Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/m0UklreK9eUPXN5XQ270JorqBss.roa
File: m0UklreK9eUPXN5XQ270JorqBss.roa (raw, json)
Hash identifier: EZK7JGIdlLej3m0xLdBsROwil2709LUVr9kp1nXJlOI=
Subject key identifier: 9B:45:24:96:B7:8A:F5:E5:0F:5C:DE:57:43:6E:F4:26:8A:EA:06:CB
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0182FDD74FF8DA8F1ADE757E6A2D64FD3A4C
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/m0UklreK9eUPXN5XQ270JorqBss.roa
Signing time: Fri 02 Sep 2022 10:55:22 +0000
ROA not before: Fri 02 Sep 2022 10:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17447
IP address blocks: 64.137.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fd:d7:4f:f8:da:8f:1a:de:75:7e:6a:2d:64:fd:3a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Sep 2 10:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b452496b78af5e50f5cde57436ef4268aea06cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:3f:eb:5f:49:09:23:04:03:d0:49:ec:53:
34:d1:f7:10:22:90:d7:73:ba:db:1a:80:a9:81:d8:
f5:71:95:2f:96:ff:53:7e:97:91:89:da:05:f6:72:
22:34:aa:5b:6e:80:80:9d:ff:a5:b2:80:41:ef:09:
0b:6f:58:d8:ec:08:c8:64:be:0d:75:a1:39:70:49:
fa:ce:67:db:99:e7:0c:f1:4f:e5:56:69:eb:4b:e4:
3f:37:ff:02:d1:c6:30:e3:fe:d0:99:55:33:04:7c:
e2:c1:19:e6:d6:ca:51:bf:b7:71:af:e1:6a:81:bf:
40:ea:20:c4:de:b5:c0:46:c8:51:fe:82:63:34:41:
74:61:3c:6e:e7:ec:1c:df:4d:7b:39:e2:02:16:cd:
44:26:2a:95:fd:c6:ae:a5:eb:34:10:d1:58:e4:14:
ff:95:af:0a:92:21:4d:f1:31:58:ca:aa:19:65:35:
be:d4:e0:47:6f:52:5b:36:8e:81:47:f4:3f:6f:4c:
38:2c:85:0a:5f:5e:e6:7e:15:42:f0:9b:f9:25:ed:
c7:68:c0:85:5a:94:3a:bc:f5:17:85:ef:97:18:0c:
25:19:23:50:48:2f:b1:50:46:f8:6a:22:d3:81:49:
95:c1:e0:64:d1:d9:fe:ca:5d:97:1c:e5:95:19:ee:
77:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:45:24:96:B7:8A:F5:E5:0F:5C:DE:57:43:6E:F4:26:8A:EA:06:CB
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/m0UklreK9eUPXN5XQ270JorqBss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.29.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:bb:f0:ff:2e:c1:03:c9:da:af:57:41:4b:28:92:2d:06:de:
e8:17:69:68:8f:7a:0e:7a:ed:94:bb:87:d4:48:e6:84:e6:84:
75:ed:18:33:27:f8:63:46:f0:f4:6e:30:45:d3:a8:a3:d4:d1:
dc:da:90:a4:34:ce:98:b6:2f:5e:86:46:7d:2e:8b:9a:17:f8:
96:45:ee:6c:51:f3:12:86:be:ce:31:8e:00:5b:d8:70:fc:09:
8b:9e:09:3e:8d:cb:01:fb:ed:15:a5:71:84:28:b3:f5:c4:0b:
9d:a9:70:4d:f0:d0:32:fa:b9:00:67:89:54:56:53:95:2f:54:
32:bd:5f:64:26:7b:a9:42:a3:b6:02:cb:f0:49:3d:a9:c6:52:
b7:16:00:ec:71:b3:40:fc:f2:c7:62:93:34:c8:f0:0b:48:09:
a5:64:b3:1b:c6:1b:d9:f8:86:44:1d:1c:71:8f:e0:fa:42:59:
6d:1a:62:6c:20:2c:5d:79:0a:9d:23:2f:5c:4c:bb:fe:be:c2:
10:63:c3:59:99:8b:dc:3d:a0:93:e7:b3:2f:e8:42:e3:d9:c9:
cc:b5:b7:eb:34:76:60:15:31:9d:d2:a3:74:96:88:ab:95:76:
36:17:38:26:e4:50:0e:1e:9e:db:09:f8:a2:b3:8f:1c:2d:23:
48:3a:0a:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-fra.rpki-client.org