Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3f220f-158f-47f9-b296-688f60fe6add/1/gzowlPPidlCjmIWPwA0R1-DMYhw.roa
File: gzowlPPidlCjmIWPwA0R1-DMYhw.roa (raw, json)
Hash identifier: eQjvqV1W34sCqzXw+5JEiZnlUK7eD0b/C6F37QaRjCA=
Subject key identifier: 83:3A:30:94:F3:E2:76:50:A3:98:85:8F:C0:0D:11:D7:E0:CC:62:1C
Certificate issuer: /CN=101fdf7c89989242919835759c9b62f8cc69d492
Certificate serial: 32589735
Authority key identifier: 10:1F:DF:7C:89:98:92:42:91:98:35:75:9C:9B:62:F8:CC:69:D4:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EB_ffImYkkKRmDV1nJti-Mxp1JI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3f220f-158f-47f9-b296-688f60fe6add/1/gzowlPPidlCjmIWPwA0R1-DMYhw.roa
Signing time: Sat 01 Jan 2022 07:02:27 +0000
ROA not before: Sat 01 Jan 2022 07:02:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39648
IP address blocks: 195.24.160.0/19 maxlen: 19
193.93.4.0/22 maxlen: 22
2a02:17c8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 844666677 (0x32589735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=101fdf7c89989242919835759c9b62f8cc69d492
Validity
Not Before: Jan 1 07:02:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=833a3094f3e27650a398858fc00d11d7e0cc621c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f6:67:73:44:a8:45:b6:5f:30:8c:b3:2e:8e:
8c:1b:b7:bc:8b:31:9d:49:12:70:7a:bf:06:00:91:
47:60:28:98:30:8f:94:21:cb:5d:39:bc:77:87:0a:
7f:68:7f:87:ff:48:65:9b:ef:d1:af:93:87:d4:ed:
53:40:35:54:0d:1e:fa:99:64:39:2c:ca:6b:4b:60:
34:4c:66:48:0e:4f:f9:db:c3:7e:fb:ec:d2:18:bc:
34:27:25:f8:69:6c:3a:cb:de:88:90:69:fc:6b:ce:
98:32:cc:3a:29:50:73:cb:97:6a:ff:a6:85:59:59:
a0:ac:64:0c:c3:f0:6a:c5:1c:69:6b:5c:81:0a:9c:
f2:e6:fe:03:21:06:e1:18:9c:ca:82:60:14:b1:d6:
be:76:6f:a5:3b:03:56:d9:28:23:e5:15:81:ad:9a:
00:bb:3f:8a:0d:1c:d8:8e:e2:83:c3:5b:c2:f1:70:
77:54:89:03:cc:1a:4d:19:a7:b9:37:8b:13:2a:48:
60:57:1e:17:4b:cd:b2:15:5b:db:65:9c:67:d1:72:
cf:18:84:a0:3a:dc:d9:2f:80:30:a8:a3:35:f7:bd:
16:c9:d5:eb:5b:7b:25:d5:bb:3c:01:66:9f:c6:49:
50:ba:72:f5:cb:07:5a:58:64:13:37:21:f5:12:bf:
e2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3A:30:94:F3:E2:76:50:A3:98:85:8F:C0:0D:11:D7:E0:CC:62:1C
X509v3 Authority Key Identifier:
keyid:10:1F:DF:7C:89:98:92:42:91:98:35:75:9C:9B:62:F8:CC:69:D4:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EB_ffImYkkKRmDV1nJti-Mxp1JI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3f220f-158f-47f9-b296-688f60fe6add/1/gzowlPPidlCjmIWPwA0R1-DMYhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3f220f-158f-47f9-b296-688f60fe6add/1/EB_ffImYkkKRmDV1nJti-Mxp1JI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.4.0/22
195.24.160.0/19
IPv6:
2a02:17c8::/32
Signature Algorithm: sha256WithRSAEncryption
9a:9d:a5:a9:16:b2:53:6f:73:86:9a:33:6a:18:e5:0d:3b:33:
02:8f:79:bf:ed:16:1f:c2:88:82:8c:c9:88:e5:6a:b1:1a:4b:
8e:14:04:d9:25:8d:0c:7f:bf:3e:d5:10:a3:a8:ef:86:84:20:
f1:2e:65:ae:cd:27:aa:1d:ba:22:95:f3:f6:f5:1d:2f:7b:05:
92:ab:09:93:74:31:bb:93:25:ae:16:f5:5b:23:6b:e2:08:e9:
a5:61:84:60:7a:ed:a3:9a:71:d2:30:06:76:c3:e9:ac:0d:f1:
97:4e:48:1d:dc:56:a9:ce:0f:d2:5d:f6:7d:77:8b:ad:a5:f8:
a1:52:77:dc:25:ac:ae:06:e9:c7:f5:77:db:e2:dc:e1:f9:da:
d0:5a:44:02:cd:3e:a8:0e:82:5b:11:43:2b:fe:48:bf:10:55:
fe:41:28:8a:88:8d:ec:dc:29:94:e2:bb:be:69:6d:8c:21:64:
23:31:a2:3e:cc:de:05:76:f3:91:ac:ee:49:34:9c:35:ef:1d:
bb:68:91:05:64:0e:5c:0b:6b:25:51:d8:73:c7:f9:d7:9f:a3:
71:d2:c4:f8:a9:d0:20:37:02:cc:44:ff:01:77:ad:05:6d:d9:
71:64:68:d6:75:bb:55:c3:f3:43:1a:a9:43:e0:59:2d:51:c9:
0b:31:ac:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net