Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/OzUA1oXRhkHpxg5e5eFS4wt2Eqk.roa
File: OzUA1oXRhkHpxg5e5eFS4wt2Eqk.roa (raw, json)
Hash identifier: zMAmBuAqBrjaXd9Zpe/fJ2olj81NTklhR46RpJmsrzQ=
Subject key identifier: 3B:35:00:D6:85:D1:86:41:E9:C6:0E:5E:E5:E1:52:E3:0B:76:12:A9
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 046595FD
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/OzUA1oXRhkHpxg5e5eFS4wt2Eqk.roa
Signing time: Tue 01 Mar 2022 08:29:58 +0000
ROA not before: Tue 01 Mar 2022 08:29:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42619
IP address blocks: 193.59.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73766397 (0x46595fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 1 08:29:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b3500d685d18641e9c60e5ee5e152e30b7612a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c6:7f:31:8e:96:ff:ca:79:d3:e9:d0:0b:4b:
8f:e5:a2:57:b0:17:a7:16:4d:88:f0:e7:99:41:f0:
d6:c6:eb:47:39:01:6e:90:9e:ee:7e:f6:d8:1f:a5:
a4:9d:98:50:c2:8b:b6:ed:ee:06:89:2e:ae:24:a7:
21:bc:29:0e:1c:85:66:f2:b9:87:ed:3f:1e:4d:c4:
41:43:a7:75:8d:5d:80:39:c5:2b:ce:60:2f:06:17:
84:46:c9:9c:2a:2f:ce:e5:05:20:20:05:6f:56:d9:
37:54:63:1f:cc:20:19:ca:78:c6:a0:5b:7f:19:3c:
05:54:4f:24:0f:2d:44:e0:06:c9:11:0a:68:d0:f2:
fb:0c:ad:ed:af:a9:9c:83:59:01:59:23:63:7d:d7:
7d:cf:be:f7:83:e4:8f:cd:78:9e:85:a0:cd:20:4f:
1d:67:13:92:22:96:70:14:2b:fe:19:77:76:07:a1:
e2:b6:48:cb:69:e6:db:0f:76:63:4a:d6:a2:11:e0:
b5:89:78:d2:28:67:b4:b0:05:e8:4f:ab:8f:e1:4c:
43:2c:36:56:be:7e:bc:e4:ee:45:72:1d:27:79:aa:
0f:2f:08:88:2e:6c:08:ac:51:28:dc:69:65:2a:38:
c2:ad:32:3d:e3:66:c0:2e:bc:d5:40:0e:03:33:81:
3d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:35:00:D6:85:D1:86:41:E9:C6:0E:5E:E5:E1:52:E3:0B:76:12:A9
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/OzUA1oXRhkHpxg5e5eFS4wt2Eqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.60.0/22
Signature Algorithm: sha256WithRSAEncryption
18:64:95:ad:2f:0a:4f:9c:44:72:7c:02:22:cc:57:f8:1c:7a:
e5:d8:a4:a3:18:93:a7:9a:a2:44:35:db:a2:44:af:a8:f6:ae:
bd:b1:86:36:8b:d0:40:b4:d9:02:1d:2a:f5:34:81:88:69:bb:
4a:11:05:2e:4a:39:ec:e4:ae:7b:3e:ee:76:2c:a5:ce:e1:50:
0e:8a:0e:7d:ff:ae:16:53:d4:66:1d:4d:49:e9:08:fd:da:f8:
cd:36:7f:d4:1c:5c:05:58:db:07:db:61:ff:3c:8b:6d:93:f5:
9a:7e:05:77:c6:1c:98:d5:39:23:ac:23:6b:2a:44:6e:a4:2b:
e9:72:8e:da:05:64:a1:b8:39:8c:7b:ad:9e:ae:80:73:f2:35:
40:66:99:3f:dd:76:f1:4c:29:ef:d7:24:e5:28:da:1d:86:53:
49:b2:b3:ee:ac:17:3e:e2:45:35:9d:69:b4:4f:9f:b9:48:75:
f0:0f:d3:77:4a:c8:24:bf:1e:3b:d0:e5:6a:a1:33:92:95:06:
a1:b1:33:0e:58:f7:3c:f8:24:f6:da:75:8e:0e:aa:25:01:e1:
09:b3:73:ce:7f:3c:be:23:8b:52:4a:0e:a8:51:ce:4a:ab:01:
23:a4:62:ef:5a:29:75:c4:9b:59:6d:61:20:a7:50:0f:4a:93:
0e:c9:ba:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org