Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/r5RQG9akbh5xhRgyELdhK7wumNE.roa
File: r5RQG9akbh5xhRgyELdhK7wumNE.roa (raw, json)
Hash identifier: ofY+g5qvXA2cUzzZRzuwMkKD0l9lsHJEf4VMw3C57MU=
Subject key identifier: AF:94:50:1B:D6:A4:6E:1E:71:85:18:32:10:B7:61:2B:BC:2E:98:D1
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 071FD70F
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/r5RQG9akbh5xhRgyELdhK7wumNE.roa
Signing time: Thu 02 Jun 2022 08:07:20 +0000
ROA not before: Thu 02 Jun 2022 08:07:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35471
IP address blocks: 188.64.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119527183 (0x71fd70f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jun 2 08:07:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af94501bd6a46e1e7185183210b7612bbc2e98d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:98:a9:fb:db:e3:4d:b9:6a:f9:8a:bc:9b:
3b:3b:65:2e:09:43:74:8c:09:19:1c:9d:1b:af:d4:
62:ad:54:47:c0:00:4b:af:ed:10:f3:4d:8a:00:36:
c9:3d:6c:a9:cd:93:c6:02:3f:dd:f5:b4:1f:e5:9e:
e8:dc:c1:70:11:df:d8:2e:df:f7:f1:56:de:d9:08:
52:85:d6:95:3b:30:c5:5d:dc:4c:75:4f:e0:50:99:
81:a5:bf:42:e7:dd:ce:52:b0:3b:e2:70:d4:ad:ea:
50:dc:7c:ce:f1:a0:74:48:f3:11:30:3c:18:54:9b:
61:3a:ec:9a:a5:5b:fd:e8:07:da:30:9a:2d:66:71:
f9:b2:8c:ce:08:4f:bd:22:12:f1:4c:9f:79:28:4f:
90:53:76:19:7d:28:88:c7:40:2d:c5:15:7b:47:49:
cc:3e:b3:5a:56:9c:67:85:86:e1:cc:bf:7f:5c:97:
a1:89:de:43:9d:60:60:62:19:58:91:97:31:98:06:
c9:40:38:02:d1:f7:a7:dc:ba:64:9b:61:49:90:e3:
03:8a:41:7a:87:62:98:08:a6:2b:43:53:1e:f9:16:
44:09:07:a0:6a:86:b8:d8:14:bb:64:8a:8b:85:e3:
c8:4b:b9:37:c0:1c:aa:5b:14:86:a4:d1:b1:56:af:
0f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:94:50:1B:D6:A4:6E:1E:71:85:18:32:10:B7:61:2B:BC:2E:98:D1
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/r5RQG9akbh5xhRgyELdhK7wumNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.104.0/21
Signature Algorithm: sha256WithRSAEncryption
12:46:b9:64:07:0a:53:5f:42:6e:31:3c:e3:38:bf:30:96:6c:
03:c4:9b:28:54:19:97:57:a7:e3:e0:b6:34:56:cf:7b:b4:33:
d5:7a:ad:80:7b:33:4d:69:74:06:5c:5f:eb:2d:31:86:12:b6:
f0:d8:40:d4:c1:0f:b8:6c:92:c8:a2:a8:4c:9b:0a:0c:5a:82:
0e:3c:c8:97:f3:72:df:df:ed:ec:4d:30:aa:1e:ab:07:1a:f2:
63:91:38:6a:c9:b1:04:00:af:9c:ae:2f:41:08:e7:03:c1:45:
4e:9e:d8:07:1e:21:c4:71:a9:7d:91:3c:16:db:a6:91:7e:b5:
ec:03:d4:2c:3d:70:75:a3:ee:76:ba:10:05:c5:69:5b:37:be:
23:35:2a:0c:f5:3f:76:3e:84:65:7e:38:74:b9:4b:1d:eb:51:
55:0f:9a:c1:ef:3f:5b:c2:ab:83:02:0b:20:12:2a:89:12:03:
d8:a1:23:7f:00:30:8b:67:8f:69:89:db:b8:30:d9:36:d0:78:
57:8f:b7:50:f5:d7:3d:d8:a5:3d:3b:0b:b8:57:95:9d:4b:b2:
f7:71:dd:58:eb:de:8e:06:cd:fa:72:51:18:af:2b:55:67:f2:
0a:ce:e0:41:1c:b4:ae:5f:c3:5d:0c:b4:79:92:d1:74:4b:0f:
09:f1:1c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:40 2023 by rpki-client on console-fra.rpki-client.org