Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/GIU-muZISjZ8nVihrXdC4iyI3uM.roa
File: GIU-muZISjZ8nVihrXdC4iyI3uM.roa (raw, json)
Hash identifier: VMDe9+Mw8rycv3oPp/R23T+Ov56i8LTnDXXVFGxjJLg=
Subject key identifier: 18:85:3E:9A:E6:48:4A:36:7C:9D:58:A1:AD:77:42:E2:2C:88:DE:E3
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 037F6396
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/GIU-muZISjZ8nVihrXdC4iyI3uM.roa
Signing time: Wed 25 May 2022 13:06:13 +0000
ROA not before: Wed 25 May 2022 13:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206178
IP address blocks: 185.194.102.0/23 maxlen: 23
185.215.132.0/22 maxlen: 23
185.30.168.0/22 maxlen: 23
2a0a:49c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58680214 (0x37f6396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: May 25 13:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18853e9ae6484a367c9d58a1ad7742e22c88dee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d9:bc:9c:54:39:06:ca:22:a7:da:50:0d:f9:
5c:86:14:08:ab:21:9a:28:b8:91:fd:7d:20:c9:40:
9e:97:5d:d4:0c:60:03:df:85:62:7c:e5:03:5f:a3:
3d:b3:93:27:bf:c3:b7:ec:43:11:57:3f:58:c1:b5:
f8:d4:04:2d:b0:2d:db:b3:d4:76:9d:16:37:d6:a9:
22:5a:2e:87:76:1b:22:d7:89:86:3a:64:ee:e7:c5:
5d:10:28:89:00:7a:e7:b9:50:2c:7a:c6:db:a5:7a:
6e:8d:99:6a:33:4e:91:37:1a:b8:f2:2a:4e:24:49:
30:47:15:ae:53:39:7a:29:b3:07:47:2a:6d:e8:52:
77:92:24:92:8c:47:37:42:cf:3c:b8:ed:8c:bc:fe:
95:8a:d1:14:71:19:fc:d0:06:06:9b:54:5b:e1:bb:
8d:07:94:01:43:65:1a:55:aa:fb:aa:3d:ed:31:6a:
bc:59:85:c5:f8:53:23:30:f2:c7:4d:35:54:29:70:
98:74:9c:32:cc:52:8f:6d:b5:a5:8a:ae:9e:5e:da:
55:25:bd:d9:9d:c1:80:60:49:a2:1f:39:32:82:37:
23:af:91:84:a4:86:5c:dc:23:4e:83:2e:4a:d1:a2:
a8:07:74:4d:45:2c:63:96:63:95:a7:ce:f3:8c:cd:
ef:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:85:3E:9A:E6:48:4A:36:7C:9D:58:A1:AD:77:42:E2:2C:88:DE:E3
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/GIU-muZISjZ8nVihrXdC4iyI3uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.168.0/22
185.194.102.0/23
185.215.132.0/22
IPv6:
2a0a:49c0::/29
Signature Algorithm: sha256WithRSAEncryption
82:b7:2a:10:84:dd:64:54:78:b3:b4:be:28:3e:29:35:d5:7b:
7e:d9:a6:f5:30:41:d6:86:52:7b:fd:88:aa:58:84:64:fa:45:
6f:5f:d0:67:6f:6a:65:f8:b7:65:56:ae:70:73:ef:79:ea:51:
27:be:46:5f:e0:fd:0a:55:c1:a0:7e:8c:83:2a:04:ef:d0:25:
90:74:b4:c9:07:60:fd:61:c3:c7:67:c4:c1:ec:cf:39:63:5c:
fb:af:0a:ce:65:be:7a:d2:a9:61:ca:a8:a6:2e:6a:dd:c5:b2:
6f:cd:81:5b:42:3e:99:5d:cf:c8:20:8c:19:57:25:8e:d9:ef:
ff:86:7b:bb:7a:dc:ba:b4:7e:21:34:d7:24:4e:43:87:8f:a3:
f8:c8:76:cc:69:20:32:6c:ef:8b:f1:7e:13:1d:45:25:a8:69:
da:42:3c:e8:69:ca:fe:8a:7d:34:54:15:06:8d:c2:95:e1:ca:
34:ac:ac:65:19:39:99:6c:64:ed:a9:8a:dc:1b:27:10:39:cf:
4d:85:a6:8c:41:60:bd:6d:be:c1:7d:d7:68:66:2a:44:db:2b:
b9:40:e8:11:42:08:df:b6:cd:da:a3:e9:92:eb:97:b8:e6:f2:
99:b9:53:ea:86:20:97:3e:29:ad:60:a0:2a:b0:47:ff:2c:55:
69:1e:54:76
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:16 2024 by rpki-client on console-ams.rpki-client.org