Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/mWpvR_7kViClnauidsV2GkxtR2g.roa
File: mWpvR_7kViClnauidsV2GkxtR2g.roa (raw, json)
Hash identifier: bj1EYal86BbIioBbJs+6Vo+7I6LM4e+5Ja2wIUGjVLo=
Subject key identifier: 99:6A:6F:47:FE:E4:56:20:A5:9D:AB:A2:76:C5:76:1A:4C:6D:47:68
Certificate issuer: /CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Certificate serial: 18AE61D2
Authority key identifier: A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/mWpvR_7kViClnauidsV2GkxtR2g.roa
Signing time: Wed 04 May 2022 14:09:02 +0000
ROA not before: Wed 04 May 2022 14:09:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21266
IP address blocks: 80.90.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414081490 (0x18ae61d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Validity
Not Before: May 4 14:09:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=996a6f47fee45620a59daba276c5761a4c6d4768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:98:97:8e:fb:49:b9:75:9d:e2:84:c4:aa:51:
1b:b5:d9:6c:62:0c:ad:a5:5e:91:dc:c4:80:0e:c5:
b0:41:2f:5c:34:90:a2:45:83:4f:ac:c7:9e:b6:0b:
ef:71:6a:53:07:ff:99:39:78:9f:3c:be:8c:bf:9b:
1d:98:22:8e:c6:6a:ca:69:6e:c4:8c:6b:d6:73:6f:
4f:81:4f:a2:d7:b9:a2:80:8f:d4:2c:e4:e6:30:7a:
6b:42:ee:77:34:80:1a:ce:d6:90:09:29:6e:25:23:
a9:1c:b5:fa:4e:30:85:d2:93:a8:ef:1a:1f:3b:c2:
57:a5:4e:ba:c0:0c:18:a7:0f:aa:5e:46:d8:f5:0f:
4d:e4:e4:e7:99:fa:76:a9:88:76:76:4f:9c:25:b6:
61:ce:ee:42:f0:df:36:8a:0e:ec:bd:ae:8b:1e:db:
d6:16:ed:59:4a:b7:eb:be:73:17:fd:3a:7b:16:ab:
13:d3:ae:b6:08:ed:dc:81:54:89:03:e4:1b:87:14:
46:c0:43:c5:3c:3b:20:b9:49:dd:31:1c:ac:f2:b9:
7b:64:2d:4d:2a:35:b6:c2:34:30:fd:e0:86:00:8a:
f7:58:15:89:fa:6e:82:52:a3:72:60:d4:cf:47:8f:
b7:a2:bd:36:52:52:00:24:16:86:80:7f:63:9f:65:
07:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:6A:6F:47:FE:E4:56:20:A5:9D:AB:A2:76:C5:76:1A:4C:6D:47:68
X509v3 Authority Key Identifier:
keyid:A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/mWpvR_7kViClnauidsV2GkxtR2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.64.0/20
Signature Algorithm: sha256WithRSAEncryption
09:36:cd:99:15:36:97:53:62:bb:2f:9b:13:d6:97:4c:8e:05:
a4:45:3d:01:94:fe:6a:57:99:8b:b5:fa:33:a1:04:b3:8a:01:
f7:3f:ff:ad:97:d7:4e:55:b1:2e:f9:8e:0d:9c:7d:c8:8c:59:
55:aa:00:60:b9:8c:23:5a:4d:91:b3:24:79:42:4f:c2:2e:be:
b4:98:9c:e9:71:32:78:02:39:ae:94:52:3c:bb:42:e5:c7:93:
89:c4:b3:af:20:56:e9:71:d4:58:d8:99:33:f2:c4:e7:7c:e9:
e9:85:11:75:1a:c1:08:08:cd:2a:fe:b8:90:b9:45:f2:4a:5a:
ca:fa:0f:51:b3:fd:a5:ad:ef:ad:a5:5e:2d:28:3a:cf:04:a8:
ac:a7:e1:b5:a3:22:21:e2:1c:9e:3e:2b:37:a9:20:bb:c2:7d:
02:e3:e7:ee:51:e6:7a:9f:7b:0e:10:09:9e:90:ba:71:ee:77:
ae:5f:9c:0a:8c:3a:cc:46:a9:bb:51:a6:e9:5b:ed:c7:20:c6:
15:22:bb:33:86:76:ab:24:b0:f5:0c:4f:ff:6c:f2:14:bc:43:
08:2f:8f:5a:2d:f2:4d:56:28:bc:3a:f5:b1:c5:ca:de:88:59:
ef:90:31:10:bd:53:cd:6d:ae:f4:7f:2d:0c:21:d5:ab:0e:d6:
ee:52:1b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org