Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/MxsdYM8whYlI8N01QzOvCMZqOLU.roa
File: MxsdYM8whYlI8N01QzOvCMZqOLU.roa (raw, json)
Hash identifier: yDuLl7fn06HF0V4cP1/0wtGO1oyS6/vzOMuRZXEzsvE=
Subject key identifier: 33:1B:1D:60:CF:30:85:89:48:F0:DD:35:43:33:AF:08:C6:6A:38:B5
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 44776005
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/MxsdYM8whYlI8N01QzOvCMZqOLU.roa
Signing time: Sat 01 Jan 2022 03:58:24 +0000
ROA not before: Sat 01 Jan 2022 03:58:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15962
IP address blocks: 90.64.0.0/16 maxlen: 24
92.180.192.0/18 maxlen: 24
2a01:c840::/28 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1148674053 (0x44776005)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=331b1d60cf30858948f0dd354333af08c66a38b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:21:4e:39:28:09:9f:9a:75:04:bf:48:99:5b:
6f:c7:5b:07:b0:e3:9f:ae:fe:02:df:3c:82:1a:22:
51:a1:20:f9:31:ff:2b:a0:f5:c9:28:2b:5f:a7:e6:
44:e2:d4:84:7a:fc:d2:a3:9c:66:eb:ca:1e:78:d9:
39:56:2e:fb:07:ce:ba:b7:1c:19:c6:19:98:ad:00:
ab:ef:c4:2a:9e:b1:4f:70:e6:68:b2:7b:6f:58:e0:
3f:39:12:5a:02:69:23:be:65:96:bc:4e:2b:cb:9d:
2a:39:b8:e9:99:d2:2e:65:a6:04:08:79:00:1f:e4:
67:b7:28:be:e0:76:00:10:e4:a7:00:9b:61:1d:37:
bb:7c:d9:9a:7d:ff:61:30:1a:e5:a8:50:a5:6c:26:
ac:87:ba:f6:14:9c:7e:fe:ef:7e:11:0e:d1:13:b2:
2c:59:11:4c:bf:2b:66:cb:76:2e:6c:22:74:cd:45:
7d:8c:f5:a9:23:c2:55:9c:4c:f7:b0:88:90:ad:e0:
c5:ab:9b:ba:c4:6e:83:7e:6f:22:24:5a:39:88:24:
82:26:a6:b7:7c:60:3a:ec:26:82:71:1d:23:eb:e9:
f1:54:1c:68:77:1f:cf:7a:c8:d9:72:44:7b:a3:a7:
22:7b:9d:ea:ee:93:af:bc:0a:2f:85:d8:6f:8b:64:
f9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:1B:1D:60:CF:30:85:89:48:F0:DD:35:43:33:AF:08:C6:6A:38:B5
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/MxsdYM8whYlI8N01QzOvCMZqOLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.64.0.0/16
92.180.192.0/18
IPv6:
2a01:c840::/28
Signature Algorithm: sha256WithRSAEncryption
8f:99:38:6e:82:f7:33:23:55:22:6c:49:eb:71:0e:8f:38:66:
a0:10:21:38:15:b3:19:cf:68:65:02:11:c3:fe:79:8a:76:df:
f9:19:bd:e5:ac:df:d4:e7:f5:9a:25:97:7a:32:a4:29:ad:a1:
6b:ee:1c:33:a3:3b:cc:c4:60:fc:3b:30:17:4c:5b:7a:f4:5d:
35:ad:fd:04:e5:a1:e7:87:01:d6:22:49:24:38:50:7d:21:1e:
9b:13:bd:7a:c5:c6:ef:00:e2:f1:db:c4:19:54:b0:9d:cb:84:
fd:6a:32:5f:aa:44:cc:a7:b8:89:8f:15:02:24:d9:d1:a6:e4:
f5:22:e5:8e:c0:04:41:38:ac:e9:0e:6d:6f:89:7d:76:e3:6f:
ed:34:c6:85:02:c5:76:c1:71:dd:2b:7d:2b:76:f4:23:8c:66:
f4:a6:87:a0:6a:ca:44:fa:f1:f3:82:b3:d9:0e:3f:e1:e4:a8:
ad:ee:71:d3:1f:71:73:62:50:1f:e5:37:27:4f:8c:af:9e:98:
9c:28:dc:af:e2:80:e5:eb:26:f4:07:5b:61:9b:b5:3c:69:32:
b4:a7:18:99:b7:58:ff:fc:78:82:6c:18:5f:4c:a9:c0:ba:4d:
41:e2:d2:1c:89:4e:4d:9e:5b:e3:83:65:af:f9:a6:ee:ae:1e:
7a:27:53:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org