Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/mtJU4x6Z5chrgtMv3j7tpX6mNHM.roa
File: mtJU4x6Z5chrgtMv3j7tpX6mNHM.roa (raw, json)
Hash identifier: YvkQs7oDQs4HTdIv/qk6+hAwH3ChfVcWpRTariKJrng=
Subject key identifier: 9A:D2:54:E3:1E:99:E5:C8:6B:82:D3:2F:DE:3E:ED:A5:7E:A6:34:73
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 0A03D027
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/mtJU4x6Z5chrgtMv3j7tpX6mNHM.roa
Signing time: Sat 01 Jan 2022 13:55:08 +0000
ROA not before: Sat 01 Jan 2022 13:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24667
IP address blocks: 213.161.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168022055 (0xa03d027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jan 1 13:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ad254e31e99e5c86b82d32fde3eeda57ea63473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:6c:8b:a9:63:40:82:bf:37:08:69:67:2e:
e7:50:fe:49:0c:f4:68:ce:e7:c6:c7:f7:da:b3:e6:
be:d1:ff:e7:0a:1e:b9:3e:5d:64:8d:d1:b0:7b:95:
b2:33:e5:b9:e3:23:39:dc:57:73:0e:18:48:88:0f:
0f:ba:95:13:8b:69:e2:5f:cb:59:9f:ca:45:2a:53:
8b:cf:05:ca:b5:b7:4f:96:d3:c4:04:1b:fb:0e:18:
14:60:b6:47:d7:4f:7e:4d:a8:db:b5:db:f6:fd:99:
2f:23:29:bb:29:f0:de:ff:11:f4:7e:dd:57:77:2e:
44:7b:da:a0:5f:e1:f6:9a:6e:9a:21:97:1f:f0:58:
15:04:33:af:e0:cc:16:47:bd:bb:9d:28:55:3b:64:
c5:2c:6b:51:af:ed:79:ef:4d:04:de:23:27:ef:b5:
5e:55:b9:75:81:7f:c9:01:b0:a5:a8:9b:fc:ee:cc:
41:db:96:89:9c:ad:47:a1:3e:f0:0a:b5:f3:ad:3e:
32:a0:bf:87:04:51:57:ba:8d:cc:ce:dd:62:59:05:
a4:fb:26:88:95:03:60:34:10:f8:62:25:01:63:9d:
c7:70:21:0b:cf:0b:ef:da:ca:d1:4d:fa:a8:04:89:
d7:cc:4d:9c:dc:11:c8:82:42:ec:11:92:9a:e4:a4:
6c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D2:54:E3:1E:99:E5:C8:6B:82:D3:2F:DE:3E:ED:A5:7E:A6:34:73
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/mtJU4x6Z5chrgtMv3j7tpX6mNHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.161.147.0/24
Signature Algorithm: sha256WithRSAEncryption
22:6b:cd:58:f3:13:63:c0:e3:ad:33:5f:84:69:88:fb:da:62:
ad:b6:d0:3e:d2:e7:8a:d4:ab:ac:56:2e:1d:c7:1a:4e:d0:33:
d3:f5:36:db:30:a4:6d:58:e8:99:20:d0:86:2c:ea:ce:f8:d3:
9a:86:96:3c:c7:49:1e:6f:e5:ec:92:03:3e:a2:84:2a:ec:aa:
0c:77:d9:bc:81:a1:66:ce:30:30:2d:f9:2f:70:1c:4b:f2:a8:
ec:fd:6b:02:a5:74:60:b9:bc:01:62:f3:7c:0d:37:df:60:3f:
3c:f1:8f:e8:92:b8:b1:e2:7d:6b:1f:6a:fb:7c:e4:4d:a3:9d:
b1:1d:45:1b:2b:4e:19:6d:63:a3:91:2c:bf:84:18:61:7d:6b:
21:2c:b0:e9:b2:81:51:5e:94:91:68:79:f9:26:9f:07:c8:e3:
e2:4e:28:6d:d2:51:12:5a:73:2c:00:fe:13:de:b4:12:0e:f6:
85:ca:9d:6a:98:b0:9c:d3:d6:90:5f:8a:58:82:ec:27:04:d8:
f4:96:cf:73:6d:9b:c3:fa:36:e6:94:c4:83:79:51:a1:25:38:
14:a7:73:dd:cf:d3:bf:26:31:bd:82:43:1e:33:6a:a5:ac:9a:
9f:cf:7b:3e:ff:4f:b9:2b:5f:60:84:8d:d0:38:2e:c7:ea:98:
6d:2c:ab:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:17 2024 by rpki-client on console-ams.rpki-client.org