Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/muwGP1P8ehRz90l8X2EtlcP4DIo.roa
File: muwGP1P8ehRz90l8X2EtlcP4DIo.roa (raw, json)
Hash identifier: 9RL4V4fOpyvlwnxs/nAxtCj1rI3iO8WZjP9iuLp3zq0=
Subject key identifier: 9A:EC:06:3F:53:FC:7A:14:73:F7:49:7C:5F:61:2D:95:C3:F8:0C:8A
Certificate issuer: /CN=406f014a2bc76ae04e6d304d06aacbfc8e85d514
Certificate serial: 048854CE
Authority key identifier: 40:6F:01:4A:2B:C7:6A:E0:4E:6D:30:4D:06:AA:CB:FC:8E:85:D5:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QG8BSivHauBObTBNBqrL_I6F1RQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/muwGP1P8ehRz90l8X2EtlcP4DIo.roa
Signing time: Sat 01 Jan 2022 12:55:40 +0000
ROA not before: Sat 01 Jan 2022 12:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34136
IP address blocks: 195.234.76.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76043470 (0x48854ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=406f014a2bc76ae04e6d304d06aacbfc8e85d514
Validity
Not Before: Jan 1 12:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9aec063f53fc7a1473f7497c5f612d95c3f80c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b3:57:d7:d3:80:85:d9:47:c2:36:04:74:57:
83:ee:49:61:53:4d:0c:3f:fb:a2:61:35:77:52:86:
62:ea:74:6a:2c:0e:fa:c6:f9:61:f7:8b:88:bb:3e:
e1:91:26:c6:d3:3b:48:8f:8f:98:87:50:78:1c:33:
78:39:41:13:d9:80:6d:f7:e5:ce:bd:fe:13:98:1a:
95:8b:5a:b3:68:a5:2c:d5:43:07:a7:b2:2f:26:66:
5c:58:8e:78:11:3d:4b:11:28:51:f2:a5:0d:68:e9:
c3:9e:88:80:00:5b:b7:ed:a6:c6:dd:44:3a:e9:c0:
61:7b:48:68:88:ab:44:ea:34:68:e2:0e:0f:89:dd:
b6:cb:42:0d:ed:dd:77:00:07:f1:c4:56:26:25:89:
7d:82:5d:c8:39:56:29:bc:38:8b:b5:24:ee:2e:23:
fc:61:63:eb:65:0c:a6:f7:ca:ee:d1:fe:7a:17:d3:
8c:4b:f3:a5:e3:ed:fe:64:7a:36:81:c3:07:71:9f:
76:16:51:a5:96:45:05:ad:20:3a:03:25:51:6b:7b:
a4:08:af:cc:63:44:12:63:41:b8:11:ef:43:7f:0a:
ef:b4:fc:21:b2:57:60:68:21:f4:d0:2e:08:d9:5a:
18:b9:6d:1f:5a:13:d7:1b:8f:c4:de:8a:c8:45:fd:
63:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:EC:06:3F:53:FC:7A:14:73:F7:49:7C:5F:61:2D:95:C3:F8:0C:8A
X509v3 Authority Key Identifier:
keyid:40:6F:01:4A:2B:C7:6A:E0:4E:6D:30:4D:06:AA:CB:FC:8E:85:D5:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QG8BSivHauBObTBNBqrL_I6F1RQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/muwGP1P8ehRz90l8X2EtlcP4DIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/QG8BSivHauBObTBNBqrL_I6F1RQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.76.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:04:18:48:3b:07:1f:af:31:46:6f:aa:6d:0c:7a:9b:1b:21:
f4:48:3a:06:69:65:7c:1c:51:8b:15:b0:3e:13:2b:91:84:9a:
f9:a9:d3:ce:5d:44:83:2d:a1:56:e7:d2:6a:4e:c7:8f:66:80:
a1:26:05:b1:e1:a2:99:42:b5:43:37:cf:14:2e:32:6d:10:9e:
1b:6c:09:64:75:cf:6e:c5:7e:d9:3b:04:54:a5:dc:1f:9a:7f:
fd:87:1b:4c:16:8c:b5:c2:8e:e4:2d:d9:3b:4f:ab:f5:9f:87:
dd:be:22:b5:92:81:42:6e:9e:93:19:ee:ff:1a:cb:48:5b:85:
44:6a:ae:29:d2:26:a7:b0:22:55:97:d9:f0:2d:2a:d9:65:83:
15:94:f7:0a:10:07:c4:0d:d6:ed:07:b7:83:c5:fc:e0:1d:42:
de:66:88:f4:66:c5:3e:58:c3:88:08:9b:67:f3:bc:3d:23:88:
7c:fd:74:b0:e8:e0:f6:15:e6:52:b1:86:99:df:22:85:ee:04:
e1:97:f2:5a:7f:92:5b:b9:df:13:a6:cc:2a:cb:93:df:6c:f5:
29:32:ac:6d:6d:86:cb:a5:e5:98:08:bd:d8:d3:e0:b5:55:f6:
0f:2e:c8:cd:98:44:90:e7:c4:cf:87:61:61:68:06:79:dc:35:
1b:64:f6:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:23 2024 by rpki-client on console-fra.rpki-client.org