Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/xmZ1QG8WFgOC8PXOLpxPrhJGShc.roa
File: xmZ1QG8WFgOC8PXOLpxPrhJGShc.roa (raw, json)
Hash identifier: 32zi7OGMEJlnw6sadM+Ry1zCLkgbAx0epOAx9XHdcI0=
Subject key identifier: C6:66:75:40:6F:16:16:03:82:F0:F5:CE:2E:9C:4F:AE:12:46:4A:17
Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Certificate serial: 0182A82778A70C334E64B6F50E1D1D9D10A5
Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/xmZ1QG8WFgOC8PXOLpxPrhJGShc.roa
Signing time: Tue 16 Aug 2022 19:35:35 +0000
ROA not before: Tue 16 Aug 2022 19:35:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60231
IP address blocks: 93.189.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a8:27:78:a7:0c:33:4e:64:b6:f5:0e:1d:1d:9d:10:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Validity
Not Before: Aug 16 19:35:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c66675406f16160382f0f5ce2e9c4fae12464a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:60:87:48:35:33:3e:e2:0f:db:18:64:47:3e:
d1:18:c6:4c:03:ca:ac:82:88:80:64:86:db:e6:c3:
39:0c:d0:f8:a6:17:87:18:90:e7:fc:eb:00:fd:65:
9d:fd:68:bf:5d:78:06:0e:0b:45:5e:c0:6e:66:12:
39:bb:a9:48:2b:23:4f:77:f3:d6:7e:a7:c8:e0:b1:
80:26:3b:9b:96:70:e9:17:8a:51:ad:b0:c5:b7:e9:
80:a1:49:fd:ad:5e:53:b6:ed:95:f4:ba:cd:26:44:
2b:e8:0d:25:f7:f0:11:b6:51:4a:16:d0:99:35:b0:
08:26:93:f4:74:e0:89:93:22:0c:e8:60:bc:2e:f7:
57:64:59:2d:51:e6:c0:6c:1c:90:18:e7:b1:3b:72:
22:fe:15:fd:06:a2:15:20:c9:87:38:aa:41:f0:7e:
7a:c8:1f:6d:85:08:1f:8d:7d:63:54:89:21:9e:0d:
dc:d4:3e:20:e8:c6:c6:71:0c:ee:f2:f3:6d:bb:d6:
41:a3:6a:bb:68:25:67:3d:a3:55:61:34:d0:25:0e:
08:bf:cb:dc:e8:82:34:84:06:b1:67:9c:88:03:fe:
b5:2e:ea:46:a7:04:d2:01:2a:88:eb:b7:07:19:72:
16:96:7f:5f:68:aa:59:ae:f5:26:a5:a1:2e:5d:d6:
26:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:66:75:40:6F:16:16:03:82:F0:F5:CE:2E:9C:4F:AE:12:46:4A:17
X509v3 Authority Key Identifier:
keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/xmZ1QG8WFgOC8PXOLpxPrhJGShc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.189.148.0/24
Signature Algorithm: sha256WithRSAEncryption
74:be:27:32:0d:04:8b:ff:87:8d:14:bc:de:34:85:5d:96:aa:
f6:cd:93:e3:62:da:4c:ac:9f:b4:72:af:f0:89:f5:ca:d3:9f:
58:02:93:32:6a:d1:9e:84:18:3c:8b:7d:55:e8:27:b1:e5:62:
bb:88:cf:b0:81:a6:6c:52:4b:b4:a4:70:e5:d9:26:01:44:ea:
eb:a9:c6:9d:84:f0:e1:1c:56:59:f3:8d:13:d7:fc:1e:40:5f:
91:5f:f6:a1:78:69:aa:13:97:86:c9:64:33:57:b8:e6:81:6d:
ce:ec:31:6b:ef:45:d7:bd:18:6c:24:8d:3b:e4:fb:2a:97:a6:
a2:2c:88:90:e1:d5:67:95:bf:eb:fe:3d:1a:0a:5b:5e:a5:13:
0e:5a:d9:50:2b:a0:4f:56:f7:64:84:9d:8c:59:40:94:16:b3:
eb:62:1c:fb:27:77:7f:aa:a6:c2:d2:86:57:78:7b:f7:dd:29:
d6:c9:83:b2:d3:ec:ff:c0:d4:00:99:a7:53:54:c1:64:30:6c:
4b:71:64:9d:12:35:e6:9a:f7:1a:72:a4:03:7a:1e:49:44:81:
a9:e6:17:6b:e4:e9:98:2b:e8:10:58:81:1b:6c:98:9f:c0:0f:
ba:86:b5:d8:b1:93:e7:d8:9e:a7:fb:85:ab:ee:70:a4:f1:e3:
a3:e0:f9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:19 2023 by rpki-client on console.sobornost.net