Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/DzbUfOTJDi3_5Clde1SzgdoiwGk.roa
File: DzbUfOTJDi3_5Clde1SzgdoiwGk.roa (raw, json)
Hash identifier: OqIzn8LXT9O8MlAQiZyKfcfYHiBIrBt1aqwXIbZQ7b0=
Subject key identifier: 0F:36:D4:7C:E4:C9:0E:2D:FF:E4:29:5D:7B:54:B3:81:DA:22:C0:69
Certificate issuer: /CN=49d15a10e74710936cb8c37b7c6f5f1fb38c121f
Certificate serial: 018239514364F8C7A20A118F1FD0686A122E
Authority key identifier: 49:D1:5A:10:E7:47:10:93:6C:B8:C3:7B:7C:6F:5F:1F:B3:8C:12:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdFaEOdHEJNsuMN7fG9fH7OMEh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/DzbUfOTJDi3_5Clde1SzgdoiwGk.roa
Signing time: Tue 26 Jul 2022 07:03:23 +0000
ROA not before: Tue 26 Jul 2022 07:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48930
IP address blocks: 195.88.98.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:39:51:43:64:f8:c7:a2:0a:11:8f:1f:d0:68:6a:12:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49d15a10e74710936cb8c37b7c6f5f1fb38c121f
Validity
Not Before: Jul 26 07:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f36d47ce4c90e2dffe4295d7b54b381da22c069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4c:e8:34:d7:05:e3:69:93:14:f3:2d:9b:bf:
66:55:c4:d0:16:fc:b4:66:85:ca:8f:7a:de:72:94:
ac:6a:f5:60:2a:f2:82:7e:e8:ad:aa:14:9c:47:e5:
88:f7:13:ed:45:fe:23:4f:e0:45:98:bb:74:7d:b5:
0d:06:73:e0:ca:81:47:89:f8:a7:8d:b8:7f:a0:fa:
9d:7d:13:1e:2d:6c:db:91:7c:86:59:24:6c:ac:17:
5a:e5:88:1b:2d:05:f0:c7:8e:9d:1f:a5:ce:2d:28:
52:97:bb:59:ac:39:d6:65:ea:0b:23:bf:8b:8c:77:
64:10:cf:ba:9d:16:30:f8:ec:43:b9:07:83:5a:63:
58:07:4b:c3:09:87:e3:bb:9e:95:c4:ae:ed:e4:83:
37:6b:d6:21:45:4d:d2:a5:8d:c2:aa:bc:bf:15:7d:
ab:c4:e3:42:6e:e3:1d:70:40:8e:72:a0:03:f4:b8:
e9:cd:cc:ab:f6:39:27:98:a2:9f:62:9d:e7:45:ea:
c7:b1:d9:fe:3a:5f:a0:61:8e:b4:e8:e0:b0:53:83:
8e:fa:bf:a4:f9:6c:26:45:6f:ce:50:73:c5:9c:ae:
a7:26:67:54:3b:76:2b:59:9c:f3:a5:d5:38:75:9a:
d5:3a:61:8a:50:a7:9b:37:93:b4:ba:59:d1:eb:1a:
93:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:36:D4:7C:E4:C9:0E:2D:FF:E4:29:5D:7B:54:B3:81:DA:22:C0:69
X509v3 Authority Key Identifier:
keyid:49:D1:5A:10:E7:47:10:93:6C:B8:C3:7B:7C:6F:5F:1F:B3:8C:12:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdFaEOdHEJNsuMN7fG9fH7OMEh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/DzbUfOTJDi3_5Clde1SzgdoiwGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/814325-2191-41c6-b2ed-e229a42c4085/1/SdFaEOdHEJNsuMN7fG9fH7OMEh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.98.0/23
Signature Algorithm: sha256WithRSAEncryption
90:91:db:ae:ae:7c:3a:2d:87:ee:13:78:c6:f1:2c:a0:6a:e1:
91:aa:36:c3:8a:02:6c:73:51:65:89:a8:0d:18:e2:1f:d3:49:
8f:3a:0c:60:ad:36:95:96:37:79:04:d0:bb:71:81:8d:1e:bf:
cd:0f:3c:3d:09:89:13:a2:c1:af:06:f4:fc:32:85:54:89:f1:
19:c0:1c:48:b9:76:dc:73:e9:65:2b:cb:c0:9d:69:d6:b7:b3:
23:86:e0:56:3b:a6:0d:5b:a2:4f:40:47:1f:96:27:3f:27:0e:
d6:04:5d:03:e6:c0:f0:ce:9f:e9:28:1b:0b:a2:6c:e6:dc:7e:
4d:73:04:3b:9e:20:08:15:47:77:4f:68:26:e5:6a:52:66:1c:
10:69:70:0a:0d:fe:b2:28:93:ed:f8:67:00:5e:f0:48:ec:24:
3b:2d:c4:e6:16:d2:9e:54:4a:ac:9a:e8:58:9f:2a:1b:34:31:
b6:36:72:bb:31:5e:d7:48:c3:f4:3e:6d:cf:9b:11:1e:f7:1c:
28:30:f8:d4:fa:1e:c6:3a:28:1d:f1:1c:da:a4:6b:b3:7c:33:
66:eb:a5:75:e1:18:c6:34:1d:a6:ce:70:35:9c:3d:2a:40:5c:
dd:7d:f6:14:0f:c0:7a:4f:b1:5d:2c:86:e0:41:49:4f:7a:3e:
9e:9f:e0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:34 2023 by rpki-client on console-fra.rpki-client.org