Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/1-MuRbz1XLyDQ2dhhvDhKyB09_kY.roa
File: 1-MuRbz1XLyDQ2dhhvDhKyB09_kY.roa (raw, json)
Hash identifier: 8iwgU3YBP+BK1nifC2PAyJ5EZ9084wetlFxN4hBpvQw=
Subject key identifier: F8:CB:91:6F:3D:57:2F:20:D0:D9:D8:61:BC:38:4A:C8:1D:3D:FE:46
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018562C42D2C0D203CE6C17C1A0E521C4FA4
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/1-MuRbz1XLyDQ2dhhvDhKyB09_kY.roa
Signing time: Fri 30 Dec 2022 11:21:41 +0000
ROA not before: Fri 30 Dec 2022 11:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56323
IP address blocks: 159.148.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:c4:2d:2c:0d:20:3c:e6:c1:7c:1a:0e:52:1c:4f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Dec 30 11:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8cb916f3d572f20d0d9d861bc384ac81d3dfe46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:df:10:73:6d:77:d9:29:95:54:7d:47:da:01:
68:18:4b:4f:71:56:08:60:0e:39:fe:f9:f9:3a:07:
fd:d7:e6:d2:22:3f:20:3b:32:fe:75:5e:0f:3b:77:
61:03:af:65:28:1b:0c:37:54:6c:e0:b0:a7:52:8a:
55:6a:6e:76:4f:a5:67:4d:bf:24:80:84:ea:ad:5a:
93:93:f0:31:b1:5d:bd:ce:fc:a1:0a:a5:bc:6c:bc:
0b:4a:29:b9:68:80:8f:b6:5e:3e:c6:35:b4:e0:e4:
64:a1:2f:d3:70:69:09:94:aa:58:50:da:50:1f:bf:
e7:87:d3:a5:fe:0f:de:6b:14:cf:f1:77:9b:58:01:
08:67:af:4c:71:84:69:51:63:8f:2b:b4:9f:1a:c4:
f2:24:04:9b:92:13:26:ab:37:39:92:f4:95:19:f3:
ee:74:46:d1:05:d9:2c:0d:5f:bc:c6:b5:fd:04:40:
1f:9d:ad:17:83:17:57:d2:29:06:97:2e:99:ae:13:
2d:03:ad:bf:e0:93:88:e7:79:93:14:c1:2c:9c:41:
06:0f:65:ed:13:14:53:3c:e9:f3:45:0b:84:0c:56:
f5:ec:7f:7d:de:75:6f:3f:d4:63:ab:74:79:74:e9:
74:f3:d5:cc:f9:14:3d:d4:c4:c9:a1:3b:b6:f8:86:
b6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:CB:91:6F:3D:57:2F:20:D0:D9:D8:61:BC:38:4A:C8:1D:3D:FE:46
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/1-MuRbz1XLyDQ2dhhvDhKyB09_kY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.141.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:2c:11:c5:a9:cf:da:81:70:e7:a8:ce:5e:af:07:ad:20:ae:
85:3d:43:ce:32:b2:73:bf:2f:2c:b3:bf:46:bf:34:2a:96:e0:
d3:5f:c2:17:a3:b9:de:4e:f4:66:56:0f:37:07:25:77:8a:f9:
63:ae:a9:55:b7:43:8b:5b:93:b5:89:ec:64:33:67:34:17:f0:
27:d8:8d:41:e1:c3:b7:b1:c1:28:b7:ec:f2:3f:c6:be:e4:3e:
ca:50:84:95:b4:76:5c:03:76:ee:3c:c7:75:b5:e7:5a:2d:e3:
65:6d:56:d1:6e:4e:5b:88:25:a2:dc:49:da:0b:96:ac:04:d0:
90:bc:3d:09:f1:69:68:26:d7:d9:dd:b7:97:fc:83:e6:3b:a1:
89:3a:eb:b5:d6:bb:10:4f:85:17:74:67:66:12:1a:1b:d1:99:
da:ed:29:06:3e:b9:b0:93:ad:d5:b8:28:b5:63:a6:62:6b:5c:
6c:41:e9:51:4a:34:72:76:db:77:df:c2:d7:e4:6a:c8:b1:5a:
1a:69:e9:ea:15:f7:ea:75:b5:1b:e0:46:28:98:d3:21:06:b3:
bf:ff:4e:4d:eb:2d:2a:d2:21:b7:35:8f:eb:79:24:2e:cd:b1:
3a:20:ef:11:09:9c:a2:8f:cf:55:92:17:10:bb:03:3e:6e:73:
83:ff:15:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:45 2023 by rpki-client on console-fra.rpki-client.org