Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/ba24d8-d484-4e9b-87ba-2455f9f5216f/1/u91988r_fGG4iEKqHPgclyEbiIg.roa
File: u91988r_fGG4iEKqHPgclyEbiIg.roa (raw, json)
Hash identifier: iZjkXc6F+lYexlAebxJSzmAG/HEUerOzQqTIBfzegQI=
Subject key identifier: BB:DD:7D:F3:CA:FF:7C:61:B8:88:42:AA:1C:F8:1C:97:21:1B:88:88
Certificate issuer: /CN=36319bcd4747ed5b202bb578acb390d16fc411a5
Certificate serial: 03565F38
Authority key identifier: 36:31:9B:CD:47:47:ED:5B:20:2B:B5:78:AC:B3:90:D1:6F:C4:11:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NjGbzUdH7VsgK7V4rLOQ0W_EEaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/ba24d8-d484-4e9b-87ba-2455f9f5216f/1/u91988r_fGG4iEKqHPgclyEbiIg.roa
Signing time: Sat 01 Jan 2022 00:58:21 +0000
ROA not before: Sat 01 Jan 2022 00:58:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20740
IP address blocks: 194.29.188.0/22 maxlen: 22
193.109.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55992120 (0x3565f38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36319bcd4747ed5b202bb578acb390d16fc411a5
Validity
Not Before: Jan 1 00:58:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbdd7df3caff7c61b88842aa1cf81c97211b8888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:dc:9d:8d:86:be:9d:55:3a:76:f2:ec:ab:fa:
a5:b4:aa:6e:51:80:91:c3:a6:8d:64:19:c5:19:e9:
8a:6f:04:66:35:9e:e7:24:61:0c:77:5a:4f:42:f6:
07:ac:2c:41:4e:d7:23:62:32:c4:48:11:9f:69:c4:
5b:f4:63:88:0a:c8:68:24:69:e1:18:12:b4:54:aa:
28:61:bd:8e:b8:a8:c0:7d:69:14:65:d7:e1:40:86:
b3:66:8a:a6:46:16:0f:e5:cd:27:76:e6:ef:d2:b2:
9c:7e:35:e5:91:3e:2b:13:63:29:53:a9:20:50:7e:
06:f2:9f:fc:2a:b6:61:c6:c4:f0:3a:ae:45:7a:35:
68:99:45:12:37:94:93:5f:6a:83:df:3a:da:e9:45:
74:d7:29:25:81:e9:4c:1a:f3:9b:67:d8:ac:11:f0:
d9:4e:e3:dd:1c:dc:d9:58:a3:46:05:9b:50:a4:87:
a4:c8:b1:91:ea:67:93:9c:dc:48:77:6f:53:54:e0:
64:4e:94:62:6c:1f:c2:4a:f4:9e:b6:c9:d1:ca:30:
fc:c4:38:87:ba:3c:da:22:e6:a9:d9:a4:0e:2c:3d:
b7:a9:09:6b:53:f8:4f:b0:33:56:b9:79:17:06:73:
77:28:f9:88:8f:0f:60:ba:31:86:40:f1:b6:99:73:
ca:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DD:7D:F3:CA:FF:7C:61:B8:88:42:AA:1C:F8:1C:97:21:1B:88:88
X509v3 Authority Key Identifier:
keyid:36:31:9B:CD:47:47:ED:5B:20:2B:B5:78:AC:B3:90:D1:6F:C4:11:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NjGbzUdH7VsgK7V4rLOQ0W_EEaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ba24d8-d484-4e9b-87ba-2455f9f5216f/1/u91988r_fGG4iEKqHPgclyEbiIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ba24d8-d484-4e9b-87ba-2455f9f5216f/1/NjGbzUdH7VsgK7V4rLOQ0W_EEaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.4.0/22
194.29.188.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:de:9b:bd:68:8f:93:15:93:4a:af:0f:97:9b:f9:58:fc:05:
de:ec:08:e4:82:58:c2:3d:30:c1:de:34:45:3e:9f:fd:62:4a:
8e:da:a5:0e:8a:e7:fc:b7:1b:d2:c2:2d:b7:d3:96:ad:9c:b3:
f7:7b:29:99:c1:d7:d7:8e:64:60:f0:99:8b:b5:e2:8e:17:8e:
87:6b:22:cf:08:31:5d:29:67:fc:21:da:5f:4d:79:ab:d3:d2:
e0:f3:1f:79:a1:39:97:02:a0:17:6c:88:e8:97:9e:07:0a:01:
7b:65:5d:88:e1:74:84:7a:79:0a:db:96:c0:6a:0c:c7:0f:37:
c4:5f:03:42:df:f8:73:59:58:3d:ac:8e:c0:d8:ca:a3:a0:ba:
ed:62:9b:d2:20:3a:e7:5f:f3:5c:ed:f6:72:d2:47:27:ea:67:
29:36:29:e5:5e:2a:41:9f:d3:83:07:3a:b6:54:5a:ce:19:b4:
8d:00:32:c8:ca:e6:87:35:6b:ae:6f:af:04:a7:e5:57:a2:ec:
62:dc:d0:96:6d:02:d1:cd:97:f5:80:64:12:3f:23:b5:9a:92:
4a:c5:1e:5d:77:8c:56:0d:db:12:54:68:f9:2d:4e:05:5e:84:
55:b8:17:bd:ec:20:83:75:7a:10:5f:db:51:47:9b:78:89:7c:
01:0a:6f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:56 2023 by rpki-client on console-ams.rpki-client.org