Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/rpFwhp1GPKOZcGbcrcaoiUVI4t0.roa
File: rpFwhp1GPKOZcGbcrcaoiUVI4t0.roa (raw, json)
Hash identifier: HMDHz9fD9rtQJxWaHFJXaFQ2Qc4kYGR3txql2rJ573U=
Subject key identifier: AE:91:70:86:9D:46:3C:A3:99:70:66:DC:AD:C6:A8:89:45:48:E2:DD
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01831C32A063F4E0682CF145FD19AB165EB9
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/rpFwhp1GPKOZcGbcrcaoiUVI4t0.roa
Signing time: Thu 08 Sep 2022 08:23:43 +0000
ROA not before: Thu 08 Sep 2022 08:23:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 188.64.104.0/22 maxlen: 24
188.64.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:32:a0:63:f4:e0:68:2c:f1:45:fd:19:ab:16:5e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Sep 8 08:23:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae9170869d463ca3997066dcadc6a8894548e2dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c9:f7:91:d0:10:d0:3f:ee:85:59:60:a6:33:
fe:02:ec:71:16:f3:1c:d9:cc:c4:f1:ac:14:b0:34:
f7:b2:14:5a:d0:c9:3f:3b:1d:e3:7f:4f:6a:14:1b:
a5:a2:8e:08:be:08:d6:a0:ad:8a:76:6c:4a:8a:9b:
9a:eb:ae:79:e2:7b:98:1b:c5:67:e6:ea:3c:48:fa:
e4:ce:3b:8e:3f:78:8f:49:26:ac:2d:ba:e9:09:5b:
77:6b:d7:25:06:5f:ad:cc:db:13:7f:2a:6e:d5:43:
c3:9a:e2:09:35:b4:07:43:2e:ed:58:12:cf:b5:bb:
2f:6d:13:20:a1:90:79:91:34:d9:7b:e0:1b:50:dd:
e9:2b:b4:68:5e:1e:51:d4:c6:8a:11:fa:0e:08:e9:
ef:bc:45:be:de:e2:7a:33:aa:ad:4b:a2:dc:24:6a:
ce:e3:71:c1:f6:37:92:5f:5d:eb:5a:b0:d9:80:e9:
04:fd:73:9a:26:55:a1:f0:a3:82:57:b2:83:11:0d:
d1:2b:10:f7:bb:c8:0a:66:36:53:cd:27:6f:b2:0c:
1a:29:1e:8a:d2:1b:89:d6:66:b0:21:87:71:6c:6a:
f7:21:d0:06:19:6a:fc:8a:4a:2d:ae:da:57:26:26:
27:c9:2f:4a:3e:65:ee:c6:a0:be:a7:db:ee:3e:39:
a2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:91:70:86:9D:46:3C:A3:99:70:66:DC:AD:C6:A8:89:45:48:E2:DD
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/rpFwhp1GPKOZcGbcrcaoiUVI4t0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.104.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:65:22:b0:95:42:12:03:d3:9e:5a:ad:97:e5:f3:71:22:3e:
55:f5:df:fd:06:25:46:2a:46:7b:ef:fd:92:f9:18:aa:8d:8f:
37:8b:40:b5:1d:af:0f:ae:42:68:cf:27:fa:b3:93:51:0e:cc:
7a:48:db:fc:67:57:40:c1:51:c7:d4:34:90:da:b6:a0:e6:50:
61:ed:d5:bc:b6:21:bc:22:61:39:fa:84:ea:ac:e9:8f:e9:81:
b2:28:04:58:87:1a:1a:4e:8d:47:59:3f:bd:e1:58:45:66:8d:
c6:72:e6:e3:48:33:f8:c4:64:90:cc:42:de:4e:ea:31:7d:16:
0c:f8:02:63:f2:6f:e5:62:a7:5f:f8:c8:4b:36:76:92:57:db:
3b:4b:b2:47:fa:66:2d:03:7c:a7:37:e4:87:1f:be:8d:88:8c:
10:db:3f:4c:f8:74:c1:54:b7:7b:35:cb:68:3c:70:a3:b0:db:
44:2a:04:3c:c3:9b:ee:b9:c7:ea:98:07:ca:4e:d1:31:d2:1a:
24:84:ad:06:6b:b2:05:18:50:ef:51:4b:73:2b:a8:c2:0b:9a:
15:60:b6:94:df:0c:7a:26:ac:cb:ac:96:61:76:d8:8d:aa:62:
fd:3d:e3:64:2a:a4:ea:1c:0a:66:09:41:a7:99:16:0e:7f:a6:
2c:08:f5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org