Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/GErOaZyzZ9a2GCg5FApt_fISnEc.roa
File: GErOaZyzZ9a2GCg5FApt_fISnEc.roa (raw, json)
Hash identifier: 7mWZp+psq92U6/oTqpWRVTu66hZ7w9iER92bvGQuF1s=
Subject key identifier: 18:4A:CE:69:9C:B3:67:D6:B6:18:28:39:14:0A:6D:FD:F2:12:9C:47
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 0743B50E
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/GErOaZyzZ9a2GCg5FApt_fISnEc.roa
Signing time: Sat 01 Jan 2022 14:00:06 +0000
ROA not before: Sat 01 Jan 2022 14:00:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 193.142.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121877774 (0x743b50e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 1 14:00:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=184ace699cb367d6b6182839140a6dfdf2129c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e8:16:c4:06:84:55:ea:34:a7:9e:3c:12:27:
a6:8f:72:23:e7:eb:02:03:11:ac:fe:0e:98:f7:cc:
3d:9a:9c:7b:23:ff:84:fe:8f:84:2d:94:ff:9a:31:
d2:49:bc:44:e4:c1:b8:a5:95:28:4b:ae:34:81:a7:
6c:d3:02:32:8d:8a:b2:6a:de:f9:d5:eb:b9:e9:8c:
7c:fa:7c:15:4a:89:9f:7b:1f:bb:f3:47:ab:c7:94:
cb:54:26:b1:cd:f9:13:c8:b9:f3:80:c0:c8:2f:63:
3b:2c:3e:33:20:42:fd:a0:3c:57:15:2e:5a:ee:b5:
fa:a0:f2:31:35:14:ac:43:0a:fa:12:b8:7b:7a:4e:
b6:c2:1a:08:94:b2:aa:5d:48:18:21:58:fb:b5:19:
b0:d3:09:72:6d:19:7d:e2:b1:37:8a:5e:4a:fe:ed:
29:78:94:5f:69:0b:ac:01:d9:82:3a:59:4e:62:91:
69:e6:b4:a3:09:1d:f4:97:ed:e0:1b:3b:e8:4d:d3:
2a:f4:34:54:db:8c:b6:95:58:52:46:de:34:8f:7e:
07:1a:25:4a:2d:65:8f:bd:0b:66:e0:a8:8c:65:07:
7e:9c:87:92:b7:f0:d8:9a:63:96:bf:7d:03:44:4c:
2a:d4:ad:03:13:8b:c1:bb:69:07:04:59:c7:28:ba:
80:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4A:CE:69:9C:B3:67:D6:B6:18:28:39:14:0A:6D:FD:F2:12:9C:47
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/GErOaZyzZ9a2GCg5FApt_fISnEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.147.0/24
Signature Algorithm: sha256WithRSAEncryption
67:81:a0:e0:7e:ee:9f:d5:31:a2:84:07:77:06:f2:78:5f:e6:
17:b6:85:a4:a1:ae:2f:3a:a7:80:7e:51:f3:45:b0:37:86:20:
eb:81:a6:aa:ff:46:e3:7a:0d:58:66:56:55:ef:55:c1:59:b6:
b1:0f:e1:23:82:8b:38:14:25:59:e7:ae:7d:de:4f:46:a3:27:
96:5f:3c:b1:ab:e2:b2:d8:77:0d:2d:2f:47:88:26:14:77:a5:
2c:58:c9:4e:8a:e1:47:b1:69:80:fd:6c:71:85:83:ac:1f:7f:
0e:f8:b2:c1:77:e7:eb:e2:44:e2:91:f5:bd:40:06:f1:99:d1:
4d:9d:c4:87:a9:bf:ea:d9:0e:90:a7:40:c8:37:02:14:27:29:
1e:3f:fc:87:8f:84:66:6c:79:9c:5d:de:ab:59:d7:d6:23:4e:
14:cd:22:8e:ee:e2:09:85:a8:40:81:12:2d:85:4d:f2:b4:ac:
74:ca:b3:53:c3:9d:c4:14:57:79:dd:da:b4:fe:60:0f:c2:db:
76:d0:8a:39:a8:ca:71:36:bb:42:ce:60:ce:04:99:86:09:37:
ad:fe:f2:7c:16:ae:43:4a:89:7f:16:88:39:16:5c:7b:fc:de:
ef:4e:1a:ac:69:f1:41:43:c0:d3:13:a3:3a:9a:48:53:b4:a3:
d3:1c:7c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:46 2024 by rpki-client on console-ams.rpki-client.org