Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/GIjeamx1422uf2b9aD-b6hmDKVw.roa
File: GIjeamx1422uf2b9aD-b6hmDKVw.roa (raw, json)
Hash identifier: EHDzKJPWCs53gclRFyiqJ3Vll4UpvL9Gi/Xv4rtv6MM=
Subject key identifier: 18:88:DE:6A:6C:75:E3:6D:AE:7F:66:FD:68:3F:9B:EA:19:83:29:5C
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 01821605EDA9F9DA43E5F62A1D9312C3D843
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/GIjeamx1422uf2b9aD-b6hmDKVw.roa
Signing time: Tue 19 Jul 2022 10:34:23 +0000
ROA not before: Tue 19 Jul 2022 10:34:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.189.34.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:05:ed:a9:f9:da:43:e5:f6:2a:1d:93:12:c3:d8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jul 19 10:34:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1888de6a6c75e36dae7f66fd683f9bea1983295c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:62:f6:c7:d5:12:50:7f:1f:6d:6a:7a:3a:6e:
cd:c0:04:d8:78:a0:60:39:25:41:d5:b5:77:38:c5:
84:58:89:b2:3f:98:91:35:05:58:0a:83:22:09:fe:
47:b5:a7:a4:9f:09:d3:68:b7:24:db:c6:12:32:1f:
29:d2:43:9e:9b:cb:cc:b4:3a:90:d7:ac:64:12:6b:
31:ca:ac:8a:6e:20:7f:5c:3e:b7:42:9f:2e:a7:0c:
53:89:92:a3:15:0f:bc:e7:0c:f7:1a:ec:33:68:a2:
cc:8a:e1:55:8b:34:60:68:a7:bd:bf:77:d0:f0:96:
cd:67:ba:1e:0e:34:87:08:18:f5:0b:b7:de:6f:be:
ba:11:9f:3b:5a:35:44:be:df:f4:98:3e:42:9a:5e:
ed:b6:e3:f5:2e:02:2e:14:60:65:1e:1d:00:21:35:
10:fc:52:5d:20:9d:d8:5b:e1:f2:8e:47:53:9f:fd:
7f:18:cd:3b:bd:25:9b:bd:32:91:e9:7f:f3:a6:d1:
f9:4d:44:d8:b3:db:6a:af:59:80:32:dc:aa:a4:6a:
bd:41:ae:8b:10:95:9d:0a:44:8f:40:bb:6f:48:a4:
54:c5:8b:24:4d:6e:85:7e:f8:7e:46:55:26:11:62:
40:73:5f:ca:d2:9a:4b:e4:c6:45:b3:ef:84:0d:a8:
3a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:88:DE:6A:6C:75:E3:6D:AE:7F:66:FD:68:3F:9B:EA:19:83:29:5C
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/GIjeamx1422uf2b9aD-b6hmDKVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.34.0/23
Signature Algorithm: sha256WithRSAEncryption
91:14:aa:d1:19:1d:09:16:dc:50:12:76:21:70:25:08:9b:93:
79:41:32:15:73:bb:aa:40:27:5c:e1:6e:97:e2:b2:48:1d:d9:
09:e1:46:65:9f:94:73:dd:49:b9:24:00:9c:d2:49:68:48:8f:
73:90:49:46:06:9e:d3:f5:d1:79:4e:37:b3:b6:4e:c0:be:8a:
d4:2c:68:43:d9:86:a2:79:1b:77:e3:1e:63:97:e6:c6:d7:81:
7f:1d:1a:45:36:3b:3e:e8:f9:bc:5e:11:4f:38:ba:d3:fd:36:
fb:34:a9:bd:47:3d:fd:92:97:b5:5b:8c:b4:94:d3:aa:1f:83:
8a:b3:11:fe:79:b0:5d:51:e6:1e:96:92:57:9a:ff:be:5c:67:
8c:33:cd:01:86:70:d0:3e:e7:8a:d8:f4:86:65:58:94:df:48:
87:cc:bd:d8:0f:bb:b9:ea:d1:e4:06:4c:4f:99:9c:fa:9f:a6:
df:75:27:90:15:43:ec:6b:6f:c8:a3:4d:fa:d9:b2:e3:19:1e:
6d:b1:5d:e2:44:4c:db:64:3d:81:00:71:77:5e:e9:fb:c8:69:
e9:8a:aa:b6:c1:ab:a8:a5:b7:72:f0:dd:a6:b4:a0:d8:fb:6a:
ac:2e:28:8c:11:16:52:0d:7b:b6:15:b8:b8:30:89:97:5f:2d:
84:91:1c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org