Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/M5qsyTgmxZlXfiBghl8hBDhY3Sk.roa
File: M5qsyTgmxZlXfiBghl8hBDhY3Sk.roa (raw, json)
Hash identifier: 6386Hj3KZgTBfQRXrx1zxZ6fsaLq6TeQjtXf+JK8pco=
Subject key identifier: 33:9A:AC:C9:38:26:C5:99:57:7E:20:60:86:5F:21:04:38:58:DD:29
Certificate issuer: /CN=3b637ccf393f52e0b56fb58ee35af54411daf644
Certificate serial: 0183F9ED7505153FB944A3352C90C0598FD1
Authority key identifier: 3B:63:7C:CF:39:3F:52:E0:B5:6F:B5:8E:E3:5A:F5:44:11:DA:F6:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2N8zzk_UuC1b7WO41r1RBHa9kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/M5qsyTgmxZlXfiBghl8hBDhY3Sk.roa
Signing time: Fri 21 Oct 2022 09:43:52 +0000
ROA not before: Fri 21 Oct 2022 09:43:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201821
IP address blocks: 185.63.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:ed:75:05:15:3f:b9:44:a3:35:2c:90:c0:59:8f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b637ccf393f52e0b56fb58ee35af54411daf644
Validity
Not Before: Oct 21 09:43:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=339aacc93826c599577e2060865f21043858dd29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0c:2c:eb:c7:9e:8a:6f:bf:ea:90:a1:3a:01:
2c:34:28:ac:06:d2:41:f7:3b:74:04:a0:d5:e5:ba:
47:8f:d5:9d:1d:e1:f2:86:3b:23:80:4e:20:cb:f9:
c3:93:ab:d6:ee:cc:a4:38:9a:14:df:ff:09:e5:02:
b0:d0:16:c9:fd:12:23:f1:f1:d0:6f:11:56:0e:16:
65:24:3f:49:85:5e:d4:c3:8a:61:71:bf:20:79:7d:
d4:59:27:c7:ed:ac:41:43:ee:5a:52:30:08:2a:8b:
87:3a:ce:7b:f6:8b:8e:bf:f7:33:d1:1a:02:b9:d1:
ad:b1:1f:cd:5a:6b:42:b9:ac:74:6e:05:bf:e9:d5:
ba:43:e0:5c:16:ad:47:b8:45:f5:2e:2e:44:d6:62:
6e:f5:ba:65:19:66:d9:d2:ba:d4:b7:89:74:aa:4b:
69:d0:7d:9e:aa:91:46:db:8e:be:51:a0:eb:dd:6a:
34:70:e1:25:7e:89:c1:aa:b9:36:a6:c1:2d:e1:3f:
5d:ce:c7:19:0b:ff:8d:4f:39:43:ca:35:3e:cb:6e:
04:bc:d1:c0:9a:bb:94:90:a1:6b:f1:90:10:b6:b6:
bc:ee:67:1c:05:9c:ef:8b:83:80:f5:f8:41:06:6b:
3b:65:4e:f6:b7:62:f2:35:6f:b2:e6:3c:0c:c2:8c:
0e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9A:AC:C9:38:26:C5:99:57:7E:20:60:86:5F:21:04:38:58:DD:29
X509v3 Authority Key Identifier:
keyid:3B:63:7C:CF:39:3F:52:E0:B5:6F:B5:8E:E3:5A:F5:44:11:DA:F6:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2N8zzk_UuC1b7WO41r1RBHa9kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/M5qsyTgmxZlXfiBghl8hBDhY3Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9c5c1f-f4b6-45a8-9c9f-30733d370df3/1/O2N8zzk_UuC1b7WO41r1RBHa9kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.75.0/24
Signature Algorithm: sha256WithRSAEncryption
95:0c:dc:2b:80:8b:37:02:ea:0a:9c:68:59:a1:77:dd:46:11:
99:2b:86:e5:0a:b8:8a:9e:d8:d4:d1:a0:5a:e9:97:79:8a:bf:
8a:f9:93:ec:ca:ee:03:21:8a:66:9b:7a:99:0e:cd:3b:42:3e:
e4:1a:c1:ec:1d:65:4f:e9:b0:20:30:55:1f:31:fc:c9:4c:13:
ab:ee:28:75:b4:89:60:91:ea:3b:85:15:f5:fb:6c:2b:69:8a:
15:7b:0f:53:2a:93:05:06:43:42:81:70:ec:b8:a2:7b:61:44:
19:98:ea:b9:01:3b:19:69:a6:b1:4c:36:a7:bd:10:f0:5d:b1:
b1:8e:46:da:e4:b7:0c:22:f3:b0:ed:8a:ae:8b:b5:16:fd:f6:
52:a9:7e:5a:d5:16:2f:b3:31:69:21:c5:ad:c8:95:c9:70:c9:
23:3d:f4:f4:f7:a9:fb:39:b8:73:05:ad:4a:0d:74:be:9a:b4:
56:00:11:85:8c:ee:3b:aa:dc:db:ca:18:b9:fc:8a:1e:43:f8:
e8:c2:6d:0d:d0:c9:c8:41:25:84:cc:97:85:b4:dd:51:41:2c:
93:29:41:05:b8:92:df:c9:d7:63:bd:c3:bc:9d:0b:1b:9f:9a:
d2:bf:57:8d:f6:58:c6:54:37:7d:b8:d1:ec:41:7c:87:29:83:
9c:a9:30:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org