Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/gqxG-HEktosPuqta3f2dKZbUo8Q.roa
File: gqxG-HEktosPuqta3f2dKZbUo8Q.roa (raw, json)
Hash identifier: o2YWErCUJq7BXwuO0iGuA4u4iAt1fiSJCKySDBHdYYI=
Subject key identifier: 82:AC:46:F8:71:24:B6:8B:0F:BA:AB:5A:DD:FD:9D:29:96:D4:A3:C4
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 06EFF39C
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/gqxG-HEktosPuqta3f2dKZbUo8Q.roa
Signing time: Thu 19 May 2022 12:06:29 +0000
ROA not before: Thu 19 May 2022 12:06:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 93.152.211.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116388764 (0x6eff39c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 19 12:06:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82ac46f87124b68b0fbaab5addfd9d2996d4a3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:37:18:3e:66:6c:38:e0:cd:b7:c6:7e:fc:db:
16:30:de:d3:f3:38:c5:4f:38:61:ec:60:b1:eb:0c:
b5:50:99:c5:13:31:8e:80:ba:8f:07:77:8f:ac:18:
d7:66:9d:cf:32:eb:e8:4b:8c:22:09:f7:5c:71:ac:
0b:af:d0:fc:0e:76:b6:05:d8:7d:07:4e:5c:7b:4a:
f3:18:bc:3b:75:3c:3c:43:a6:9e:a1:e2:b7:92:43:
a6:30:6d:5a:66:17:bc:22:33:fb:0d:4c:92:62:8a:
ce:69:03:80:0f:d5:de:39:75:c0:ec:c2:bf:a4:5e:
77:0e:ae:7c:3e:43:e4:33:92:68:d1:13:b1:12:45:
c5:fc:ae:41:dc:29:1b:da:50:7d:5f:31:07:41:19:
26:9c:bb:02:c7:ce:af:8e:83:d0:39:36:74:00:26:
25:a2:09:41:7f:68:fd:81:00:2d:fa:a6:1e:04:c6:
5c:e5:88:0c:8b:68:88:1a:59:f6:c9:1e:1c:8e:03:
cd:69:c7:0a:90:9f:81:cb:75:69:13:7f:aa:c5:9d:
9f:5b:0e:f8:9d:41:54:e3:91:67:ef:81:74:6d:17:
78:5b:b2:f6:ee:c6:8c:31:d3:5c:4d:76:8b:34:6b:
b1:d2:a2:26:14:b3:91:11:9c:df:0b:1d:dc:3e:26:
3b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AC:46:F8:71:24:B6:8B:0F:BA:AB:5A:DD:FD:9D:29:96:D4:A3:C4
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/gqxG-HEktosPuqta3f2dKZbUo8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.211.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:72:f8:35:4f:f3:af:fb:91:a3:5d:9d:65:35:d0:e3:98:46:
4a:7b:37:40:a1:f5:7e:08:6b:b8:9c:9a:6a:f5:b7:4b:b7:9c:
f9:eb:1f:21:45:e2:e6:fd:4e:eb:25:72:ea:fc:85:68:6b:91:
bb:d5:7d:d7:91:cc:49:ed:0c:ef:73:c4:29:f0:18:9a:cc:34:
99:1e:45:07:53:64:59:fe:83:f6:f0:f0:02:09:cc:cf:8c:27:
6c:72:2e:64:7e:b4:fe:b5:7e:e1:db:61:bd:4b:9c:fc:01:84:
bc:88:a2:62:3d:3e:2b:c7:cf:43:61:62:a9:76:63:62:12:4a:
d6:74:5f:0e:44:ab:b0:d9:dd:62:24:79:8c:a6:c0:cc:60:6a:
c4:aa:5b:ec:e9:e8:00:e0:cb:e8:25:38:46:c3:6c:69:93:1b:
bb:69:ca:a8:46:e5:ca:33:17:8f:80:23:59:cb:d4:50:b6:95:
2a:f6:03:59:97:b1:e8:8f:8e:af:1b:57:6c:db:34:bc:0b:d8:
07:91:ec:68:dd:f1:6f:7f:05:75:0c:cd:d7:67:04:e9:ca:5f:
eb:e6:02:ee:5a:b4:d6:67:18:b5:b4:bc:49:8e:64:17:cc:23:
f0:11:43:1d:84:44:5b:4f:e5:4d:00:74:67:b6:54:5b:b1:aa:
09:36:6e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:26 2024 by rpki-client on console-ams.rpki-client.org