Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/rjuizWuJ5tHplNMHAiF_EWW9hAI.roa
File: rjuizWuJ5tHplNMHAiF_EWW9hAI.roa (raw, json)
Hash identifier: C2aWHfgpUEG03PxyBVGatFPixLsHSb7u16ngVWso38w=
Subject key identifier: AE:3B:A2:CD:6B:89:E6:D1:E9:94:D3:07:02:21:7F:11:65:BD:84:02
Certificate issuer: /CN=37ca50022828d901bf42b2798f7844104b05404d
Certificate serial: 0185578881C515F0D347ACC832B49A23757A
Authority key identifier: 37:CA:50:02:28:28:D9:01:BF:42:B2:79:8F:78:44:10:4B:05:40:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N8pQAigo2QG_QrJ5j3hEEEsFQE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/rjuizWuJ5tHplNMHAiF_EWW9hAI.roa
Signing time: Wed 28 Dec 2022 07:00:41 +0000
ROA not before: Wed 28 Dec 2022 07:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42677
IP address blocks: 195.248.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:57:88:81:c5:15:f0:d3:47:ac:c8:32:b4:9a:23:75:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ca50022828d901bf42b2798f7844104b05404d
Validity
Not Before: Dec 28 07:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae3ba2cd6b89e6d1e994d30702217f1165bd8402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f8:e4:43:3a:6d:7e:75:eb:8d:dc:cd:43:83:
04:3e:e7:75:18:25:3b:ce:2b:0b:aa:eb:1a:17:0d:
d8:a1:1f:25:45:17:b2:f8:de:32:74:ee:cd:4c:e3:
41:95:54:ad:8b:b1:84:49:a7:7b:1d:32:eb:70:43:
d8:b0:1e:6d:43:3e:a8:59:59:61:80:d7:08:56:bc:
30:19:55:cd:1d:82:61:72:54:01:ff:0b:e4:fb:c6:
85:1f:fe:70:c7:83:26:8e:62:5d:88:c4:70:1c:8d:
ee:c8:82:ec:5b:d9:f3:4a:67:3e:83:25:b3:76:dd:
8a:ba:83:5d:e5:60:13:ba:9a:5c:03:b0:12:86:a3:
ed:a0:23:0a:f6:5c:7e:08:d8:e5:18:44:9a:86:50:
1c:07:0c:10:2c:6e:f6:8c:cf:26:7a:07:c4:3c:92:
7d:43:7e:23:98:0b:c7:94:17:24:4b:12:19:05:66:
24:14:ef:60:88:52:ec:95:2f:ef:a0:a7:a4:de:7c:
5e:f7:41:66:e6:ef:e0:75:34:31:c9:0c:5a:a6:7f:
9d:28:53:02:c9:22:56:83:2d:31:c9:5e:2e:22:07:
fc:0c:e9:7b:37:9f:ee:7e:ce:c6:1c:2c:c1:20:d7:
f0:10:e2:4c:09:89:bc:06:80:49:9a:74:21:be:f9:
d5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3B:A2:CD:6B:89:E6:D1:E9:94:D3:07:02:21:7F:11:65:BD:84:02
X509v3 Authority Key Identifier:
keyid:37:CA:50:02:28:28:D9:01:BF:42:B2:79:8F:78:44:10:4B:05:40:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8pQAigo2QG_QrJ5j3hEEEsFQE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/rjuizWuJ5tHplNMHAiF_EWW9hAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef9498-44f4-4ffd-844f-5c830fe4bad0/1/N8pQAigo2QG_QrJ5j3hEEEsFQE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.232.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:3d:fa:91:62:ab:84:af:af:45:03:e3:ed:e3:26:03:ba:7c:
50:2f:ef:52:97:0e:25:b5:ab:b1:f9:74:65:61:1b:8e:1a:c5:
73:6b:68:7b:c3:5b:df:6d:96:8b:8c:26:63:1d:51:16:33:64:
ff:72:52:46:79:85:1f:14:57:96:bf:07:d4:d9:a6:c9:c7:eb:
e4:0a:02:c3:b2:a8:c0:a0:79:68:0c:ad:b8:02:fd:e8:d3:50:
76:15:17:53:83:3f:c0:d7:c5:d7:ee:99:47:7f:7a:62:df:7d:
ec:53:82:05:42:46:4a:06:e5:ab:fa:4d:c7:27:b9:58:ed:31:
d3:50:88:fb:31:13:a3:c9:cc:a7:ad:a1:14:40:15:3c:d9:b1:
fb:19:7a:c2:16:e5:43:dd:5c:75:a2:9f:35:78:8e:3d:4a:b6:
d5:b1:fd:54:af:cd:09:c0:9b:95:01:3a:e3:28:19:63:98:ff:
e5:2f:6a:c4:0f:d6:7d:d8:96:11:cb:6a:56:5e:a8:9d:12:9d:
41:3f:60:f4:20:b6:a1:8f:4a:bc:24:ff:aa:e7:fa:ec:38:25:
f5:d4:f5:e0:95:08:04:c2:80:e2:ed:35:77:12:5e:96:c5:70:
dd:08:36:bb:ef:c7:0d:17:97:90:72:fa:2a:46:72:d9:bf:93:
aa:ac:2f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:12 2023 by rpki-client on console-fra.rpki-client.org