Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/GukzVqofAaVgYY-Llfys49qoEp0.roa
File: GukzVqofAaVgYY-Llfys49qoEp0.roa (raw, json)
Hash identifier: K020QHJcLiGmmiBtVoHHNhRUZSLgUeM2zE2ssvPy0bk=
Subject key identifier: 1A:E9:33:56:AA:1F:01:A5:60:61:8F:8B:95:FC:AC:E3:DA:A8:12:9D
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0183B28F45987E57EBB8131C64DD130D7516
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/GukzVqofAaVgYY-Llfys49qoEp0.roa
Signing time: Fri 07 Oct 2022 13:07:57 +0000
ROA not before: Fri 07 Oct 2022 13:07:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 194.246.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b2:8f:45:98:7e:57:eb:b8:13:1c:64:dd:13:0d:75:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Oct 7 13:07:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ae93356aa1f01a560618f8b95fcace3daa8129d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:57:fc:37:9b:b6:bb:df:69:e9:36:77:5b:22:
42:55:76:ba:8a:fd:fa:e4:b6:e4:75:1c:fe:fb:73:
79:a7:07:fa:38:55:2c:17:5d:5b:cc:b6:46:a5:8e:
24:e6:a3:eb:06:7f:80:c6:6e:99:ba:5f:da:41:bd:
99:e4:b9:68:7c:c3:fb:35:5c:60:09:fd:19:a8:2a:
8c:3b:9e:e3:a7:55:ef:4f:a1:de:d7:e7:96:c1:dd:
50:f4:f0:51:fd:cc:f5:2c:8a:0c:ed:32:35:69:7f:
7c:a1:51:9c:08:6d:32:12:f9:64:34:39:03:b6:6c:
a7:5f:19:13:ce:3f:a3:aa:e5:a5:84:92:00:0f:5a:
00:72:de:4a:8b:8c:bb:ce:99:52:30:b5:fb:97:b8:
89:d2:a8:e9:93:23:df:8a:19:f0:08:34:95:87:44:
1c:95:86:53:ef:0c:86:c2:15:0b:8f:7c:4a:c1:d3:
f2:8b:c7:33:fe:17:c2:dc:27:e3:d7:fa:af:7c:32:
54:9a:e9:91:4a:76:c7:f9:59:1b:be:30:12:f2:05:
0d:e9:aa:13:f4:f8:5f:74:95:f5:6e:f1:0b:2c:0b:
26:5b:d5:05:c9:bd:f1:66:65:49:44:4e:95:09:ac:
fe:3b:ef:fd:8d:2c:67:33:cf:22:a6:3b:72:61:6c:
15:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E9:33:56:AA:1F:01:A5:60:61:8F:8B:95:FC:AC:E3:DA:A8:12:9D
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/GukzVqofAaVgYY-Llfys49qoEp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.37.0/24
Signature Algorithm: sha256WithRSAEncryption
73:e6:4b:a7:34:d8:3b:7b:c3:81:70:81:91:09:81:a2:16:e9:
ab:ce:6d:ea:0a:32:7a:89:a3:a8:3b:7f:16:60:db:7d:51:00:
42:10:8d:f8:bf:ea:4f:44:e8:88:b4:3c:c1:e4:da:ba:6f:a3:
f7:ea:8e:4b:72:db:91:15:bd:12:2c:22:b2:85:89:7a:80:77:
c5:0b:87:23:4a:68:3b:97:dc:1b:89:37:82:ac:04:db:59:10:
5d:a8:76:05:99:18:6f:6f:33:85:c5:6b:d5:bc:42:be:5c:b8:
7d:6d:4b:fb:71:1e:f7:b4:2d:f6:49:2b:d4:dc:24:f1:8a:29:
42:e7:44:73:91:81:49:88:a0:ae:87:ec:3e:23:3b:40:19:6a:
31:fb:21:2c:b4:27:b1:cd:65:39:88:f5:c2:a6:1e:78:cb:30:
63:6f:e5:f9:b5:60:3a:65:57:a9:80:8b:0a:c2:37:56:e3:74:
95:39:14:82:2b:76:21:69:fa:55:03:5d:42:a9:6f:9f:7e:49:
dd:8c:b2:bb:a1:f2:17:e5:bb:71:58:fc:ed:90:d4:a6:c0:16:
05:77:e8:76:72:fe:8c:c3:55:6d:18:46:95:4e:e7:63:be:03:
7a:c0:36:37:7d:b6:b7:7c:01:5a:2d:2b:b0:86:28:b8:73:c4:
cf:3d:83:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:46 2023 by rpki-client on console-ams.rpki-client.org