Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/oS1XC_XZ3_YbFGVtdBifd_fVk38.roa
File: oS1XC_XZ3_YbFGVtdBifd_fVk38.roa (raw, json)
Hash identifier: Pn6g2cHB1lxi9bD7pSzx+lydgPVM8wwVeS0TDAPmuH0=
Subject key identifier: A1:2D:57:0B:F5:D9:DF:F6:1B:14:65:6D:74:18:9F:77:F7:D5:93:7F
Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Certificate serial: 0184BEC5BC60FE2729AC510EADA33C31D3B8
Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/oS1XC_XZ3_YbFGVtdBifd_fVk38.roa
Signing time: Mon 28 Nov 2022 15:05:40 +0000
ROA not before: Mon 28 Nov 2022 15:05:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47928
IP address blocks: 195.182.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:c5:bc:60:fe:27:29:ac:51:0e:ad:a3:3c:31:d3:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Validity
Not Before: Nov 28 15:05:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a12d570bf5d9dff61b14656d74189f77f7d5937f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a8:db:47:22:ed:17:eb:5f:36:d8:83:38:ee:
8b:2b:ba:15:69:1d:da:3f:e0:36:9c:4c:5c:7a:f7:
f3:a9:ee:e5:28:ed:49:bb:d6:c9:c9:6c:fe:17:f0:
70:8c:fc:9f:ed:77:83:07:ab:cb:6b:3b:4d:69:b1:
bb:aa:d0:d7:f9:8f:6e:9d:99:7f:8c:15:23:e1:1d:
0c:bd:a5:67:31:4a:d1:c6:2d:3b:ab:f2:ab:36:89:
85:e8:4d:e6:2d:29:da:b4:ec:51:2a:7f:92:da:02:
d5:a4:b8:f5:55:65:8c:fa:4a:8b:9b:e2:4b:30:ae:
15:1d:44:3b:35:81:2d:fa:2f:d2:61:5a:fc:32:1b:
ea:ac:e4:69:79:f0:28:d3:d8:39:8b:c4:32:82:77:
26:26:3e:2e:58:b0:9c:d4:ef:c2:07:f1:e3:89:b6:
cc:a7:32:69:22:9c:ab:20:da:e2:91:da:78:78:90:
d9:cd:f3:ab:fd:08:ba:bd:3c:c2:2c:12:7f:1a:9d:
57:70:9e:ff:27:b4:fc:3a:1f:ec:e9:3c:8d:3c:e8:
81:94:53:47:ce:49:25:37:06:12:eb:72:9a:b7:6c:
b4:0e:66:35:fc:d0:6e:08:70:97:a6:0c:71:e0:e9:
b2:32:d4:3f:99:cf:3f:3b:da:1c:80:8d:4c:93:b6:
3c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:2D:57:0B:F5:D9:DF:F6:1B:14:65:6D:74:18:9F:77:F7:D5:93:7F
X509v3 Authority Key Identifier:
keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/oS1XC_XZ3_YbFGVtdBifd_fVk38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.44.0/24
Signature Algorithm: sha256WithRSAEncryption
05:13:e8:9c:e1:9f:49:90:97:28:4b:0e:0a:f4:9a:4c:fb:f2:
a1:74:34:23:9a:09:1c:4c:ac:ac:9d:ad:12:64:e5:72:85:18:
56:63:81:a8:bb:7a:9f:0a:1d:bb:e0:32:2b:d2:aa:a1:54:9d:
be:b7:b8:de:8b:0f:38:0f:ff:cb:58:54:2b:bb:c9:94:42:4d:
09:6e:f7:72:6f:4a:45:81:d8:68:b3:c4:72:8f:3b:77:fb:4b:
f0:bd:b5:85:7d:67:6e:5c:3d:c1:44:0b:ca:30:2d:d0:44:df:
30:be:d2:48:7a:52:d4:38:25:6e:69:e4:ab:b2:bb:9d:f4:e8:
29:34:16:53:c0:09:c7:ba:aa:eb:91:49:31:0e:e6:bf:13:64:
30:a7:c3:95:62:71:1f:5d:1f:7c:fa:0e:86:b2:ea:96:db:56:
f0:ef:7e:30:3c:39:44:ad:77:ce:d6:4c:5b:75:6c:88:c2:ed:
e1:9e:a1:8f:9c:10:48:68:fe:00:8c:a0:1b:9b:c6:c7:4e:1c:
37:4f:be:68:5f:71:00:dd:0a:a2:7d:37:19:81:97:ba:b2:dc:
c4:e8:4e:b7:4f:9b:c1:19:70:a1:b4:0e:0f:b7:31:18:99:ab:
26:68:bd:e6:4c:9e:d8:ab:f1:42:3d:d5:9b:50:29:e6:c0:22:
4f:96:80:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:13 2023 by rpki-client on console-ams.rpki-client.org