Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/acd0e2-3712-4ccc-872d-e0d9883e0fcc/1/Gq_AOxldAICUWEzmztJ6jHmPhfE.roa
File: Gq_AOxldAICUWEzmztJ6jHmPhfE.roa (raw, json)
Hash identifier: qyfDcWgmmD6ifxt6ROOJq9XVAWojyaRT+p8qo6kaelM=
Subject key identifier: 1A:AF:C0:3B:19:5D:00:80:94:58:4C:E6:CE:D2:7A:8C:79:8F:85:F1
Certificate issuer: /CN=5a48b5dfc0142a68c30bdaac550603e9e45d108a
Certificate serial: 015EBF
Authority key identifier: 5A:48:B5:DF:C0:14:2A:68:C3:0B:DA:AC:55:06:03:E9:E4:5D:10:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wki138AUKmjDC9qsVQYD6eRdEIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/acd0e2-3712-4ccc-872d-e0d9883e0fcc/1/Gq_AOxldAICUWEzmztJ6jHmPhfE.roa
Signing time: Thu 10 Mar 2022 10:24:11 +0000
ROA not before: Thu 10 Mar 2022 10:24:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44019
IP address blocks: 193.238.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89791 (0x15ebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a48b5dfc0142a68c30bdaac550603e9e45d108a
Validity
Not Before: Mar 10 10:24:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1aafc03b195d008094584ce6ced27a8c798f85f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:87:ec:50:bc:cb:16:57:98:0b:5f:de:6c:f3:
d5:4c:a9:26:2e:24:37:e5:ef:44:01:47:1c:81:1b:
2f:49:17:17:a8:42:9d:cb:b8:9e:cb:8a:79:69:62:
3f:81:47:28:92:5b:a2:87:8a:ee:65:3c:64:57:c1:
9b:70:59:fc:eb:49:dd:26:6f:21:93:a3:da:3e:ba:
8a:47:ff:62:d1:d8:63:45:67:35:75:e0:46:37:91:
02:ac:4d:f9:67:78:1e:f4:81:29:3f:7d:f2:e8:73:
f1:2c:bb:e7:09:3d:a3:3c:ed:eb:78:a9:05:4b:81:
ce:af:64:67:85:30:58:64:85:ad:a2:3d:de:c2:81:
ce:8f:01:ce:e7:82:2d:ca:20:45:0e:dc:13:e3:6b:
84:91:31:e1:15:2e:73:c1:04:83:3d:45:de:b8:7c:
1c:63:78:09:26:a7:7b:c5:f3:c5:64:38:4a:b5:cc:
7f:d5:8b:40:07:6e:45:7f:a7:07:50:0e:a3:ec:2c:
50:e6:f8:e8:25:7c:09:59:a1:d2:04:40:73:f4:41:
16:a0:5d:86:59:d1:e3:07:66:0d:c2:68:e9:74:50:
86:70:54:e5:c3:2b:62:6a:2b:eb:01:9b:8a:3d:f1:
51:07:7f:cc:5c:1a:07:33:02:ad:77:6f:a4:04:3e:
a1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AF:C0:3B:19:5D:00:80:94:58:4C:E6:CE:D2:7A:8C:79:8F:85:F1
X509v3 Authority Key Identifier:
keyid:5A:48:B5:DF:C0:14:2A:68:C3:0B:DA:AC:55:06:03:E9:E4:5D:10:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wki138AUKmjDC9qsVQYD6eRdEIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/acd0e2-3712-4ccc-872d-e0d9883e0fcc/1/Gq_AOxldAICUWEzmztJ6jHmPhfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/acd0e2-3712-4ccc-872d-e0d9883e0fcc/1/Wki138AUKmjDC9qsVQYD6eRdEIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.87.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:ba:d3:a0:de:49:94:99:2d:d9:af:d6:c0:4d:52:a7:29:98:
89:c5:fc:bf:41:c4:e8:d6:56:93:b2:5e:fa:9a:1e:5d:b2:4b:
c2:ba:9e:fc:9c:1b:97:af:0b:3d:6e:49:4e:bd:4a:80:1d:5b:
37:a1:f0:aa:2a:f8:c2:a1:4a:33:ec:43:33:55:0c:70:31:4d:
d8:6a:24:3c:13:30:2d:e9:68:8c:18:aa:0c:27:31:75:5e:25:
a5:16:cb:a8:00:c6:46:b3:65:ad:e1:70:51:39:f8:1c:d1:5c:
df:68:f1:23:2d:b1:e7:10:35:7c:d7:bc:90:99:c3:f3:1d:82:
f9:98:b3:65:21:8a:9e:cb:bb:c4:d0:e8:ba:4c:ef:08:55:9f:
ed:7f:b1:b4:f2:31:e6:4f:85:8b:ec:4b:04:6b:18:a2:f5:8a:
cc:91:f7:bf:87:b9:8c:57:6d:05:21:4c:67:67:83:94:d3:98:
de:94:64:48:e6:00:ee:cf:e3:f0:6d:94:b5:78:c9:af:09:ce:
78:6e:71:c8:3c:d1:78:f3:45:e3:79:c1:9a:82:b5:99:3e:74:
36:8d:f0:14:e2:70:e5:24:6b:3a:df:b7:36:bd:b4:37:6b:81:
57:c9:8f:2c:5a:fe:ce:a4:ff:3f:8e:e7:1c:61:34:f6:e6:10:
27:a8:4e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net