Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/GC3AP71NHrnJVpkb1c_0pj7_FpA.roa
File: GC3AP71NHrnJVpkb1c_0pj7_FpA.roa (raw, json)
Hash identifier: z+xWpUATLrKK2AMwhV14BsGWig5rdi4eEv3Kv/eM0MY=
Subject key identifier: 18:2D:C0:3F:BD:4D:1E:B9:C9:56:99:1B:D5:CF:F4:A6:3E:FF:16:90
Certificate issuer: /CN=1c53911705ae860c299e6a1a412e50eda1c8228e
Certificate serial: 07D20618
Authority key identifier: 1C:53:91:17:05:AE:86:0C:29:9E:6A:1A:41:2E:50:ED:A1:C8:22:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFORFwWuhgwpnmoaQS5Q7aHIIo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/GC3AP71NHrnJVpkb1c_0pj7_FpA.roa
Signing time: Sat 01 Jan 2022 08:56:40 +0000
ROA not before: Sat 01 Jan 2022 08:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 193.189.142.0/24 maxlen: 24
2001:67c:2ba0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131204632 (0x7d20618)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c53911705ae860c299e6a1a412e50eda1c8228e
Validity
Not Before: Jan 1 08:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=182dc03fbd4d1eb9c956991bd5cff4a63eff1690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b3:76:55:f4:9c:11:07:e8:cd:87:a6:52:76:
fc:72:bc:27:1b:93:5b:40:db:43:e0:05:5b:29:cb:
ea:e6:1e:2a:6d:0e:0b:e7:b6:e7:7a:e3:2d:72:1f:
89:46:a1:b8:16:5f:f1:a5:db:9d:af:89:0e:82:f1:
33:b2:1b:63:05:a7:1d:8d:ee:b4:f1:21:66:39:1f:
e0:c3:f3:28:04:39:f9:52:bd:37:c0:1a:c4:a4:a8:
8a:56:46:ce:47:18:79:6e:88:dd:4c:50:8c:75:32:
96:55:86:37:32:c9:d5:bf:2c:75:b9:d0:60:62:ed:
3a:f0:96:75:75:a9:da:6d:43:d4:04:2a:15:c5:08:
f2:07:bf:e0:b6:8c:57:b3:ec:ad:2c:af:8f:30:90:
5f:c6:52:3e:0e:90:9e:e7:6f:c3:76:1d:76:d9:6e:
8f:8c:bd:ed:6d:08:24:88:27:9e:8a:bd:25:96:23:
4b:8a:71:f8:6a:3f:cd:e1:ff:19:5d:c5:57:fe:eb:
52:6c:10:6b:1d:86:3a:90:db:23:63:76:4f:83:fe:
ad:b7:d9:ff:a4:2b:85:a5:b7:04:30:c5:d5:ae:a4:
ff:9c:ba:26:33:ab:c7:38:da:03:e4:49:88:f2:bf:
e3:ee:d0:e4:ea:3e:5f:54:0e:91:1c:e0:11:7f:92:
01:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2D:C0:3F:BD:4D:1E:B9:C9:56:99:1B:D5:CF:F4:A6:3E:FF:16:90
X509v3 Authority Key Identifier:
keyid:1C:53:91:17:05:AE:86:0C:29:9E:6A:1A:41:2E:50:ED:A1:C8:22:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFORFwWuhgwpnmoaQS5Q7aHIIo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/GC3AP71NHrnJVpkb1c_0pj7_FpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/HFORFwWuhgwpnmoaQS5Q7aHIIo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.142.0/24
IPv6:
2001:67c:2ba0::/48
Signature Algorithm: sha256WithRSAEncryption
81:b7:99:6d:ea:a7:7b:85:73:a8:f5:09:b2:c0:bc:41:de:3d:
7e:ef:21:04:1b:0b:dc:b5:d9:2f:90:da:d1:4a:0d:cc:5c:8c:
b8:ec:73:e2:f3:bd:5e:8f:b2:58:88:e2:f8:85:b4:d0:13:6e:
3b:e1:e5:bd:e0:63:a3:1a:5e:89:10:44:96:c3:6b:f4:b5:7a:
88:eb:c4:db:df:e6:30:d7:23:49:b0:9e:59:f2:b2:08:1f:69:
35:ad:be:af:a9:b7:a6:bd:87:a6:70:11:7f:39:b3:02:93:4a:
bf:47:a3:48:15:6c:e1:31:ec:72:80:f1:b0:81:aa:e1:cc:8e:
7e:69:5b:0b:ff:22:d1:ec:93:68:c7:6f:5f:0d:5e:ba:4f:1c:
e6:fa:24:ff:4c:d4:a9:b0:42:55:5e:b8:cd:13:84:d3:75:8e:
b2:fe:60:dd:b4:6e:33:7e:69:db:a2:a7:3e:fe:e4:28:97:f6:
33:ae:49:ee:14:5a:0b:1a:34:80:bb:4a:d7:8a:e8:92:d9:0b:
23:44:06:26:c7:3b:11:c2:0c:12:81:7d:aa:d5:e7:37:19:5c:
e6:eb:46:eb:81:e5:2b:a3:cf:8c:80:da:69:90:fa:22:07:ad:
c9:84:9c:72:30:b4:39:dd:ae:a9:ff:c5:82:8e:e8:5b:da:a5:
e6:fb:eb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:05 2025 by rpki-client