:59:ec:78:1f:
25:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F8:23:BC:8F:39:FB:FC:62:2B:57:74:7C:BB:AC:B9:D1:AC:80:36
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/avgjvI85-_xiK1d0fLusudGsgDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.41.24.0/21
185.179.216.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:06:b9:4a:39:01:86:0f:eb:7d:13:4e:9e:c9:cb:7c:d2:9d:
7e:86:fa:e1:49:46:ca:b0:d2:cd:7e:00:1f:36:8d:bd:75:c6:
98:54:99:07:1d:17:ce:7b:57:25:f1:c4:7e:d9:9b:da:2a:e0:
61:24:31:f3:4d:c2:ef:2a:e0:75:cc:ee:3f:36:7b:7a:da:32:
a0:f2:88:44:1b:e6:11:7c:27:70:d1:60:2f:23:c7:4e:de:7a:
a7:4a:7e:c6:e3:b1:41:b7:55:d6:47:b1:3c:1c:16:fd:f6:26:
e0:20:d2:ad:aa:9a:c5:4e:fb:3e:91:c6:c6:6c:ad:ac:95:52:
1e:a1:95:a9:39:7c:c2:ab:6b:42:c4:2b:13:f4:2d:af:f3:ea:
61:13:53:9e:a2:ea:6b:0b:c3:a4:63:70:f8:68:e2:64:a7:e3:
94:7a:4f:f1:be:91:aa:47:d6:e8:54:75:bb:29:01:37:8f:9d:
19:8c:a0:02:e2:9f:2f:4d:e3:ee:49:a9:ec:2e:05:3e:f9:13:
ca:6f:39:fc:af:5d:6e:a8:83:79:f8:02:28:b7:ff:04:9c:ea:
ac:06:ec:fd:50:37:5a:5c:fa:59:b9:d1:41:0f:e0:d4:1f:d5:
72:8c:21:41:09:3a:9b:cd:04:54:36:0d:61:b9:aa:a0:2b:63:
2c:69:aa:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org