Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/mgJ1e-KjBTAj2MubOeb2YPFR8rg.roa
File: mgJ1e-KjBTAj2MubOeb2YPFR8rg.roa (raw, json)
Hash identifier: BpE2JNtJj0DnU8/uqTX0ctiGCl+A/GnrFyF5+k9R0Gs=
Subject key identifier: 9A:02:75:7B:E2:A3:05:30:23:D8:CB:9B:39:E6:F6:60:F1:51:F2:B8
Certificate issuer: /CN=393cc8b7d2dc70a27d40fa459e4e56c005ccc63a
Certificate serial: 36F2614B
Authority key identifier: 39:3C:C8:B7:D2:DC:70:A2:7D:40:FA:45:9E:4E:56:C0:05:CC:C6:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTzIt9LccKJ9QPpFnk5WwAXMxjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/mgJ1e-KjBTAj2MubOeb2YPFR8rg.roa
Signing time: Mon 04 Apr 2022 19:55:07 +0000
ROA not before: Mon 04 Apr 2022 19:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207544
IP address blocks: 78.110.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 921854283 (0x36f2614b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=393cc8b7d2dc70a27d40fa459e4e56c005ccc63a
Validity
Not Before: Apr 4 19:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a02757be2a3053023d8cb9b39e6f660f151f2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:51:33:bd:e0:4d:78:eb:a9:5a:38:f4:71:0a:
53:63:b3:34:49:d2:d8:45:52:7f:b9:e5:22:cf:d7:
50:54:fb:bb:72:1d:75:1c:f9:0f:9a:95:7a:3c:c8:
57:5b:ff:21:bc:5b:88:c6:10:7e:59:e3:a5:a4:52:
13:1f:c1:02:5a:30:d6:bb:d4:bc:e4:81:37:a3:1c:
a7:cc:f0:9b:8c:7e:64:96:12:cd:0e:43:c7:60:23:
a9:af:1d:bd:4e:b1:bb:dd:62:a5:cc:c9:3c:6d:8d:
ac:d1:9f:43:51:3a:5e:37:0b:52:13:83:31:e0:47:
e9:7d:e4:33:1b:84:a0:11:2e:a2:28:14:1d:bd:b6:
f0:cd:ae:4b:e5:fd:5a:90:e4:4d:cf:c2:4e:e1:6c:
df:a1:8d:ca:c5:70:a0:d0:fc:40:ca:fa:40:33:b6:
b4:1c:ab:5d:22:be:f0:1c:9f:6e:9d:f0:f3:37:6e:
25:2f:37:e1:09:6a:82:95:e7:6e:f3:75:40:53:c1:
52:69:ee:14:73:18:c5:cc:80:4d:fb:36:81:10:71:
cd:55:b3:44:a3:ec:db:fb:b4:13:51:57:17:a4:44:
c5:00:9e:10:05:0e:5d:46:c1:e9:f4:80:41:ca:1e:
0c:64:17:1e:88:7b:af:61:90:6c:e4:9a:13:f2:0d:
82:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:02:75:7B:E2:A3:05:30:23:D8:CB:9B:39:E6:F6:60:F1:51:F2:B8
X509v3 Authority Key Identifier:
keyid:39:3C:C8:B7:D2:DC:70:A2:7D:40:FA:45:9E:4E:56:C0:05:CC:C6:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTzIt9LccKJ9QPpFnk5WwAXMxjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/mgJ1e-KjBTAj2MubOeb2YPFR8rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/137002-e75f-4201-9988-991a1c714f95/1/OTzIt9LccKJ9QPpFnk5WwAXMxjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.110.0.0/24
Signature Algorithm: sha256WithRSAEncryption
74:d4:65:45:85:a3:dc:6e:d9:00:f2:91:ca:cd:a0:0c:ac:56:
77:7c:f7:16:01:33:76:50:cb:50:1d:38:db:61:57:f2:a3:77:
e4:35:19:2e:d7:d5:c6:2d:f9:27:03:5a:d7:8b:63:ed:70:25:
92:f2:9d:fd:e9:11:f2:8d:c9:64:fb:9e:6a:7c:4a:10:ab:4a:
9f:23:78:92:32:57:8b:0c:f7:0f:4c:36:56:29:dc:ae:cd:b8:
e6:5d:12:30:a4:a5:77:20:f9:f7:e9:29:c2:e7:9b:24:df:ae:
84:f4:ee:51:3d:84:05:00:7c:04:05:87:18:c6:da:66:b2:3d:
d1:05:b4:ad:d6:18:7a:59:b2:9e:ff:ba:08:58:96:bd:bd:90:
38:2a:7c:03:f4:de:0d:8c:b4:5c:8d:48:51:f7:d6:d1:69:ff:
4a:10:f8:43:b3:19:a3:2b:f1:ff:14:5d:7c:95:27:de:c5:a6:
a5:ff:a8:f4:0d:7a:a3:42:1d:58:64:23:66:40:9a:95:e9:60:
56:b3:1b:2d:fc:48:c1:83:85:73:19:3f:17:97:ec:63:d0:09:
c3:c6:52:3c:6f:c5:c2:e8:bc:e5:38:ef:07:02:8f:b8:9f:a9:
c6:d3:ec:7b:82:8b:dd:3b:f6:4a:1c:d1:e8:14:60:f7:49:61:
f7:12:ca:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:24 2024 by rpki-client on console-ams.rpki-client.org