Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/MBSrauLq4X6K4DcRe4hR129k8rE.roa
File: MBSrauLq4X6K4DcRe4hR129k8rE.roa (raw, json)
Hash identifier: k0O+TB3DJivMggVtbc1ZgRSHy/JsDwG+5yVFkKh5PWo=
Subject key identifier: 30:14:AB:6A:E2:EA:E1:7E:8A:E0:37:11:7B:88:51:D7:6F:64:F2:B1
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 085FFD3E
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/MBSrauLq4X6K4DcRe4hR129k8rE.roa
Signing time: Mon 16 May 2022 11:31:35 +0000
ROA not before: Mon 16 May 2022 11:31:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 193.57.94.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140508478 (0x85ffd3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: May 16 11:31:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3014ab6ae2eae17e8ae037117b8851d76f64f2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:74:02:3c:52:5e:c8:94:88:7e:e2:a5:74:6b:
33:09:d5:eb:8a:46:d2:fb:bc:12:c5:07:36:7c:dd:
39:e2:db:35:be:6c:a7:5a:54:87:58:e8:f3:e9:93:
e5:60:2b:8a:44:cb:e4:6f:be:70:31:e4:7c:6e:e6:
d2:eb:4e:ad:07:1e:8d:a6:86:47:cc:9f:e1:af:85:
a1:5a:db:8a:83:cb:4c:7d:d1:97:c8:79:5b:63:f5:
99:2c:b3:74:32:8a:1f:4c:a2:b8:e0:72:d7:5e:49:
40:da:15:50:fe:c3:0b:84:3c:4a:56:a6:76:91:a9:
ac:98:ae:5d:18:9d:26:4d:2a:e3:6e:1c:85:7b:a9:
9a:05:07:80:ec:72:ff:8f:57:a0:83:59:6e:32:58:
a3:c5:a9:f3:47:3e:a5:9e:f4:eb:97:4c:b6:d0:95:
25:66:31:23:dc:ae:0d:a1:5c:76:fc:c7:0a:8e:11:
aa:fb:13:1d:39:f9:65:61:cf:09:10:30:f1:83:5f:
f5:96:31:2d:c8:f4:7f:7c:f3:96:45:d8:e5:ae:89:
78:c4:31:8c:7c:20:f4:59:3d:2a:88:12:76:37:c6:
e3:ca:bf:54:ba:fa:d4:49:eb:20:c8:35:43:15:5e:
cc:18:d2:7d:3a:b4:2d:21:b2:5b:29:b9:ce:af:8f:
e9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:14:AB:6A:E2:EA:E1:7E:8A:E0:37:11:7B:88:51:D7:6F:64:F2:B1
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/MBSrauLq4X6K4DcRe4hR129k8rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.94.0/23
Signature Algorithm: sha256WithRSAEncryption
13:2f:c1:73:20:df:ec:ce:a9:b4:74:f9:cc:d9:9e:47:06:fe:
52:ae:83:c5:21:e2:76:cc:36:0f:4f:b4:98:b5:59:71:c5:0a:
a9:8e:c6:ab:38:b6:88:5a:d4:c2:b1:68:ee:af:d7:de:82:4c:
ff:1c:c4:97:be:f4:a9:cb:c6:2c:3d:84:10:36:7a:c3:6e:f3:
7f:9f:d5:08:00:0b:38:e9:9a:1f:1c:ad:ff:3c:a7:92:ae:eb:
02:d2:52:a2:06:65:60:26:12:4d:70:07:4f:87:9b:62:4c:98:
9d:bd:5f:87:ce:99:14:de:47:fc:90:0a:7e:31:e1:9b:25:1a:
f9:10:0a:a4:a0:a3:47:53:f1:d3:1a:f6:82:d0:44:07:3f:89:
bf:b8:00:23:2b:d7:c5:9d:2c:7e:46:1f:f5:65:c4:0f:c8:09:
6c:cc:ce:f5:b3:51:de:a1:ec:7f:1e:ae:a1:20:61:73:64:9b:
8b:a7:d9:41:30:49:4e:fa:4c:ea:a9:9a:aa:c9:a8:b3:2d:64:
72:9f:03:ef:2d:da:77:bf:58:d4:5d:ca:dd:16:ae:2c:0d:9c:
90:32:5d:38:4e:5b:17:0b:6b:9b:a4:30:00:87:d8:5e:18:ce:
ac:ad:d7:66:40:44:55:2b:f2:43:66:02:30:9a:af:6f:4d:50:
6b:32:0e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org