Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/GCGfYgO73G8Wh8X9S0PbJBk1ljI.roa
File: GCGfYgO73G8Wh8X9S0PbJBk1ljI.roa (raw, json)
Hash identifier: 1fmHIPxzB8CCuzgc9XT82OON6lwEiQo9nadyN1NybyA=
Subject key identifier: 18:21:9F:62:03:BB:DC:6F:16:87:C5:FD:4B:43:DB:24:19:35:96:32
Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Certificate serial: 068CFB4D
Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/GCGfYgO73G8Wh8X9S0PbJBk1ljI.roa
Signing time: Fri 04 Mar 2022 10:17:35 +0000
ROA not before: Fri 04 Mar 2022 10:17:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202486
IP address blocks: 194.76.221.0/24 maxlen: 24
194.76.220.0/23 maxlen: 24
194.76.220.0/24 maxlen: 24
194.76.237.0/24 maxlen: 24
194.76.236.0/24 maxlen: 24
194.76.236.0/23 maxlen: 24
5.183.183.0/24 maxlen: 24
5.183.182.0/24 maxlen: 24
193.161.212.0/24 maxlen: 24
193.161.213.0/24 maxlen: 24
5.183.180.0/24 maxlen: 24
5.183.181.0/24 maxlen: 24
193.161.214.0/24 maxlen: 24
193.161.215.0/24 maxlen: 24
92.118.93.0/24 maxlen: 24
193.25.188.0/24 maxlen: 24
92.118.92.0/24 maxlen: 24
92.118.95.0/24 maxlen: 24
193.25.189.0/24 maxlen: 24
92.118.94.0/24 maxlen: 24
193.25.210.0/24 maxlen: 24
193.25.211.0/24 maxlen: 24
2a0c:a0c1::/32 maxlen: 32
2a0c:a0c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109902669 (0x68cfb4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Validity
Not Before: Mar 4 10:17:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18219f6203bbdc6f1687c5fd4b43db2419359632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:67:ca:c0:38:5e:c5:d1:84:78:77:3d:0d:a6:
f1:fb:fb:63:88:77:06:76:07:83:51:af:a3:35:c5:
00:33:0f:1c:91:45:c2:6f:92:3f:08:1c:6d:8f:3a:
ef:9a:79:ca:8b:cc:79:c2:6f:3a:77:6a:42:8a:87:
17:16:e1:4b:d3:77:ea:70:6b:10:81:b2:10:b7:a8:
3a:22:91:7d:11:61:b4:27:17:92:7c:8a:75:fc:17:
f5:bb:3d:04:2c:93:7e:d0:b4:5d:a5:5e:d2:89:af:
03:14:52:55:a7:1c:50:48:0d:92:d1:55:92:5b:80:
98:b6:a9:e8:27:80:85:44:eb:67:2d:6f:fc:d1:01:
fe:eb:c6:7a:e1:97:8f:22:d3:54:ce:15:19:2b:26:
14:be:46:a6:2e:49:65:13:7c:47:f9:fa:08:3b:ca:
b2:23:0e:65:7e:8c:1f:79:81:1d:27:20:b3:1b:d6:
78:8e:09:4e:a1:64:9a:3a:3b:33:78:b2:6c:9d:f0:
55:0e:cc:0d:22:9a:41:47:d2:ac:eb:f1:56:a3:af:
e2:c1:f5:c6:f1:8e:33:61:16:9a:83:23:28:de:29:
3d:84:1b:22:a1:3f:66:bb:c6:f7:29:f5:bc:47:f4:
12:b4:36:02:28:d7:ad:60:98:c2:f5:e2:99:de:0f:
12:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:21:9F:62:03:BB:DC:6F:16:87:C5:FD:4B:43:DB:24:19:35:96:32
X509v3 Authority Key Identifier:
keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/GCGfYgO73G8Wh8X9S0PbJBk1ljI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.180.0/22
92.118.92.0/22
193.25.188.0/23
193.25.210.0/23
193.161.212.0/22
194.76.220.0/23
194.76.236.0/23
IPv6:
2a0c:a0c0::/31
Signature Algorithm: sha256WithRSAEncryption
12:c3:7e:e0:63:de:35:81:1c:b8:ff:16:f6:00:d2:08:a2:14:
ff:21:a7:f2:0c:c9:08:ad:cd:7a:4b:dd:b9:7b:6f:6d:62:58:
c6:d0:70:7a:48:1c:4c:61:b1:51:48:a1:e9:c2:11:8e:fe:28:
2b:99:74:29:0f:30:67:b3:8c:2b:51:19:73:4a:2d:4a:b7:5e:
55:d0:04:a4:69:7a:5e:8f:23:c8:cb:58:dc:2f:b7:47:18:c6:
fd:e2:e5:89:94:91:f4:f4:91:36:ab:20:da:57:46:af:6a:eb:
e5:fa:60:27:eb:f2:65:25:ca:6d:7e:33:cc:28:f3:f7:ba:2b:
20:59:25:f8:69:67:ed:3b:3b:38:75:83:6e:00:95:c0:d4:81:
28:ef:90:f7:66:ea:1f:67:46:1d:1e:94:cf:b2:b8:8c:15:f7:
9c:0a:30:c0:ae:6c:2f:2d:21:72:85:bc:d3:2b:2c:4b:26:5c:
e3:8d:8e:a1:9d:73:83:3f:55:b1:1a:4c:15:9a:85:d5:d2:30:
03:08:71:73:75:68:05:71:9c:2f:b9:da:6e:12:19:43:b7:dd:
a8:08:0b:47:a1:ff:0a:46:aa:3a:21:60:51:b3:07:ad:17:88:
8b:8f:f1:70:30:d8:9a:37:00:29:97:d4:b3:07:ad:43:14:5e:
23:d9:29:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:52 2024 by rpki-client on console-ams.rpki-client.org