Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/gngTDUyFm5D1UCQ2diuoA0fxoME.roa
File: gngTDUyFm5D1UCQ2diuoA0fxoME.roa (raw, json)
Hash identifier: WhhJ1MlA/VBtB9qAwYxPFvbmXOHrsBbu31wXCH1Y8r4=
Subject key identifier: 82:78:13:0D:4C:85:9B:90:F5:50:24:36:76:2B:A8:03:47:F1:A0:C1
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 0184C89F1AED302258602233FD2B5D0BAC42
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/gngTDUyFm5D1UCQ2diuoA0fxoME.roa
Signing time: Wed 30 Nov 2022 12:59:41 +0000
ROA not before: Wed 30 Nov 2022 12:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.178.115.0/24 maxlen: 24
193.178.31.0/24 maxlen: 24
193.178.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:9f:1a:ed:30:22:58:60:22:33:fd:2b:5d:0b:ac:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Nov 30 12:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8278130d4c859b90f5502436762ba80347f1a0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:52:f9:dc:5d:4c:06:95:51:d7:90:d4:da:ba:
ea:a2:c4:eb:96:62:14:c0:af:fc:ea:ff:8b:e5:73:
f8:10:83:79:a8:f7:26:8f:2c:46:ba:d9:4c:6b:5d:
f4:ba:cc:f4:08:4e:ca:ae:84:5e:e0:3e:3b:08:47:
28:4d:b7:30:05:10:16:b2:27:ed:d9:3b:de:b8:a1:
14:2d:a5:e2:ed:ba:b0:ba:60:8c:ae:45:36:86:34:
5e:1a:e1:d9:9d:bb:6b:29:0f:ad:1a:6e:7f:87:76:
60:c9:3a:0a:07:7d:2f:8b:36:0f:71:7d:3e:d9:d3:
20:f5:e2:44:1c:63:fc:f2:bd:53:4c:d8:bc:56:45:
ee:53:b6:4b:26:50:bb:3d:90:a3:f1:7b:11:7f:a6:
ac:85:87:91:91:a6:e0:4f:f2:77:e9:18:a7:e9:9a:
8f:c8:14:5d:9c:a0:2f:49:7a:50:17:67:54:78:43:
c7:41:00:39:cc:3a:ac:16:30:2d:b1:34:58:1d:03:
9a:38:5f:07:2a:b2:7f:ca:24:e7:42:ad:c7:5d:17:
52:1d:56:d1:a5:77:36:7d:4b:cd:60:6c:ea:30:ae:
33:c2:47:b8:b0:42:12:e7:f9:c0:0c:ff:c0:2e:d3:
32:6a:74:47:a1:d7:05:6d:ba:b8:58:bc:fe:f8:6b:
7d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:78:13:0D:4C:85:9B:90:F5:50:24:36:76:2B:A8:03:47:F1:A0:C1
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/gngTDUyFm5D1UCQ2diuoA0fxoME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.31.0/24
193.178.52.0/24
193.178.115.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:a0:3d:32:38:e0:0c:6d:70:df:d2:67:c5:b6:e9:2f:6b:17:
8a:6c:d6:9e:74:a4:a8:66:ef:7a:84:27:6f:f9:4f:d7:8d:af:
fe:6a:7c:bd:a6:9e:4a:a5:0f:55:5c:5f:09:ab:3c:82:81:21:
17:db:97:9a:99:89:dd:66:c8:18:9f:2c:ed:2a:81:4b:6f:27:
f4:cf:06:bf:f7:5e:09:52:87:2a:a7:1e:33:78:c8:c3:7e:ec:
c2:88:7a:2e:5b:e1:f9:d0:e6:2c:ef:94:77:79:57:82:de:35:
e2:af:ed:4a:d9:82:98:2a:c3:97:23:00:ab:12:41:ab:72:5d:
a6:be:0b:79:4c:13:8b:70:d1:e5:f6:5d:66:a8:7e:35:83:bd:
d7:84:2e:85:f5:b0:4f:f9:11:6c:4b:41:88:27:84:1d:70:c9:
25:17:17:c2:bf:e8:ef:30:30:78:1a:5b:72:3c:57:bd:e9:22:
d7:b8:4f:d3:55:20:5e:e1:88:77:80:d7:43:0e:83:4b:fc:aa:
5a:9f:a4:ac:fa:41:09:9e:a9:71:22:67:21:88:38:37:f7:46:
be:90:70:77:22:70:6b:52:d7:3f:5f:11:a1:34:20:8c:1e:47:
63:01:3f:bf:42:8e:cf:a9:8e:19:b7:ad:55:e8:3c:76:33:30:
ea:f3:f3:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:44 2023 by rpki-client on console-fra.rpki-client.org