Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mUip3T1mA_Q63jpqeAf_NzJzXEM.roa
File: mUip3T1mA_Q63jpqeAf_NzJzXEM.roa (raw, json)
Hash identifier: QyI0ctgBAeeeQPzu6Nq99Cpf8WveMr8M4pLiRRh6za0=
Subject key identifier: 99:48:A9:DD:3D:66:03:F4:3A:DE:3A:6A:78:07:FF:37:32:73:5C:43
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01847AB3F65C177D8561456533A02A24734E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mUip3T1mA_Q63jpqeAf_NzJzXEM.roa
Signing time: Tue 15 Nov 2022 09:52:04 +0000
ROA not before: Tue 15 Nov 2022 09:52:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35415
IP address blocks: 195.178.4.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:b3:f6:5c:17:7d:85:61:45:65:33:a0:2a:24:73:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Nov 15 09:52:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9948a9dd3d6603f43ade3a6a7807ff3732735c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7b:6e:8f:75:cd:50:db:15:41:a5:56:f5:24:
0d:67:46:33:fa:96:ac:15:a8:a3:5d:39:87:26:72:
57:21:61:ae:07:10:01:0e:9f:ab:1b:27:c2:59:76:
e2:fe:09:21:b3:31:31:08:db:94:ae:0f:b6:25:b8:
ce:7b:7c:82:7e:11:9f:8c:37:5b:47:37:6c:37:f0:
66:92:9f:40:80:f6:88:46:4c:60:5c:49:e6:6b:c3:
9e:c8:be:4b:08:6f:80:f9:ee:a8:25:ba:dd:45:39:
2a:b7:bb:50:5b:de:a3:5b:10:81:3f:1d:74:3c:70:
08:d1:00:ba:71:88:ba:c9:1e:c5:73:ea:a7:a2:39:
54:aa:62:42:8b:dc:bd:89:99:d8:39:1d:5a:ac:09:
10:84:e5:8f:d1:a5:d7:7d:af:a1:6e:55:8a:41:42:
05:dd:45:8c:e2:6c:55:ef:30:ee:e0:f7:43:9f:77:
85:70:c1:75:d6:e2:dd:12:26:98:97:2a:6f:c7:2f:
ad:10:cf:a7:72:9c:ed:01:fb:fe:da:27:82:1f:7a:
fe:98:19:2c:31:48:7f:a1:cf:60:23:5f:e5:ec:38:
a7:0c:1a:bb:cb:70:d0:a7:84:76:6d:7f:3d:c9:60:
e4:10:2e:c1:99:98:06:4f:58:22:31:e9:38:b1:86:
e5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:48:A9:DD:3D:66:03:F4:3A:DE:3A:6A:78:07:FF:37:32:73:5C:43
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mUip3T1mA_Q63jpqeAf_NzJzXEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.4.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:03:da:d5:dc:dc:19:ed:74:e5:d0:c5:db:ae:d1:29:5d:00:
f9:7c:1f:10:11:0e:e5:49:10:75:13:09:e0:af:e3:f5:6d:4e:
2a:38:c3:f2:d0:10:53:60:51:33:d7:08:53:a3:db:5f:c4:25:
5f:10:c4:d0:41:f3:a8:07:51:68:53:a8:7d:7e:25:96:8a:64:
b2:a9:eb:5d:c5:64:d1:aa:06:a8:dc:1f:80:5b:7f:6d:9e:cb:
e5:c9:c7:c7:5b:1a:91:9c:b6:74:a5:70:ab:64:91:c8:6c:43:
2b:51:78:a2:e4:fd:ea:08:c7:7e:be:69:de:c0:78:74:a5:bc:
39:33:57:f0:98:d2:e0:98:2c:2c:7c:79:fd:a6:f5:43:6f:04:
ff:28:52:da:87:f3:7b:ab:5d:b4:74:a5:d0:31:a8:57:52:76:
5f:4d:9e:ba:fb:de:35:1d:d4:aa:7b:71:8c:41:7e:28:9d:dd:
c3:5d:7a:1f:6a:df:1c:70:7f:f3:9e:2d:81:0d:a1:04:dd:b7:
20:f7:e3:e1:82:97:9b:a1:f4:c9:f4:d3:3e:b4:c8:35:0b:48:
31:69:ea:ec:78:bc:19:46:51:5f:f9:a4:2d:1e:44:3c:41:1d:
ee:24:46:44:1c:a2:a6:92:4d:11:88:cb:82:16:42:9d:5c:32:
6b:f7:d4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org