Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/mnBziYkVV_ISFVDJBd6RcPhDLwY.roa
File: mnBziYkVV_ISFVDJBd6RcPhDLwY.roa (raw, json)
Hash identifier: +lxjHSCCGuir0VhGCxtT/D0gYMIyoyuj36iHNuoYm7Q=
Subject key identifier: 9A:70:73:89:89:15:57:F2:12:15:50:C9:05:DE:91:70:F8:43:2F:06
Certificate issuer: /CN=4534cab4450404862b201fe733f2c70a6bf52924
Certificate serial: 092C819C
Authority key identifier: 45:34:CA:B4:45:04:04:86:2B:20:1F:E7:33:F2:C7:0A:6B:F5:29:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RTTKtEUEBIYrIB_nM_LHCmv1KSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/mnBziYkVV_ISFVDJBd6RcPhDLwY.roa
Signing time: Sat 01 Jan 2022 11:05:19 +0000
ROA not before: Sat 01 Jan 2022 11:05:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209418
IP address blocks: 193.17.80.0/22 maxlen: 23
2a0c:7d40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153911708 (0x92c819c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4534cab4450404862b201fe733f2c70a6bf52924
Validity
Not Before: Jan 1 11:05:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a707389891557f2121550c905de9170f8432f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:32:a2:af:47:49:6f:40:b9:33:bc:7a:68:df:
ad:41:15:ef:32:49:d6:10:ba:eb:87:01:eb:3b:51:
48:41:25:e0:2f:e1:ac:f0:95:a5:ab:3c:ee:4a:d4:
a4:a1:de:8a:d4:1c:55:e8:00:80:9f:a7:a1:df:7d:
71:3d:48:b9:12:9d:6a:eb:ee:6c:12:4e:82:b1:bb:
03:a5:db:80:34:bf:6b:38:38:e0:3c:a3:d3:17:72:
c3:5b:74:22:45:9a:f3:5b:b3:c8:82:12:2b:15:2d:
a9:9b:e8:94:93:12:53:2d:bd:72:ed:f1:be:de:0d:
31:e3:46:85:e9:3f:64:39:4e:8a:56:61:0d:95:01:
04:e9:ae:00:a4:e3:f0:b1:f0:cc:3d:13:a5:13:e8:
db:96:b6:ee:6e:d7:fe:d7:25:4e:30:6e:a8:73:c3:
b8:32:70:31:32:d6:29:a5:fe:0b:a5:cf:08:73:a9:
6e:fa:5b:18:76:8e:74:ef:60:e2:32:99:8d:da:fd:
cb:51:36:65:f9:79:13:b4:10:d5:63:06:6c:8b:72:
15:07:2e:58:fb:33:ba:e8:65:ea:98:e3:56:2e:d0:
81:e1:54:6f:c2:19:88:fb:4f:84:4c:3c:19:50:63:
e0:60:94:ea:05:18:47:a7:5b:51:a2:db:20:d7:08:
67:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:70:73:89:89:15:57:F2:12:15:50:C9:05:DE:91:70:F8:43:2F:06
X509v3 Authority Key Identifier:
keyid:45:34:CA:B4:45:04:04:86:2B:20:1F:E7:33:F2:C7:0A:6B:F5:29:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RTTKtEUEBIYrIB_nM_LHCmv1KSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/mnBziYkVV_ISFVDJBd6RcPhDLwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/RTTKtEUEBIYrIB_nM_LHCmv1KSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.80.0/22
IPv6:
2a0c:7d40::/32
Signature Algorithm: sha256WithRSAEncryption
8e:ce:67:31:56:7d:52:6d:49:cb:a2:ad:08:7f:c0:91:32:b5:
7f:f9:91:76:05:a6:e3:8e:dd:dc:6d:db:3f:61:8d:28:5e:c9:
a6:22:1c:6c:e9:95:02:90:7f:85:43:cf:1d:bc:83:fe:ea:47:
fa:cf:b4:80:0c:ba:81:f8:ef:34:cc:af:0e:32:f9:db:6f:86:
04:2a:d2:42:90:af:9c:0f:8b:02:86:6b:88:ae:b4:83:8b:61:
79:b9:ef:59:97:80:e5:c3:ff:49:57:78:eb:e0:b4:16:0d:94:
d8:b0:23:1a:62:53:92:92:00:cd:a0:2f:02:0c:c6:d1:eb:63:
64:cc:96:df:8a:4f:ee:83:3f:1a:36:23:ae:20:73:97:04:b0:
cc:4b:e3:30:2d:ba:05:39:07:64:01:26:40:c6:47:22:49:e1:
eb:0a:2d:51:af:ea:a6:22:7d:0d:2f:d3:19:f0:13:f0:a7:b9:
39:e1:5f:d5:7f:ee:6f:ec:34:95:a1:4d:b8:84:0b:3d:53:df:
8d:fe:8a:c2:4f:c8:74:da:fd:1a:28:5f:b5:73:0e:cd:c4:f9:
c5:63:88:bf:b1:24:c3:6c:66:d0:78:84:99:93:8f:31:a5:9d:
b7:fe:a7:e2:f8:ba:ee:b4:15:ab:b9:dd:a6:c1:b3:f0:e7:c6:
d1:d9:04:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:32 2024 by rpki-client on console-ams.rpki-client.org