Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/26464a-bdc6-4324-ae9f-aa258b031770/1/mUgPuh4--eY29oDxameW_3rEreY.roa
File: mUgPuh4--eY29oDxameW_3rEreY.roa (raw, json)
Hash identifier: G8/Bh9GZJ64LcHJqTh73LSPbqK7JWL+Xji6bLThddWQ=
Subject key identifier: 99:48:0F:BA:1E:3E:F9:E6:36:F6:80:F1:6A:67:96:FF:7A:C4:AD:E6
Certificate issuer: /CN=d36a7ac9ce858dfd31bdaa9c81e4d469a9177956
Certificate serial: 018212053F18F3AB81D2CCD8C18FBDB0D9CD
Authority key identifier: D3:6A:7A:C9:CE:85:8D:FD:31:BD:AA:9C:81:E4:D4:69:A9:17:79:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02p6yc6Fjf0xvaqcgeTUaakXeVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/26464a-bdc6-4324-ae9f-aa258b031770/1/mUgPuh4--eY29oDxameW_3rEreY.roa
Signing time: Mon 18 Jul 2022 15:55:09 +0000
ROA not before: Mon 18 Jul 2022 15:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208085
IP address blocks: 193.242.127.0/24 maxlen: 24
2a11:bc0:1::/48 maxlen: 48
2a11:bc0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:12:05:3f:18:f3:ab:81:d2:cc:d8:c1:8f:bd:b0:d9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d36a7ac9ce858dfd31bdaa9c81e4d469a9177956
Validity
Not Before: Jul 18 15:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99480fba1e3ef9e636f680f16a6796ff7ac4ade6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:34:af:ba:d8:f1:cf:46:7b:74:b7:f8:ad:1d:
4e:92:21:06:d1:a8:fd:a5:6a:ac:1f:3f:ac:1e:db:
25:6b:ae:aa:8a:dc:25:88:ff:38:0d:15:cd:09:45:
0c:c8:c2:c1:b6:a6:29:47:80:68:18:eb:56:16:a6:
9a:e0:56:01:82:d7:34:e1:16:ca:da:da:d9:28:33:
3f:07:16:51:29:0b:24:c4:1f:2b:20:18:ef:54:6b:
07:76:54:ef:ca:cd:e8:22:2e:46:dd:21:cb:51:0c:
b6:cb:97:b3:44:46:2e:4f:8d:bf:eb:f6:3f:69:f9:
25:7d:93:b7:f8:3d:50:8e:6d:01:6e:d3:7d:db:c9:
01:84:9f:30:81:9b:f3:ca:70:23:c7:64:dc:e4:08:
09:7b:27:d7:d6:71:0d:2b:1d:d6:80:11:b7:cc:b5:
a4:d0:57:3d:8f:de:dc:16:35:89:3a:18:d8:e6:32:
f9:ef:8d:61:97:df:8c:8d:55:00:04:8e:83:2c:0d:
e8:bb:cb:a8:db:ce:72:26:41:d2:cc:02:bc:6e:94:
58:07:38:ae:58:4a:d3:ac:e7:bd:9c:c8:16:91:7e:
7b:92:90:bf:2c:bf:42:2f:61:75:37:34:ea:0a:8b:
c9:80:fb:03:db:f7:57:a9:ae:82:41:7c:8c:c2:9c:
92:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:48:0F:BA:1E:3E:F9:E6:36:F6:80:F1:6A:67:96:FF:7A:C4:AD:E6
X509v3 Authority Key Identifier:
keyid:D3:6A:7A:C9:CE:85:8D:FD:31:BD:AA:9C:81:E4:D4:69:A9:17:79:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02p6yc6Fjf0xvaqcgeTUaakXeVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/26464a-bdc6-4324-ae9f-aa258b031770/1/mUgPuh4--eY29oDxameW_3rEreY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/26464a-bdc6-4324-ae9f-aa258b031770/1/02p6yc6Fjf0xvaqcgeTUaakXeVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.127.0/24
IPv6:
2a11:bc0::/47
Signature Algorithm: sha256WithRSAEncryption
06:79:7e:3c:66:06:9b:a7:48:be:11:f7:8f:be:21:df:01:5b:
c7:9c:a0:a4:cd:85:18:c8:87:49:bf:c7:f6:77:71:d1:ad:6c:
e6:59:5f:df:89:25:18:3c:10:e5:60:ff:c9:62:c4:61:6e:67:
4a:a2:e9:14:d8:66:ba:49:84:90:c8:5d:ec:31:48:b6:b5:15:
b7:54:54:60:6e:43:c8:e3:74:8c:e9:35:37:2b:ea:88:38:46:
fe:2c:7a:0a:ac:76:fe:a5:eb:16:b7:52:53:27:ce:6c:d2:3b:
1f:35:f7:3d:af:81:0b:dd:43:51:95:62:bf:b4:4e:57:a7:12:
4d:9b:f9:66:fe:c3:f9:f4:85:49:44:27:13:f8:5c:e4:11:34:
53:b5:91:ce:87:51:22:0a:d2:df:5e:2f:92:95:ba:0d:e1:0d:
ae:53:00:5a:2d:56:73:27:ea:a7:b4:4e:2c:2a:17:3e:8b:25:
4f:85:90:50:33:2e:80:77:63:06:f3:da:b6:9b:23:58:5c:e3:
73:1f:58:3a:5d:ea:9d:ff:e8:74:d2:84:5f:7c:5f:0d:01:98:
0a:a9:02:a2:ba:0d:7e:8e:66:66:9c:03:7f:28:03:47:81:1a:
59:e8:37:c8:b9:4a:ce:a1:34:6e:0a:e0:af:f2:b4:18:21:18:
d3:30:86:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org