Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3be914-9d1b-4e0b-bfd2-8bfcf906f76a/1/G_ZTSIYvh_OCwTqpEayFIiD_wjM.roa
File: G_ZTSIYvh_OCwTqpEayFIiD_wjM.roa (raw, json)
Hash identifier: wJ+w2SJIZUHjvILgV+X+zf0AR8l6DQ47SBxBG/taNxY=
Subject key identifier: 1B:F6:53:48:86:2F:87:F3:82:C1:3A:A9:11:AC:85:22:20:FF:C2:33
Certificate issuer: /CN=c37a221b29dd463068c3a8d5cac146b057b5a9ed
Certificate serial: 031DADE7
Authority key identifier: C3:7A:22:1B:29:DD:46:30:68:C3:A8:D5:CA:C1:46:B0:57:B5:A9:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3oiGyndRjBow6jVysFGsFe1qe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3be914-9d1b-4e0b-bfd2-8bfcf906f76a/1/G_ZTSIYvh_OCwTqpEayFIiD_wjM.roa
Signing time: Sat 01 Jan 2022 08:02:37 +0000
ROA not before: Sat 01 Jan 2022 08:02:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28919
IP address blocks: 193.163.14.0/24 maxlen: 24
2a10:d100::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52276711 (0x31dade7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c37a221b29dd463068c3a8d5cac146b057b5a9ed
Validity
Not Before: Jan 1 08:02:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bf65348862f87f382c13aa911ac852220ffc233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:82:e9:36:f0:8f:ac:f8:33:5c:22:15:a9:c4:
18:17:31:ef:e0:6a:0b:36:52:c6:c4:3f:6d:d3:8e:
50:5e:99:e3:2f:8c:5c:df:4a:d8:86:94:83:59:ba:
22:6b:40:16:be:09:00:81:03:6b:d4:ad:f7:f2:30:
6b:9b:21:00:d3:f1:0f:b3:df:f0:84:f2:b6:16:a3:
2c:30:31:3d:4b:80:57:71:60:f1:cc:34:b7:51:92:
3e:36:f3:50:62:6f:9d:ae:45:6b:59:6d:cd:77:37:
00:57:fe:04:26:a0:80:c4:48:6c:bd:f0:41:f1:f5:
e7:ab:07:26:55:86:12:95:c4:75:40:b5:4e:50:6e:
35:91:98:80:94:d4:b6:39:55:12:d6:8d:18:7a:44:
3b:c4:1c:26:91:2a:c4:de:76:02:db:4f:c0:a3:cb:
5c:ae:1e:28:b6:8e:d5:a5:e4:e3:0b:f8:d4:2c:2c:
b8:67:a2:d4:d8:70:cf:be:5b:07:fe:21:5b:4e:d9:
67:90:6a:4f:a5:56:d1:31:cf:84:7f:7c:d4:ad:e2:
6c:f7:bb:54:a9:e4:0a:a0:f8:10:5a:b8:3c:e7:06:
37:d9:8f:d2:2a:4f:56:9b:a5:a7:4f:54:ad:f7:fe:
0e:70:48:74:88:9b:b1:f7:f9:29:22:ba:ee:07:ef:
60:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F6:53:48:86:2F:87:F3:82:C1:3A:A9:11:AC:85:22:20:FF:C2:33
X509v3 Authority Key Identifier:
keyid:C3:7A:22:1B:29:DD:46:30:68:C3:A8:D5:CA:C1:46:B0:57:B5:A9:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3oiGyndRjBow6jVysFGsFe1qe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3be914-9d1b-4e0b-bfd2-8bfcf906f76a/1/G_ZTSIYvh_OCwTqpEayFIiD_wjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3be914-9d1b-4e0b-bfd2-8bfcf906f76a/1/w3oiGyndRjBow6jVysFGsFe1qe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.14.0/24
IPv6:
2a10:d100::/32
Signature Algorithm: sha256WithRSAEncryption
50:b7:fb:97:a3:66:fd:a7:d5:df:f4:79:0a:40:e0:dd:c1:ec:
95:b5:3c:3f:2c:5e:9d:01:47:91:5a:81:d9:7b:36:94:a6:b9:
38:7f:9e:da:15:4d:fc:0a:53:f9:43:17:ff:6b:40:07:ce:27:
91:f6:a8:71:45:b4:6a:98:12:c1:5c:2a:3d:f9:27:da:d0:22:
5e:bc:71:a4:89:d2:c8:96:9b:4c:0c:2b:89:23:3e:48:6a:3a:
ea:39:ed:ad:f7:93:29:e6:ad:01:04:57:16:e8:4d:a5:94:1b:
1d:73:19:e8:9f:f6:ed:ab:06:f8:cd:e8:9b:2f:4e:4a:d4:34:
af:59:ae:8a:f3:d5:56:92:e9:0b:07:ab:60:c8:78:15:2e:f7:
0d:50:e7:83:8c:7a:3c:7d:ce:39:5d:57:7a:5d:d2:2e:87:2a:
3f:22:aa:02:7b:22:21:76:ff:19:c9:40:ba:67:27:d0:6e:e8:
b6:32:2a:06:e3:21:f1:0f:bd:1c:c4:96:a5:97:ba:ad:2c:d4:
66:f9:d4:db:cf:bb:68:a1:a2:a8:00:6c:ad:0c:2f:fa:fd:7b:
92:cd:b4:8c:ec:c2:1c:ed:52:58:b4:a9:4c:94:5e:f4:5a:de:
c3:d8:a0:4d:a9:72:b3:c2:c0:0c:15:db:dd:70:e2:c2:a2:92:
dd:90:44:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org