Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/tAvchYZI0lZPOHtDt7OLWs86ZC4.roa
File: tAvchYZI0lZPOHtDt7OLWs86ZC4.roa (raw, json)
Hash identifier: 5q4uZYy4C9K7guhdw+Sclw43H274ENhHT8ZXbJGavN8=
Subject key identifier: B4:0B:DC:85:86:48:D2:56:4F:38:7B:43:B7:B3:8B:5A:CF:3A:64:2E
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0183CC43ECA9D1FD52F706B49234CD4696DF
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/tAvchYZI0lZPOHtDt7OLWs86ZC4.roa
Signing time: Wed 12 Oct 2022 12:55:46 +0000
ROA not before: Wed 12 Oct 2022 12:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 188.64.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:43:ec:a9:d1:fd:52:f7:06:b4:92:34:cd:46:96:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Oct 12 12:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b40bdc858648d2564f387b43b7b38b5acf3a642e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b8:bf:be:5a:7e:57:aa:1e:24:99:91:b0:e6:
ef:8a:c3:ff:b5:0c:65:24:ee:e1:e6:3f:8c:9c:f3:
d7:50:a2:ce:98:5e:19:14:24:42:37:c9:31:6e:d8:
ab:0d:14:9b:b4:4d:e4:26:aa:ac:97:b6:3a:85:54:
a3:a3:35:0a:e2:cf:1a:43:8a:5e:dc:d0:81:dd:35:
aa:f6:73:e6:09:d8:4d:54:8d:99:89:fb:fd:83:40:
81:28:aa:72:13:18:60:f7:5c:95:03:30:28:3e:5c:
bd:0d:0d:51:2b:41:96:b7:c7:73:53:b0:8a:78:09:
b9:e4:35:4f:ef:00:3d:db:16:49:58:f5:15:80:42:
37:34:61:01:ab:61:16:51:81:ee:c9:45:04:05:3c:
d3:c0:99:51:81:e0:29:b2:71:04:7a:11:41:f8:1d:
e5:4d:d4:83:a9:37:b6:1e:45:47:58:7b:e3:0f:fe:
49:ad:0b:71:d7:6b:3d:29:0f:2e:7c:53:a0:2f:13:
1c:ac:e5:9d:75:df:f8:79:6b:a3:e1:c8:ac:57:30:
90:c9:9f:f7:b1:92:68:3b:c6:52:21:d5:6d:fe:e3:
8b:80:c9:5b:a0:de:6b:1a:a1:02:42:f8:45:04:52:
3c:19:47:02:e0:32:af:28:76:50:62:e4:2d:05:f6:
e6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0B:DC:85:86:48:D2:56:4F:38:7B:43:B7:B3:8B:5A:CF:3A:64:2E
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/tAvchYZI0lZPOHtDt7OLWs86ZC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
17:d6:ef:93:22:ac:68:2f:aa:84:64:94:5a:55:22:75:bb:df:
f3:e5:01:e6:96:ce:6b:ea:90:94:e7:82:25:f8:52:dd:c2:64:
f7:00:6a:af:43:4d:f2:0b:05:70:28:d5:5e:4b:52:5a:1c:7a:
60:ea:51:66:36:0b:0e:30:76:1c:01:21:e6:6e:11:11:83:ed:
49:7e:a2:5b:fa:e9:91:82:b9:26:b7:91:9a:45:2d:bc:5f:9c:
09:86:53:e5:2d:99:d5:e4:a5:a9:fe:d0:4a:10:cf:95:20:4f:
63:35:97:24:9a:e6:f9:43:1e:31:4d:f8:48:bc:98:9b:b1:34:
d2:39:59:52:78:d6:b3:2f:e7:5c:6d:12:7f:c8:e8:15:09:33:
22:96:4a:ae:58:42:46:7a:36:85:8d:6a:97:e6:33:ed:88:1a:
39:56:b3:46:15:72:a1:11:31:96:0f:cd:be:9e:3f:d9:82:30:
38:d3:2c:37:ca:71:77:96:5e:aa:a3:45:c3:54:c0:97:1f:55:
ba:c7:42:1b:ec:36:74:4a:0b:84:64:1c:83:45:d4:1c:75:0f:
1b:f4:44:11:8a:90:7e:4e:12:54:b1:1b:5a:68:89:08:77:33:
15:ce:34:23:79:09:d9:1f:ba:b5:da:49:b7:c9:c4:88:4b:6c:
b5:9a:a0:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org