Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/G6IEA0obDn3gAlHibn_r3zVJYoc.roa
File: G6IEA0obDn3gAlHibn_r3zVJYoc.roa (raw, json)
Hash identifier: pw5VHXo18X7qbRYJA+WutZjwJ9IzT2+6ZALCtZQru/g=
Subject key identifier: 1B:A2:04:03:4A:1B:0E:7D:E0:02:51:E2:6E:7F:EB:DF:35:49:62:87
Certificate issuer: /CN=19ce488efa3c184f4acb2fc30eb1a71fa116f9b4
Certificate serial: 0184FAC5D74A683FE81D58199832AE1C1821
Authority key identifier: 19:CE:48:8E:FA:3C:18:4F:4A:CB:2F:C3:0E:B1:A7:1F:A1:16:F9:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gc5Ijvo8GE9Kyy_DDrGnH6EW-bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/G6IEA0obDn3gAlHibn_r3zVJYoc.roa
Signing time: Sat 10 Dec 2022 06:43:00 +0000
ROA not before: Sat 10 Dec 2022 06:43:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210877
IP address blocks: 195.225.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:fa:c5:d7:4a:68:3f:e8:1d:58:19:98:32:ae:1c:18:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ce488efa3c184f4acb2fc30eb1a71fa116f9b4
Validity
Not Before: Dec 10 06:43:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ba204034a1b0e7de00251e26e7febdf35496287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:80:5b:5b:c7:0b:9d:00:4c:2c:e2:b8:5e:3c:
19:39:e2:6e:1d:e2:66:19:0d:f9:09:93:c4:8f:1d:
8f:24:6b:48:72:b5:e9:4c:57:56:8a:8a:62:b8:99:
7d:c2:fe:ed:2d:a1:55:bc:48:bb:3d:c9:21:db:35:
ed:0f:9c:6d:d6:7f:f0:64:60:ca:19:6c:0e:4e:eb:
e5:a8:fa:07:dc:56:a0:89:5d:67:86:bc:6c:43:48:
55:13:b1:0d:a3:6e:85:46:ed:c6:ac:67:28:72:c1:
ff:94:a6:01:f4:a6:4f:fc:97:46:fc:b7:6f:e3:a5:
eb:36:4c:6a:2b:84:bb:fc:b8:ab:75:f5:d3:d9:b5:
ac:5a:3a:61:a6:32:23:73:fe:45:cf:94:27:02:73:
d4:80:c8:a9:46:29:f1:fa:06:76:b1:5c:2d:56:de:
9b:44:45:74:f0:f6:fd:b3:b5:fd:31:e3:71:ed:72:
aa:57:2e:75:0b:43:ce:5a:27:d5:b0:9b:ca:66:26:
15:32:84:f7:54:f5:f4:a9:fe:a8:66:0d:14:d1:f5:
41:c4:94:59:f8:d9:e4:63:10:60:45:7c:d7:7f:ba:
58:47:76:98:bc:c7:81:d5:e6:b5:20:7d:83:ad:2b:
8e:c8:65:15:1b:11:07:de:b2:77:d3:74:f6:46:e9:
58:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A2:04:03:4A:1B:0E:7D:E0:02:51:E2:6E:7F:EB:DF:35:49:62:87
X509v3 Authority Key Identifier:
keyid:19:CE:48:8E:FA:3C:18:4F:4A:CB:2F:C3:0E:B1:A7:1F:A1:16:F9:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gc5Ijvo8GE9Kyy_DDrGnH6EW-bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/G6IEA0obDn3gAlHibn_r3zVJYoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0fef71-922e-4448-b37d-f740b9e1c480/1/Gc5Ijvo8GE9Kyy_DDrGnH6EW-bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.232.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:93:40:f4:29:23:43:f9:8a:7b:26:f3:11:91:a8:58:ec:e4:
dc:ae:61:31:36:b3:79:fc:58:42:80:7e:41:49:0b:de:a3:b5:
8d:26:18:fe:c8:1e:9d:8a:af:9e:51:39:ce:e9:8c:f1:2a:ce:
28:f0:b8:45:58:14:ec:86:43:7a:f0:8e:15:af:48:12:15:59:
c9:f0:b1:9d:fc:17:b9:9c:d0:0c:89:5b:23:0f:43:05:73:9d:
81:16:e9:fc:1a:57:ed:bc:90:2d:2b:52:63:78:bd:dc:ae:0d:
de:84:e7:7e:fb:c5:e9:71:3d:7a:b6:d0:1d:ae:3a:1b:f2:ad:
e1:9c:36:47:72:ca:68:85:35:38:81:11:9a:ba:f4:89:33:0c:
22:50:4e:e3:8e:0b:5c:02:04:98:98:76:89:0f:5a:07:cf:cb:
ab:54:ca:61:64:50:82:14:c7:75:52:9d:66:40:9a:29:12:7d:
cb:86:b6:22:b9:7b:a3:1d:a8:fc:27:7f:c8:bc:07:96:eb:be:
9b:63:ab:b1:ed:ea:ce:c4:33:32:99:ad:8d:82:a5:74:01:d9:
fc:8e:05:76:a7:38:39:5a:49:e2:25:3e:bd:c2:79:7d:a2:d9:
de:61:02:22:14:02:47:ab:9f:45:e7:78:97:e9:92:4b:e1:d8:
87:75:dc:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:23 2024 by rpki-client on console-ams.rpki-client.org