Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/gMtFBTQvgbCbqiyH22gf0xIwv_U.roa
File: gMtFBTQvgbCbqiyH22gf0xIwv_U.roa (raw, json)
Hash identifier: aG7VDjMhlIj/kz47en7wDVmEuaXzgGJje8vyU67cC2Y=
Subject key identifier: 80:CB:45:05:34:2F:81:B0:9B:AA:2C:87:DB:68:1F:D3:12:30:BF:F5
Certificate issuer: /CN=756fba46634d22b93db1bf46ec5a8d665e62dac7
Certificate serial: 0184C315DD2BE5C83C9EF84501F52C7D86E3
Authority key identifier: 75:6F:BA:46:63:4D:22:B9:3D:B1:BF:46:EC:5A:8D:66:5E:62:DA:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dW-6RmNNIrk9sb9G7FqNZl5i2sc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/gMtFBTQvgbCbqiyH22gf0xIwv_U.roa
Signing time: Tue 29 Nov 2022 11:11:40 +0000
ROA not before: Tue 29 Nov 2022 11:11:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 195.128.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c3:15:dd:2b:e5:c8:3c:9e:f8:45:01:f5:2c:7d:86:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=756fba46634d22b93db1bf46ec5a8d665e62dac7
Validity
Not Before: Nov 29 11:11:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80cb4505342f81b09baa2c87db681fd31230bff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4d:c7:d7:ee:8b:81:a4:f1:7e:54:ae:6e:ef:
a9:83:5d:14:56:6e:74:32:05:8f:d5:06:02:5a:5b:
ca:3c:65:7d:b8:47:c0:cb:ca:9e:d4:a0:f9:b9:d5:
80:2a:87:b7:76:7f:fd:3c:7c:50:0f:cb:a5:96:11:
f7:e8:f9:db:89:ea:db:c2:34:64:0b:4b:4e:29:b2:
27:d9:7e:38:cb:77:3e:e8:cc:76:a8:56:0e:fe:8a:
c4:54:d2:83:cf:58:bd:67:38:4c:bc:49:db:4d:fd:
b8:54:a3:74:54:71:ba:44:06:13:8f:17:f2:8e:f9:
3a:ee:65:03:61:66:ed:45:30:7a:e9:b4:a7:49:6c:
22:7a:29:c5:f9:c6:76:9b:4c:bf:cd:37:23:40:71:
cc:2b:76:c2:1f:82:10:f1:60:c7:23:8a:de:8c:ba:
8e:ef:c0:e7:21:76:87:68:a6:c2:d1:49:1d:e3:1c:
6e:dc:93:fa:04:75:85:6a:a6:f0:b0:78:4b:17:c8:
dd:44:26:f7:cc:29:6b:22:f7:19:ab:b5:08:5a:ef:
0f:7d:a9:43:f6:2a:84:af:d9:3b:ee:94:a0:5e:60:
e4:2e:1a:89:51:ea:b9:a1:52:05:63:cd:4f:17:b3:
56:a5:d8:cc:66:53:fb:06:33:5a:c1:06:de:17:71:
bf:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CB:45:05:34:2F:81:B0:9B:AA:2C:87:DB:68:1F:D3:12:30:BF:F5
X509v3 Authority Key Identifier:
keyid:75:6F:BA:46:63:4D:22:B9:3D:B1:BF:46:EC:5A:8D:66:5E:62:DA:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dW-6RmNNIrk9sb9G7FqNZl5i2sc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/gMtFBTQvgbCbqiyH22gf0xIwv_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b68421-99b1-485e-b217-d3adc7449391/1/dW-6RmNNIrk9sb9G7FqNZl5i2sc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.144.0/24
Signature Algorithm: sha256WithRSAEncryption
13:32:ef:c9:32:81:ee:17:45:91:17:d2:94:a3:c6:f2:97:df:
29:aa:a8:05:bd:11:82:c5:89:3f:14:86:e2:ef:00:f8:37:17:
84:81:b9:65:e2:6a:51:ba:73:be:a2:51:43:e5:73:a2:7f:49:
a5:48:40:b1:c0:26:22:06:61:73:b8:58:85:b5:e8:7f:0e:fa:
a3:fd:3b:15:17:0e:5f:c9:26:08:62:a9:bc:61:a4:22:d5:93:
6b:eb:35:3e:cb:cb:1b:91:ce:18:83:82:dc:44:ba:bb:1f:af:
38:17:0e:d7:f3:86:80:66:2f:1c:f1:28:49:9e:bc:70:05:f3:
dd:a0:10:26:fc:21:f9:c1:0e:87:41:a8:85:c1:ee:e5:7f:b9:
62:26:31:4a:a4:f5:7d:09:63:2f:69:c1:43:cd:e9:67:c5:3b:
af:7d:fc:5a:4c:a2:3d:db:a1:ec:b5:08:7c:b0:35:81:14:11:
19:bc:29:3e:4e:cb:ad:bb:a6:55:ad:ce:d3:c5:72:c9:4b:f3:
3d:95:91:a6:54:eb:4f:60:8d:55:82:ff:9a:e6:e5:44:a2:29:
4a:78:50:d7:a6:d4:87:27:b0:2d:b0:ec:6c:91:63:0a:18:a0:
da:70:f0:ac:2c:14:69:8e:01:83:42:ba:3e:de:c5:60:6d:22:
48:08:71:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org