Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/GMZxN_DcFnubTGPUcmnfZ7S81Kw.roa
File: GMZxN_DcFnubTGPUcmnfZ7S81Kw.roa (raw, json)
Hash identifier: PDn5wp9ybLSEBVfcrGt8+aIzkLoP0aesXT/De9HY+CI=
Subject key identifier: 18:C6:71:37:F0:DC:16:7B:9B:4C:63:D4:72:69:DF:67:B4:BC:D4:AC
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01842CA8331FB0B2F06115D4ECBA98892D29
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/GMZxN_DcFnubTGPUcmnfZ7S81Kw.roa
Signing time: Mon 31 Oct 2022 06:08:51 +0000
ROA not before: Mon 31 Oct 2022 06:08:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4785
IP address blocks: 193.19.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2c:a8:33:1f:b0:b2:f0:61:15:d4:ec:ba:98:89:2d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 31 06:08:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18c67137f0dc167b9b4c63d47269df67b4bcd4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:79:40:a4:b4:71:ea:43:37:80:86:a6:b2:59:
e4:87:11:d7:17:97:79:db:90:ce:a0:55:20:ac:b0:
bc:e0:36:f1:3e:fd:28:e0:7d:88:03:3f:69:57:d6:
ea:1a:0a:b9:35:33:1e:19:44:db:82:a0:94:8c:18:
12:f8:42:c7:03:bd:b4:0d:ab:ce:34:c7:9b:00:c6:
82:53:c1:0a:3f:07:79:0a:9d:20:49:d7:56:ee:89:
f2:55:7a:cb:25:05:65:d1:37:93:ad:9e:58:38:59:
8f:f5:8c:68:31:6b:28:d1:94:65:17:72:da:39:69:
42:b6:b3:d1:1e:46:be:09:3b:73:3f:39:ae:e1:13:
32:d7:91:7b:2b:c9:6c:2e:a1:44:a9:fa:48:07:fd:
95:af:ba:29:f8:8b:de:0e:55:72:bb:79:27:5b:42:
2c:04:e7:af:d4:3f:3b:28:02:06:8c:33:e7:92:6d:
56:a3:36:18:d6:bb:57:d8:93:1f:0b:d3:2d:62:90:
8b:fd:b8:c8:6c:30:ce:ef:2c:7c:57:e3:2c:12:00:
ae:5e:85:82:39:83:e1:6f:81:b9:4e:15:7c:e8:a5:
40:03:de:d0:0e:3a:07:ae:2f:5a:ab:b7:a6:c5:64:
c7:7c:86:36:44:4e:62:6a:7e:27:ec:5b:cb:b6:44:
25:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C6:71:37:F0:DC:16:7B:9B:4C:63:D4:72:69:DF:67:B4:BC:D4:AC
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/GMZxN_DcFnubTGPUcmnfZ7S81Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.108.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:0d:69:1a:86:c5:b9:03:f6:83:1f:45:b2:3b:24:31:6b:c3:
86:54:54:df:a4:05:1b:d2:de:82:f0:cf:29:45:f5:d5:88:b5:
55:23:16:d7:41:1c:82:7c:b8:ad:97:bd:45:d6:b7:5f:50:05:
13:57:dd:a4:69:d3:88:42:da:8a:25:ee:7b:39:b0:35:a2:8a:
a1:6a:63:01:12:fc:e6:b4:bf:0a:d7:7a:4f:16:94:4f:5a:15:
43:02:8e:0e:fd:89:3a:df:5c:e6:7b:c5:33:93:0e:44:66:7d:
70:f9:ea:b8:7a:9f:1c:e6:88:f3:eb:1e:28:bf:d9:0e:b5:0e:
db:a4:6d:5f:30:fa:94:1a:fe:51:e4:6d:af:4f:4f:0c:b0:54:
02:c2:29:f4:38:f2:b0:8f:be:e3:a6:c9:6c:4c:c7:92:de:74:
fe:64:bd:c8:33:1a:2b:81:f7:3f:e1:8b:e2:3b:49:e2:d5:9c:
51:97:cf:e3:36:8d:6b:aa:83:93:3e:77:2d:9b:f3:e6:fe:82:
ce:e2:bf:c4:ac:f9:37:d3:5e:9e:d1:6b:c0:f0:0c:91:6a:30:
cb:3b:03:cb:36:67:68:ca:42:74:33:b9:33:69:05:ea:7c:87:
6e:2c:aa:9b:6b:4d:0f:e7:c6:29:36:b4:2b:c8:ed:eb:2d:74:
fd:9a:ca:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:45 2024 by rpki-client on console-fra.rpki-client.org