Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/mi0YO0S-KQvPleL7wPqtSknTXwQ.roa
File: mi0YO0S-KQvPleL7wPqtSknTXwQ.roa (raw, json)
Hash identifier: Ir1P0n6xIM6EOPl4DY2ZlVcODna9ISMMM84y+cX1bZk=
Subject key identifier: 9A:2D:18:3B:44:BE:29:0B:CF:95:E2:FB:C0:FA:AD:4A:49:D3:5F:04
Certificate issuer: /CN=7f03a1f8c334fdbf4b78def0c592ff0490ddf4b0
Certificate serial: 05BC5431
Authority key identifier: 7F:03:A1:F8:C3:34:FD:BF:4B:78:DE:F0:C5:92:FF:04:90:DD:F4:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fwOh-MM0_b9LeN7wxZL_BJDd9LA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/mi0YO0S-KQvPleL7wPqtSknTXwQ.roa
Signing time: Sat 01 Jan 2022 10:59:30 +0000
ROA not before: Sat 01 Jan 2022 10:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.13.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96228401 (0x5bc5431)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f03a1f8c334fdbf4b78def0c592ff0490ddf4b0
Validity
Not Before: Jan 1 10:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a2d183b44be290bcf95e2fbc0faad4a49d35f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3b:c0:c8:94:1d:7f:9d:ca:c2:8a:55:9b:76:
be:7f:9a:6e:f5:b0:07:61:9d:c6:98:02:b4:2c:3f:
8d:b9:48:fc:93:d1:23:c5:40:26:9f:96:3e:95:fa:
a5:4a:e1:42:46:af:b5:cf:f6:8e:4c:6a:7c:fc:c8:
25:5f:eb:72:b8:59:7f:08:71:e8:78:5e:f5:48:0d:
70:ab:1f:9c:ec:44:a7:08:9b:6e:07:e9:33:d6:2c:
fa:fb:ee:7c:31:21:9e:79:8c:a1:ec:1e:a5:da:82:
8c:71:d3:b6:ab:e0:a2:bb:5a:ed:15:b7:16:b4:27:
b9:2a:ac:09:90:97:0c:a7:47:39:34:20:56:85:6d:
0c:4d:03:41:95:29:37:a3:cd:af:42:b9:f8:a1:9e:
19:00:89:94:7f:26:45:77:e9:0f:69:8a:27:ca:f0:
a9:d9:19:78:6f:ab:c7:d4:4a:90:8e:d4:31:47:4f:
b3:23:cf:57:ec:14:52:fc:00:8c:4a:de:4a:95:07:
23:d1:b6:6f:fb:e4:6b:a5:c6:09:83:78:a0:98:3d:
87:d0:5c:bf:e5:79:cd:0c:e5:f9:87:ae:46:16:89:
cd:a3:4a:e9:8e:e9:2c:26:a3:1d:43:95:f4:07:4d:
a1:c4:c7:71:d2:2a:e5:49:f8:f0:f8:bc:87:59:8e:
97:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:2D:18:3B:44:BE:29:0B:CF:95:E2:FB:C0:FA:AD:4A:49:D3:5F:04
X509v3 Authority Key Identifier:
keyid:7F:03:A1:F8:C3:34:FD:BF:4B:78:DE:F0:C5:92:FF:04:90:DD:F4:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fwOh-MM0_b9LeN7wxZL_BJDd9LA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/mi0YO0S-KQvPleL7wPqtSknTXwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/fwOh-MM0_b9LeN7wxZL_BJDd9LA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.14.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:e3:94:05:e9:33:f0:14:f0:0f:67:02:41:6b:82:d0:09:3f:
ec:46:f5:78:70:6f:ab:69:fe:94:b1:17:54:ee:f6:b2:1b:63:
0d:d2:33:78:9d:55:cc:ad:e1:e9:0e:97:2f:49:12:57:1f:24:
e7:52:31:2c:0b:c3:f0:53:b9:01:7a:8f:23:78:ca:4c:54:b5:
07:c6:28:9f:76:5d:a8:23:91:3a:23:34:ce:bc:66:ef:b3:e7:
05:83:25:0c:9d:9c:73:2c:73:96:28:c7:40:b7:aa:e6:ed:3f:
fa:88:9b:61:3c:3d:55:30:28:38:a6:b5:2c:5e:4e:07:0e:14:
50:f5:13:68:27:6d:11:55:7c:e4:30:dc:6e:f2:a0:13:71:76:
39:8c:90:aa:2d:2e:55:49:d5:e8:33:92:94:f6:1a:42:05:a2:
16:bf:78:af:ed:31:e8:0c:03:a6:01:bf:3a:5a:b2:2d:5d:24:
57:c0:cc:70:51:d9:59:a6:81:23:44:fc:fb:71:3a:0a:9b:0e:
11:4e:4d:fb:f2:cf:9f:30:b3:26:6f:a8:b9:6e:d3:86:71:ba:
e3:80:7a:9a:14:43:97:4e:de:08:1b:8c:54:f5:c1:6b:51:06:
3a:23:d1:ce:5e:ad:1c:0d:9d:84:93:f0:e9:37:04:e8:d9:a7:
06:b1:db:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:11 2024 by rpki-client on console-ams.rpki-client.org