Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/GB5NtbN93La6ZJPbb3ptka5-BhA.roa
File: GB5NtbN93La6ZJPbb3ptka5-BhA.roa (raw, json)
Hash identifier: y5Yaj9vGms7kn6c/hxLCP1zas4egf412ek4GqkJpytY=
Subject key identifier: 18:1E:4D:B5:B3:7D:DC:B6:BA:64:93:DB:6F:7A:6D:91:AE:7E:06:10
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01821A3E3F4BF399A78A80A4FABACE978AF2
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/GB5NtbN93La6ZJPbb3ptka5-BhA.roa
Signing time: Wed 20 Jul 2022 06:14:23 +0000
ROA not before: Wed 20 Jul 2022 06:14:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46450
IP address blocks: 88.209.232.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:3e:3f:4b:f3:99:a7:8a:80:a4:fa:ba:ce:97:8a:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 20 06:14:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=181e4db5b37ddcb6ba6493db6f7a6d91ae7e0610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:64:5d:cf:00:cc:5d:21:30:17:7c:bb:78:0c:
07:cb:a9:d3:ce:5b:a5:dd:4a:aa:b5:2f:b8:a3:18:
80:5f:1b:e7:cb:cf:a5:fe:9d:32:9b:44:85:cf:30:
1a:f7:55:5a:0d:b3:60:c0:39:56:30:94:09:4f:fd:
41:a5:c6:7a:cc:7d:0e:57:ad:2f:7d:9a:10:31:f2:
d8:e5:79:66:b4:2b:f5:7c:08:8d:24:f7:ed:07:1d:
65:37:10:be:45:2f:cb:f5:79:cf:d5:87:83:69:93:
9c:90:b6:78:e9:00:e2:05:35:8a:2f:27:f7:b5:a2:
70:fd:cc:aa:14:63:62:d8:fc:5f:df:29:d3:1d:c1:
c9:d9:20:da:cb:7d:42:6e:d0:cf:1f:b5:4e:53:f8:
d4:d4:14:20:44:61:b9:6b:8b:95:b2:92:14:d7:3e:
5b:93:fe:df:bb:ed:fc:b7:ac:3b:9d:18:ff:40:b0:
a6:c5:bf:4c:7a:34:a0:1b:80:56:a6:d7:43:12:dd:
93:20:2e:44:87:bd:b4:d7:11:ec:9b:23:3b:f9:26:
6a:d3:6e:c6:34:46:eb:bc:80:33:91:a1:ee:9b:d4:
83:9d:b8:07:3d:31:da:2f:3d:d1:28:c7:22:1e:78:
0b:42:33:cb:45:3d:10:85:4a:ea:04:d3:2d:d7:a1:
e5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1E:4D:B5:B3:7D:DC:B6:BA:64:93:DB:6F:7A:6D:91:AE:7E:06:10
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/GB5NtbN93La6ZJPbb3ptka5-BhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.232.0/22
Signature Algorithm: sha256WithRSAEncryption
94:b9:0c:c2:eb:48:73:6d:85:3d:a5:ed:09:04:02:0f:a7:c5:
de:d2:23:a8:2d:62:a5:75:29:a6:ac:b1:d9:f3:b2:21:44:64:
0b:17:82:ea:34:24:73:39:40:d9:4f:9f:a1:9b:63:89:e5:70:
9f:97:ba:2f:88:7d:bd:d4:e7:c5:bd:84:2d:06:35:e5:87:56:
bb:be:a0:86:14:9b:54:80:f2:3f:0d:dd:b4:6b:10:d0:a0:a3:
49:26:6b:fb:ee:ef:a2:e5:bf:92:48:6c:12:91:b1:74:67:f6:
cc:e1:b5:2f:a4:24:48:de:92:ea:d8:0c:59:2e:e1:8f:95:5c:
8f:1e:3e:91:ae:10:1d:f8:b8:cc:04:30:48:1e:0e:06:50:1a:
a4:98:26:95:d6:8b:08:d9:4f:42:79:78:7b:5c:4e:2c:62:f1:
08:4d:e6:3a:2d:a8:52:05:29:bf:5d:85:4f:34:0a:38:d7:cb:
c2:24:4f:1a:5d:43:8a:c1:9e:61:c6:d8:54:27:6e:40:fe:b8:
9b:79:ce:8e:62:29:58:02:21:ba:41:9e:74:2e:12:1c:0f:67:
42:e8:60:0c:24:9c:52:2d:bb:c4:40:02:4b:e4:22:34:3b:df:
7c:68:dc:72:dd:65:9e:50:f9:79:4a:8d:f0:8b:66:1b:1e:b2:
f8:9d:88:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:51 2023 by rpki-client on console-ams.rpki-client.org