Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/cgpLWz-6jn23ikh0Vtt04CPRXHw.roa
File: cgpLWz-6jn23ikh0Vtt04CPRXHw.roa (raw, json)
Hash identifier: OJnvZZty5p51q+0pF0ahq9JcE+59yAMgcYs8WOhYBNQ=
Subject key identifier: 72:0A:4B:5B:3F:BA:8E:7D:B7:8A:48:74:56:DB:74:E0:23:D1:5C:7C
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 018269D1A5D76E28AA52C9F018BC4282140C
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/cgpLWz-6jn23ikh0Vtt04CPRXHw.roa
Signing time: Thu 04 Aug 2022 17:05:23 +0000
ROA not before: Thu 04 Aug 2022 17:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.218.18.0/24 maxlen: 24
193.228.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:69:d1:a5:d7:6e:28:aa:52:c9:f0:18:bc:42:82:14:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Aug 4 17:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=720a4b5b3fba8e7db78a487456db74e023d15c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5f:e0:22:ad:35:ed:74:e2:de:70:8b:e3:f2:
a5:13:e2:0d:52:c2:7f:3b:bb:c7:24:6c:cf:9c:5f:
f3:49:c5:c1:6a:f8:2a:d2:20:ff:16:45:67:ac:8e:
f1:cb:e2:9c:51:f1:f4:c8:ad:e9:2d:eb:b3:4b:4c:
a4:f2:70:ed:94:44:66:32:ce:6f:57:37:ac:fa:1a:
ac:19:06:46:46:d8:df:98:20:2f:a9:5d:1f:f1:a0:
f0:f4:db:8d:3b:1c:bc:f5:47:52:cd:fd:37:a7:eb:
26:b7:d7:89:22:df:f4:d0:4d:c4:56:27:d8:16:6e:
30:2a:1e:29:d3:9a:d6:58:71:10:4a:d6:9f:fd:20:
fb:26:8d:00:46:39:d2:7d:01:6a:20:66:5a:d6:ab:
59:7f:6a:8d:95:eb:55:06:20:2d:bd:02:47:05:fd:
31:e4:f8:2e:39:a8:0c:a2:4f:ea:fa:82:39:6d:b5:
70:9f:d7:86:15:d2:b2:9b:e0:db:c9:b3:19:a4:29:
2f:ea:99:81:0f:23:e4:cb:6a:4d:2c:6b:6f:53:d2:
ec:a5:46:84:18:96:5b:58:06:42:6b:60:11:5e:ae:
a6:56:be:7c:0d:9f:dc:bf:e6:27:9f:70:3e:fe:54:
aa:9d:11:9f:fe:4f:2e:54:8f:53:54:e5:92:e9:c6:
60:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:0A:4B:5B:3F:BA:8E:7D:B7:8A:48:74:56:DB:74:E0:23:D1:5C:7C
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/cgpLWz-6jn23ikh0Vtt04CPRXHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.18.0/24
193.228.90.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:53:99:b1:40:aa:86:b4:05:bf:26:7b:3a:be:ad:b4:51:a7:
d8:2f:b9:c6:af:97:3e:ad:4a:6f:4e:5f:6d:5d:01:34:08:04:
c2:80:7b:76:c7:a8:d7:48:7a:1a:dd:1a:8b:82:71:4f:0c:4e:
e9:bc:b7:85:8e:42:e0:50:cc:8a:0f:98:5c:29:0b:a6:c9:ff:
c1:0a:b4:2b:53:15:6e:55:14:24:d8:17:56:8c:89:80:c3:40:
b8:f1:e9:93:16:e0:48:da:a7:17:f7:b4:42:3d:90:84:a8:5d:
b2:7a:5c:0d:78:f1:f9:af:80:2c:21:d2:b9:a2:31:e5:fe:85:
80:80:42:b2:4c:14:74:6a:76:ce:e2:b3:b1:b5:1b:17:55:93:
29:6f:7b:5f:9e:bf:ad:c0:8a:54:11:98:ac:10:00:ce:be:9c:
af:c2:56:18:b2:45:8d:92:5e:05:0a:b4:8b:48:71:a5:f8:a1:
52:5f:d1:30:16:88:81:73:a7:05:c5:0d:d4:60:a5:8a:ce:cc:
ac:da:ac:e8:8e:60:bb:92:0e:52:8e:ed:aa:db:10:8c:79:f8:
60:8a:a0:d8:54:4c:de:aa:6d:fb:58:85:45:0e:e1:5f:b8:6b:
05:4b:96:80:09:05:14:86:6b:73:13:b3:9d:09:99:59:3f:a4:
cc:bd:01:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:26 2023 by rpki-client on console-ams.rpki-client.org