Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/uJqFaI2dmRv3DL9jnXOmuozdIps.roa
File: uJqFaI2dmRv3DL9jnXOmuozdIps.roa (raw, json)
Hash identifier: GiuzNwbt3SwgJi18ArSou0V+S3JlGn99VUfOdRY5k8M=
Subject key identifier: B8:9A:85:68:8D:9D:99:1B:F7:0C:BF:63:9D:73:A6:BA:8C:DD:22:9B
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0183CC476D4EFE36E02F1F2A83CB3E558534
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/uJqFaI2dmRv3DL9jnXOmuozdIps.roa
Signing time: Wed 12 Oct 2022 12:59:36 +0000
ROA not before: Wed 12 Oct 2022 12:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35471
IP address blocks: 188.64.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:47:6d:4e:fe:36:e0:2f:1f:2a:83:cb:3e:55:85:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Oct 12 12:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b89a85688d9d991bf70cbf639d73a6ba8cdd229b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d0:ce:cd:c0:0b:ca:7f:7b:09:39:10:67:6c:
b6:6e:fa:03:00:ae:97:fa:72:5a:b4:9a:af:55:28:
46:33:64:90:cc:c4:f0:b2:6f:ed:e9:79:fd:5d:2e:
a6:06:93:df:5d:9e:01:5f:7c:f5:d9:ba:5b:6b:99:
6a:cb:76:fb:0e:2e:0c:ee:fc:83:72:40:02:12:fa:
7b:60:dd:02:32:8f:92:22:df:a2:7f:75:56:eb:6f:
ce:ee:aa:93:bf:95:ea:f9:12:42:1f:da:96:86:f8:
1e:09:17:40:e5:85:86:e1:0e:1e:a4:aa:da:53:14:
b0:a4:1f:a0:8a:7a:62:34:25:14:3b:77:57:78:c8:
d3:af:da:76:d7:9d:60:6b:90:d4:d1:5b:12:6c:b2:
d8:d6:d7:bb:2e:74:0a:ce:da:3e:57:49:76:89:81:
b2:df:94:43:22:aa:d3:c4:cb:83:6b:cf:a4:f6:4a:
c9:fc:7e:25:28:ed:28:e4:ad:b8:77:1b:25:2c:5e:
31:8a:9f:42:c6:a5:8b:36:21:ed:82:59:8c:ad:68:
79:be:5c:d7:9c:08:8e:7d:2a:eb:47:5c:e5:ed:28:
f2:f4:ee:1e:43:95:8b:61:fb:9c:dc:9b:a5:f4:c7:
ea:54:42:9e:67:05:e9:df:68:18:44:88:08:d2:d4:
ec:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9A:85:68:8D:9D:99:1B:F7:0C:BF:63:9D:73:A6:BA:8C:DD:22:9B
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/uJqFaI2dmRv3DL9jnXOmuozdIps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.104.0/22
Signature Algorithm: sha256WithRSAEncryption
04:8c:36:f9:82:dd:75:5d:3a:b2:10:e8:e1:a5:e1:9e:d2:df:
ff:14:e2:bb:ee:c0:e8:b8:53:18:8c:ac:51:cc:a4:24:88:cb:
61:b5:49:90:6c:fd:9c:95:14:f1:b0:b4:c4:fc:64:b0:8a:ae:
64:55:8b:96:46:04:a1:e1:fe:fd:55:3d:32:2c:79:24:1a:db:
f3:58:76:b7:5b:84:d5:7a:fc:de:e6:00:c9:be:8c:9e:a6:31:
0e:11:62:a8:bb:95:31:ad:68:58:6e:83:d8:13:90:22:44:dd:
9d:65:f7:a6:51:a0:7a:13:bc:f9:73:b1:30:a4:3f:ab:ce:c4:
10:cb:66:cf:80:ae:ef:fa:b1:73:27:1d:27:eb:d2:62:4a:94:
36:c4:db:84:8d:81:1b:a1:8b:6c:2f:8d:77:19:38:ba:d1:ec:
e6:71:75:ba:bd:f6:87:a4:6e:23:2c:dc:cb:e1:ff:13:5a:7b:
9d:6a:9e:34:76:3e:60:0b:8d:07:57:2b:b1:ef:c0:98:48:16:
bb:d5:bf:36:9c:38:5d:e4:42:11:4d:47:0b:ca:2e:13:f2:f0:
a9:84:7e:79:af:db:00:7c:b1:ad:b4:28:5b:07:bc:10:10:34:
56:72:60:d4:a5:90:90:f9:bf:27:b1:19:64:82:d8:45:df:9e:
80:78:2f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org