Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/SGVAULrXT3rUrssARAMueqMSOf0.roa
File: SGVAULrXT3rUrssARAMueqMSOf0.roa (raw, json)
Hash identifier: LKKi/Gpwevy9XmJCkkKntHWCqcYe4GnYLTjz4cRdBG8=
Subject key identifier: 48:65:40:50:BA:D7:4F:7A:D4:AE:CB:00:44:03:2E:7A:A3:12:39:FD
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 099E2825
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/SGVAULrXT3rUrssARAMueqMSOf0.roa
Signing time: Sat 01 Jan 2022 05:04:12 +0000
ROA not before: Sat 01 Jan 2022 05:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202658
IP address blocks: 88.148.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161359909 (0x99e2825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 1 05:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48654050bad74f7ad4aecb0044032e7aa31239fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:59:83:dc:15:43:ef:d2:fa:2e:81:c1:bb:98:
de:93:7f:6a:42:f7:d3:44:2b:4f:e8:03:9e:ac:27:
bc:5f:06:1e:45:b8:d4:43:ef:87:9c:78:c8:30:bd:
70:60:00:ee:dd:78:99:b8:31:2d:ca:bb:f6:cd:16:
21:98:c8:17:89:76:a8:22:6d:01:84:d2:46:5e:52:
1b:e6:51:d7:a3:99:07:2e:bc:53:62:8c:ba:57:3b:
2f:b0:51:b7:5d:af:ae:21:d7:ae:76:2e:f8:68:eb:
f2:0b:87:92:70:9f:3f:60:83:98:de:ed:0b:d5:f5:
10:9c:f0:b6:39:2f:be:98:5a:94:d4:b6:a0:45:83:
d3:7b:98:0a:07:80:d1:8b:ac:64:fb:4e:af:70:38:
98:7b:0a:b3:5e:06:eb:81:89:bd:75:a6:02:c9:a9:
50:51:09:dd:b1:84:21:32:1e:f2:33:73:e7:22:36:
bc:e5:a7:dc:28:06:34:be:e0:44:f7:e4:9d:b9:2b:
69:6f:52:c1:9f:23:4a:9f:19:af:89:8e:5e:6d:55:
78:7a:9c:fe:f1:05:9c:29:b8:79:4c:7c:1c:96:fd:
e6:5b:3a:c4:b2:70:08:52:40:c2:da:41:ea:53:a9:
6e:e7:e4:f8:04:d0:69:31:eb:7a:3c:c0:b1:e3:29:
7d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:65:40:50:BA:D7:4F:7A:D4:AE:CB:00:44:03:2E:7A:A3:12:39:FD
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/SGVAULrXT3rUrssARAMueqMSOf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.148.49.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:9d:82:cf:72:00:3d:dc:b9:51:c6:42:99:f4:98:4d:dd:93:
58:3b:71:30:12:c3:9f:c1:56:ba:e2:55:e2:df:fc:4d:99:b2:
bd:3e:7f:59:5f:78:ad:ca:3a:63:25:40:2b:ab:af:fb:0c:d5:
3d:03:dd:98:d7:21:e2:60:66:f0:ae:58:46:77:9b:a3:31:0e:
4f:56:8f:e3:87:d5:37:9e:38:3d:9e:23:a3:a2:a3:04:69:15:
e3:f6:30:03:25:9a:52:37:03:61:cf:49:b7:df:a8:b2:58:7c:
f5:59:9a:5c:e6:94:8b:cb:3c:d9:f7:c1:90:fc:d4:aa:ea:c5:
6d:81:f9:ea:ce:01:a0:aa:57:9e:b5:82:36:df:de:10:fc:63:
f4:5e:b7:61:6f:16:72:76:77:47:e2:51:65:23:c3:5c:82:92:
2f:6b:87:4e:3a:ea:72:bb:dd:15:ae:03:6d:94:f0:e9:e9:92:
f4:87:b4:a9:43:fd:4a:80:4b:01:04:d4:3e:2d:58:f0:a7:fd:
a3:e6:60:58:3e:33:41:50:3f:15:1d:2f:6a:0b:1e:dc:d0:3c:
d9:2a:64:ff:a6:f1:b3:1d:e7:25:76:7e:39:71:0f:1a:a9:b4:
6b:ca:cc:7f:84:b3:a6:b8:85:4d:8b:15:ea:bf:eb:c4:ae:7d:
cb:68:b6:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:20 2023 by rpki-client on console-fra.rpki-client.org