Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/MOO_ubglu41o8PNbW-K64ThJA40.roa
File: MOO_ubglu41o8PNbW-K64ThJA40.roa (raw, json)
Hash identifier: 1zygYL/yO6Cp4mLE9MLzMq6lbSAVuPv0fs4R4e5g6YQ=
Subject key identifier: 30:E3:BF:B9:B8:25:BB:8D:68:F0:F3:5B:5B:E2:BA:E1:38:49:03:8D
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709527DFAB098C2C6DBC5AD0D1211B5C
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/MOO_ubglu41o8PNbW-K64ThJA40.roa
Signing time: Mon 02 Jan 2023 03:45:01 +0000
ROA not before: Mon 02 Jan 2023 03:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43875
IP address blocks: 185.67.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:27:df:ab:09:8c:2c:6d:bc:5a:d0:d1:21:1b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30e3bfb9b825bb8d68f0f35b5be2bae13849038d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:93:54:fb:37:39:57:04:9d:6c:dd:4c:d6:91:
8d:4a:85:50:70:71:35:e8:c2:6d:0b:86:4c:a8:80:
83:5b:98:4c:4f:0a:a1:85:bb:b3:09:5e:f2:84:5e:
fc:54:32:69:c3:c7:b0:39:c9:3c:cc:e1:06:fd:a8:
7f:3c:70:92:8a:12:1d:9e:b7:01:30:8e:80:4b:53:
22:bb:bb:3f:35:54:ca:9e:06:5f:37:44:c9:78:f5:
83:aa:47:6e:dd:4d:93:83:ee:0a:ba:6f:b5:2a:ea:
e4:ad:b2:bd:cc:e4:2a:82:dd:68:07:12:97:44:21:
68:9a:16:fa:8b:a4:74:4c:a0:a2:8a:00:ac:7e:81:
3b:26:de:20:46:db:b3:58:a3:db:bc:79:30:36:c4:
54:82:2c:16:49:a2:52:63:86:04:8c:ab:ef:c2:93:
29:f8:ee:6c:ce:47:fa:87:2f:9c:cf:91:b4:e8:a8:
6c:42:70:5e:43:51:1a:88:d0:09:b6:c0:88:25:19:
22:b0:a7:69:a9:5c:24:a1:f3:29:1f:e9:5d:d6:a5:
f6:7d:5a:0d:e9:c8:92:69:71:ef:4b:b4:d7:19:2c:
bc:cb:c0:95:c6:c0:55:24:9d:75:fd:5c:6b:57:04:
6f:57:6d:b5:54:29:09:eb:fc:65:2d:df:d1:0c:c4:
67:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E3:BF:B9:B8:25:BB:8D:68:F0:F3:5B:5B:E2:BA:E1:38:49:03:8D
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/MOO_ubglu41o8PNbW-K64ThJA40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.252.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d6:99:09:51:b7:19:12:ac:af:76:0b:af:57:98:d7:cd:ec:
ca:90:99:bd:69:4c:02:a6:bb:1a:73:4e:63:e5:3b:e2:5f:ff:
ae:df:e9:7f:4f:b0:bc:0a:1b:3e:3b:97:2a:00:80:be:dd:1f:
7d:4d:94:8c:0d:75:81:7b:85:02:2e:cc:e2:f2:24:d0:aa:74:
67:aa:a4:70:a5:86:11:b0:36:27:a2:65:b1:15:b1:4d:2a:45:
b6:74:32:f1:3d:71:4a:6e:dd:5c:fb:f8:d7:b7:56:7f:04:fa:
7e:95:ec:cc:26:03:60:8e:14:7a:c9:df:fe:f6:78:ed:d0:74:
77:c5:16:4d:93:4a:28:94:3e:d4:d8:cd:12:40:bd:70:45:7f:
59:d2:45:28:8e:fe:3e:a1:f2:41:45:a5:a6:dd:c8:67:37:74:
c7:bd:7a:71:f4:35:7e:df:32:1e:e2:fe:c9:6f:15:f5:28:68:
32:f0:19:8b:ac:de:97:d1:95:00:b0:ce:bf:d8:3f:77:e0:33:
0a:9f:ad:88:7e:97:2c:f4:05:30:4a:f2:c8:ca:9c:4e:9e:d5:
4b:63:b4:40:b4:bc:a0:1a:c0:21:a3:fb:a2:1e:9b:25:bd:c7:
90:25:b2:65:a9:9f:fb:39:16:61:41:71:fe:e4:58:71:a0:00:
87:0e:55:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:16 2025 by rpki-client