Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/mGGDFRJqNdSFYrYrFElBYg5j2QU.roa
File: mGGDFRJqNdSFYrYrFElBYg5j2QU.roa (raw, json)
Hash identifier: MWd6MAS7ZqHlWOhCYQmkEa72Uwju73+38wvqWQOSU7A=
Subject key identifier: 98:61:83:15:12:6A:35:D4:85:62:B6:2B:14:49:41:62:0E:63:D9:05
Certificate issuer: /CN=8b5fe50f290dd9e41e5f4a65dabb23972a82cad3
Certificate serial: 01856246FF7A3B443311F7532E56AF7D5330
Authority key identifier: 8B:5F:E5:0F:29:0D:D9:E4:1E:5F:4A:65:DA:BB:23:97:2A:82:CA:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i1_lDykN2eQeX0pl2rsjlyqCytM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/mGGDFRJqNdSFYrYrFElBYg5j2QU.roa
Signing time: Fri 30 Dec 2022 09:04:58 +0000
ROA not before: Fri 30 Dec 2022 09:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30939
IP address blocks: 194.15.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:46:ff:7a:3b:44:33:11:f7:53:2e:56:af:7d:53:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b5fe50f290dd9e41e5f4a65dabb23972a82cad3
Validity
Not Before: Dec 30 09:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98618315126a35d48562b62b144941620e63d905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bb:56:cb:eb:60:4a:b1:57:84:ee:1a:d6:5a:
78:c2:03:d1:57:bf:80:8c:ce:31:4f:67:5a:01:da:
f0:f1:20:bb:a8:7a:3a:a5:2b:19:c8:d5:70:d6:44:
36:f2:85:f7:5f:e0:45:8f:99:7b:7f:d8:77:52:8f:
f8:1d:2a:fd:c0:d7:f5:8f:ab:12:ed:16:75:ea:f5:
df:5c:e7:9d:5e:27:01:80:b5:d4:f0:27:14:21:ae:
2b:6e:ff:68:0e:a6:55:ca:10:76:76:7d:c6:95:84:
a5:c3:41:f3:97:5f:6e:d4:d7:f7:1d:c0:52:9a:c1:
1c:ba:7b:23:76:cf:e9:65:c0:fb:65:b4:f8:af:1e:
44:57:ff:b7:b7:8c:cc:46:38:96:36:34:80:c6:b5:
a2:24:f7:a7:99:6b:a5:1c:5f:36:68:b8:bb:99:12:
ef:5a:0c:06:e4:03:93:98:8b:5d:ba:d2:93:aa:88:
be:65:f2:d6:4e:34:ac:40:9f:d9:bb:eb:3f:35:1a:
ba:c2:09:dc:37:85:97:60:6e:a4:44:ff:3a:3c:d6:
11:ee:54:ce:1d:c8:bc:22:bb:d6:d0:f0:50:59:94:
00:ea:8a:d5:43:96:73:d8:86:5e:9a:45:66:43:e9:
3c:01:4d:8c:b4:3d:3f:61:33:71:22:e9:ea:f1:f9:
0e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:61:83:15:12:6A:35:D4:85:62:B6:2B:14:49:41:62:0E:63:D9:05
X509v3 Authority Key Identifier:
keyid:8B:5F:E5:0F:29:0D:D9:E4:1E:5F:4A:65:DA:BB:23:97:2A:82:CA:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i1_lDykN2eQeX0pl2rsjlyqCytM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/mGGDFRJqNdSFYrYrFElBYg5j2QU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/i1_lDykN2eQeX0pl2rsjlyqCytM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.213.0/24
Signature Algorithm: sha256WithRSAEncryption
58:39:1c:2a:c4:9b:af:82:97:52:bd:c2:2a:9f:40:4d:7d:bc:
2f:99:92:f2:f4:3f:2b:8a:61:c8:65:9d:a5:0c:22:3f:9f:3b:
73:71:17:fa:be:19:6a:26:37:43:51:ba:85:a4:59:04:75:08:
90:9f:d5:48:a6:95:84:ed:39:3f:04:38:f6:53:dd:c5:64:40:
15:8c:2a:fc:a7:f1:ef:83:a0:ff:88:28:38:13:03:ea:3a:fe:
17:46:c1:40:c8:f2:f8:a9:ea:9c:03:76:1d:76:fc:05:e8:85:
5b:d0:f9:83:c0:9d:3e:12:28:26:11:6f:aa:a9:3d:68:98:27:
9a:b4:e6:2e:b7:f5:77:39:81:6c:9d:c1:e7:07:db:e6:87:23:
e7:e2:44:c2:5b:23:4d:0a:0b:97:7b:a6:d8:86:77:5a:df:74:
bc:e5:97:63:b5:2b:a1:12:e8:b7:9a:e1:78:ab:15:1f:2f:81:
97:00:32:bc:44:73:04:ea:5d:0b:d7:04:c1:3d:b9:01:3c:cc:
a9:4f:17:70:82:f2:8d:3b:ee:89:56:8c:ca:c5:52:01:07:ca:
d5:70:42:0e:fb:18:1f:f8:e1:a2:23:db:c7:f8:bb:bc:23:b8:
48:6b:00:95:94:d5:59:20:4e:41:58:a6:01:4f:be:d7:6e:b2:
b6:1d:41:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:55 2024 by rpki-client on console-ams.rpki-client.org