Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/RuphtY18wTgmZjDdGC_4_4LqWAI.roa
File: RuphtY18wTgmZjDdGC_4_4LqWAI.roa (raw, json)
Hash identifier: kdPbbQ/wLU/e15ggQbrfCijegptJH0vy9Dso6i4vQX8=
Subject key identifier: 46:EA:61:B5:8D:7C:C1:38:26:66:30:DD:18:2F:F8:FF:82:EA:58:02
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 0184AA0739596B6810A0FEA1427289958FD5
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/RuphtY18wTgmZjDdGC_4_4LqWAI.roa
Signing time: Thu 24 Nov 2022 14:25:10 +0000
ROA not before: Thu 24 Nov 2022 14:25:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62037
IP address blocks: 195.225.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:07:39:59:6b:68:10:a0:fe:a1:42:72:89:95:8f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Nov 24 14:25:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46ea61b58d7cc138266630dd182ff8ff82ea5802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4f:a2:28:31:58:7c:6e:45:f8:6b:86:5c:6a:
00:ff:7c:7c:be:42:2a:3e:7d:eb:f8:02:c0:9d:d5:
7e:6d:5a:29:41:30:f4:b4:a4:6b:c3:00:38:27:ae:
2e:b3:a0:3e:5a:60:b5:fd:c7:af:74:4b:ed:57:15:
a8:e3:f9:fb:5f:62:21:1a:aa:46:00:c3:d7:2f:d2:
f9:54:59:a8:bc:67:51:bb:a6:ea:f2:82:86:83:f7:
42:19:21:7b:66:21:c9:6d:12:db:0d:9e:7e:39:85:
9e:21:cf:6b:e6:a0:bd:3a:05:87:cf:f6:dd:1f:b7:
c5:9f:0f:05:56:f4:69:af:a6:b4:1c:3e:51:ce:ae:
8f:ef:82:8e:1b:2b:eb:78:dc:3e:4e:2a:85:69:f8:
a3:0f:7f:c1:20:47:4c:19:df:a1:94:d8:f3:c9:c1:
7a:97:d4:a2:af:4f:9c:6b:8b:dd:25:e1:5c:39:a6:
c9:dd:0d:d7:91:34:1e:62:a0:82:b5:15:36:67:ba:
0b:a6:4d:41:2f:c2:0f:6f:00:f1:b5:ae:1e:0d:e9:
52:99:0c:0c:00:23:2c:a7:43:b4:60:f7:12:03:90:
9a:74:80:b8:6d:c8:14:1d:a9:5d:69:d7:5d:ec:63:
da:3d:2f:0b:9c:29:ce:be:db:42:f7:75:de:1f:39:
30:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EA:61:B5:8D:7C:C1:38:26:66:30:DD:18:2F:F8:FF:82:EA:58:02
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/RuphtY18wTgmZjDdGC_4_4LqWAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.51.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:4d:c3:8b:7c:80:16:15:63:b1:db:d3:7f:16:ee:a3:87:ca:
4c:f5:19:85:0b:8f:49:d0:6f:73:a2:80:d5:a0:ab:64:b2:66:
27:71:37:b7:3e:23:45:95:b8:3b:5b:28:9c:e2:a9:b6:4a:18:
ac:83:24:d4:09:5b:47:e6:11:54:b2:42:66:e8:89:65:25:ec:
91:75:c4:66:d5:d9:1e:5b:38:28:30:7b:d1:87:66:e8:1e:20:
58:3b:20:60:48:fa:19:77:3b:82:3c:11:bb:be:ef:67:73:6e:
70:32:53:c7:38:bd:6b:79:a1:ad:09:6f:d0:54:25:73:cf:39:
ee:93:45:49:f7:91:80:70:9f:28:3c:d1:f2:73:0f:bf:60:38:
24:f3:48:3f:1a:7a:3c:30:f2:00:9a:85:ad:1b:0f:a2:49:1d:
2d:6c:d5:f3:fa:3b:c4:c3:ef:ab:55:4c:99:99:c2:da:d5:4e:
cf:4c:5d:f8:16:df:b6:85:e9:23:0a:74:9d:4f:8f:4f:75:3f:
9a:10:8f:83:d8:b0:4d:4f:82:0a:16:a2:74:99:fe:69:8e:82:
e4:c4:6b:6f:63:7e:d1:b7:d4:59:e3:c3:42:6b:e1:44:0a:7e:
8c:8a:c6:a6:0f:63:62:0d:d9:ed:57:19:90:4e:1b:6b:59:86:
a6:e8:6e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:07 2024 by rpki-client on console-fra.rpki-client.org