Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/l_gmF2xlPDIceQWtzzUMuZTt8iU.roa
File: l_gmF2xlPDIceQWtzzUMuZTt8iU.roa (raw, json)
Hash identifier: NWRlNaXn/zFiYAnl9QsoWP4xCw84s1XJXRgS2gUoZ+s=
Subject key identifier: 97:F8:26:17:6C:65:3C:32:1C:79:05:AD:CF:35:0C:B9:94:ED:F2:25
Certificate issuer: /CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Certificate serial: 02E03E
Authority key identifier: DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/l_gmF2xlPDIceQWtzzUMuZTt8iU.roa
Signing time: Thu 21 Apr 2022 13:04:19 +0000
ROA not before: Thu 21 Apr 2022 13:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6461
IP address blocks: 193.34.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188478 (0x2e03e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Validity
Not Before: Apr 21 13:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97f826176c653c321c7905adcf350cb994edf225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:f3:b9:c9:b6:bc:15:7f:13:59:24:d5:e9:
ec:5d:a6:33:0a:a9:e0:53:8f:9d:57:fd:19:cb:0f:
f3:b6:aa:cc:f4:21:cd:8e:91:51:13:9a:1a:fc:01:
c6:4a:a1:ba:66:de:0d:7e:7e:21:54:33:e1:38:71:
5f:16:2f:36:dc:9c:8b:ce:b4:33:fb:48:7b:e4:47:
29:3e:f7:33:68:fb:c8:e7:3d:6c:37:f3:1e:6b:d6:
cf:fa:49:68:0d:af:b9:2b:b5:67:36:e4:99:08:f6:
b9:fa:f2:8e:98:a9:ef:dd:11:1a:24:3f:1f:a8:18:
99:46:56:03:2a:57:46:81:a2:12:77:96:32:6f:82:
37:cc:17:e9:c0:bb:29:cc:a8:fd:ab:fa:28:0b:39:
5f:11:03:9f:10:71:c0:62:a1:e3:7b:32:7f:59:30:
c4:f3:cb:84:9c:99:69:79:b5:2e:80:11:ba:54:24:
21:52:fa:6b:ec:31:54:74:59:1a:76:7c:c5:26:84:
77:3b:ea:c0:f9:a4:e4:06:03:3b:94:d5:b4:9e:85:
00:60:3e:31:0b:ad:d1:4e:dc:42:9f:e5:3e:5a:ea:
32:47:f5:e9:e0:3c:74:4f:66:db:6b:1f:69:56:3c:
66:82:4a:0f:56:46:40:9a:28:e0:d8:e7:ae:8a:ec:
40:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F8:26:17:6C:65:3C:32:1C:79:05:AD:CF:35:0C:B9:94:ED:F2:25
X509v3 Authority Key Identifier:
keyid:DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/l_gmF2xlPDIceQWtzzUMuZTt8iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.72.0/22
Signature Algorithm: sha256WithRSAEncryption
80:6e:9e:e1:19:15:13:53:0a:75:9a:65:76:89:4a:56:05:b3:
4d:98:a3:a9:7e:28:2f:5d:ef:c5:60:d9:79:2b:df:39:e0:79:
5f:17:72:38:a2:0d:58:dd:c4:a5:45:17:64:24:66:ab:35:db:
a6:77:95:ff:f1:57:70:41:ac:e7:10:dc:13:a7:90:8d:59:03:
3a:03:48:87:07:8d:1a:2a:81:c9:e4:5c:a5:19:bb:14:ed:f8:
c3:cb:1b:96:84:4a:e0:b0:2d:25:e7:bb:e5:c4:8c:91:6f:f6:
2b:32:23:ba:b9:6d:36:01:18:dd:21:35:01:1a:dd:bc:0e:29:
ca:fb:ff:1d:26:5d:6c:1b:0a:ef:6c:f9:1a:a1:d4:07:4c:e8:
98:12:61:1b:ac:72:b2:78:04:c4:3c:e0:9b:3c:4e:4c:68:e8:
26:b6:a5:56:6a:24:07:32:51:3c:5b:f3:66:25:6b:d7:b2:8f:
88:c4:bd:a4:49:ef:72:d4:e3:b4:ef:33:6e:bd:25:9a:cb:17:
ab:40:87:fb:36:66:b5:63:6c:a7:99:8d:ba:fb:89:61:53:37:
a1:97:23:c3:76:c8:54:75:ff:ac:6d:e3:96:ef:26:e5:82:f6:
4b:c1:bc:97:f3:71:d2:74:ee:09:ad:e7:8f:0b:52:19:3a:b3:
50:8d:71:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:37 2023 by rpki-client on console-ams.rpki-client.org