Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/mIS-eKWBUtvrMy1XWr4pvTG8jis.roa
File: mIS-eKWBUtvrMy1XWr4pvTG8jis.roa (raw, json)
Hash identifier: X4k19ITKJLeP51/GnxqjZFpOMIp+AU1SWtYwh8nTbBo=
Subject key identifier: 98:84:BE:78:A5:81:52:DB:EB:33:2D:57:5A:BE:29:BD:31:BC:8E:2B
Certificate issuer: /CN=a9dfc89812340507a2a2e1e74d11824def813f39
Certificate serial: 18EB0708
Authority key identifier: A9:DF:C8:98:12:34:05:07:A2:A2:E1:E7:4D:11:82:4D:EF:81:3F:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qd_ImBI0BQeiouHnTRGCTe-BPzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/mIS-eKWBUtvrMy1XWr4pvTG8jis.roa
Signing time: Sat 01 Jan 2022 09:02:09 +0000
ROA not before: Sat 01 Jan 2022 09:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42160
IP address blocks: 91.234.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418055944 (0x18eb0708)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9dfc89812340507a2a2e1e74d11824def813f39
Validity
Not Before: Jan 1 09:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9884be78a58152dbeb332d575abe29bd31bc8e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:23:91:c2:83:18:ec:be:f5:35:30:6c:30:04:
02:0e:2e:62:7b:82:bc:e7:9c:fa:4f:72:6b:1f:b6:
a7:61:4d:63:32:ad:7a:61:49:e3:fe:4d:1d:0f:c7:
6e:58:f3:0c:47:cd:7c:d5:37:7d:69:56:0a:d8:de:
13:a3:0d:c0:52:c8:e4:4d:e6:60:da:ab:ff:3c:85:
a1:91:7d:d3:29:f5:bd:0a:43:80:d4:ce:94:35:2f:
1c:36:2d:8e:9c:ac:de:dc:5e:d8:f5:82:c4:bd:5c:
81:b1:0b:d6:a4:a7:5b:c0:98:82:06:99:e8:8a:14:
0d:69:ae:c9:b2:49:8b:dc:fc:7a:2c:f7:c1:90:73:
d7:a8:ac:8f:58:2d:76:ab:b9:75:1c:83:a7:68:ea:
28:c3:83:5a:b7:2b:f5:14:62:b0:97:6d:a5:bb:2f:
40:ef:fb:24:ac:55:40:f4:6f:2a:35:12:80:17:24:
9d:8d:e5:18:f8:23:53:5a:71:9d:94:6c:48:3d:65:
01:c2:dc:32:ee:92:97:23:b1:ce:24:17:da:11:28:
6a:98:ad:d0:1a:fb:3d:77:92:af:6c:df:3b:c8:9a:
e6:70:25:89:24:03:6a:e1:46:a9:5c:85:e4:01:b3:
e8:4e:2b:ee:4e:6d:09:ff:79:ca:13:3b:e9:ea:a4:
bb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:84:BE:78:A5:81:52:DB:EB:33:2D:57:5A:BE:29:BD:31:BC:8E:2B
X509v3 Authority Key Identifier:
keyid:A9:DF:C8:98:12:34:05:07:A2:A2:E1:E7:4D:11:82:4D:EF:81:3F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qd_ImBI0BQeiouHnTRGCTe-BPzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/mIS-eKWBUtvrMy1XWr4pvTG8jis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/qd_ImBI0BQeiouHnTRGCTe-BPzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.203.0/24
Signature Algorithm: sha256WithRSAEncryption
03:22:c3:42:ce:09:f4:1a:47:34:10:e0:b8:3f:9c:d0:3e:91:
c2:03:cb:a8:6b:bc:2d:2e:95:1c:d7:2b:06:e6:d7:2e:0b:ed:
a8:8e:30:00:eb:39:1c:83:e3:d5:61:92:f1:e6:73:3d:0b:13:
ad:f8:82:43:31:0e:f2:a5:00:25:e8:e7:16:20:ea:31:e8:29:
08:0a:11:32:93:07:1c:1a:3a:17:9a:f8:b2:8e:5f:8a:79:fa:
e0:1d:79:54:f8:48:f6:3d:9c:db:c7:12:d8:93:1c:d2:ef:e0:
0f:85:53:5d:23:e4:17:38:70:05:2a:4e:71:2a:ec:94:28:71:
66:45:ed:4f:6d:6b:75:f7:74:e8:b4:89:a0:90:df:38:e6:fa:
fe:a6:cb:5a:ec:e0:34:1b:ad:37:82:d7:52:f5:c5:95:02:f9:
67:7f:8a:98:41:24:98:b9:39:cf:18:0a:60:fc:b0:8a:f3:f2:
da:e7:55:2c:8b:66:fa:54:b5:70:a6:2a:60:34:4c:d0:46:7f:
6f:6e:6b:ad:e4:20:f6:2b:ea:72:dd:5f:0f:bc:56:d3:93:7c:
29:3a:5c:1f:ba:b6:07:82:2a:a2:f3:45:4b:2e:55:9b:b8:62:
7e:c0:81:2c:76:b8:5e:bc:4d:b3:cc:51:a0:20:c5:eb:10:93:
77:56:ab:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:08 2024 by rpki-client on console-ams.rpki-client.org