Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/3a7ecc-4591-4adc-9880-aac89f2f17cd/1/ms2oHiArkZGvvd-8K4GK0LFF-6g.roa
File: ms2oHiArkZGvvd-8K4GK0LFF-6g.roa (raw, json)
Hash identifier: +zGlEI6T6vQ9mgZ5GRkS797IX3rb64++eL0AJ+XEN3k=
Subject key identifier: 9A:CD:A8:1E:20:2B:91:91:AF:BD:DF:BC:2B:81:8A:D0:B1:45:FB:A8
Certificate issuer: /CN=acb00ed62beef3070a136dd9845fd26e21fd261a
Certificate serial: 1AA69A99
Authority key identifier: AC:B0:0E:D6:2B:EE:F3:07:0A:13:6D:D9:84:5F:D2:6E:21:FD:26:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rLAO1ivu8wcKE23ZhF_SbiH9Jho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/3a7ecc-4591-4adc-9880-aac89f2f17cd/1/ms2oHiArkZGvvd-8K4GK0LFF-6g.roa
Signing time: Sat 01 Jan 2022 12:56:16 +0000
ROA not before: Sat 01 Jan 2022 12:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38927
IP address blocks: 46.226.80.0/21 maxlen: 21
185.146.236.0/22 maxlen: 22
87.237.120.0/21 maxlen: 21
93.191.48.0/21 maxlen: 21
2a02:420::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447126169 (0x1aa69a99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acb00ed62beef3070a136dd9845fd26e21fd261a
Validity
Not Before: Jan 1 12:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9acda81e202b9191afbddfbc2b818ad0b145fba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7d:f6:fc:98:5b:8a:21:d3:fb:6d:b5:b1:a7:
53:ee:17:ba:36:cf:cc:ba:10:19:f9:39:55:54:66:
77:dc:4b:8d:0a:b5:d4:14:2a:50:a2:23:d8:5d:04:
3f:4a:24:1b:ed:cb:e8:80:05:79:6d:37:ad:0b:cb:
39:ca:e2:b1:29:50:0b:f8:2b:99:2f:11:0e:4a:f9:
5e:16:87:1c:8a:27:21:df:4e:18:45:fc:96:1c:b0:
d1:e0:22:b5:57:57:8c:0e:61:42:86:a6:0e:82:69:
49:80:3b:b5:9e:32:af:80:fb:bc:58:95:24:6c:e6:
b9:a4:44:5d:cd:05:be:29:53:b1:79:bb:49:c6:a3:
a2:e5:3e:fe:b6:7f:cc:4b:43:e6:fb:ad:1e:71:41:
88:58:39:c8:04:3d:7b:2b:ae:19:0e:8e:d9:4e:18:
46:8f:de:fa:43:2b:73:6f:96:f6:79:d2:e5:db:e4:
b9:d7:0c:8e:b1:ac:98:59:ed:30:96:30:d0:84:af:
16:08:bd:1c:6d:06:81:36:fd:e9:94:8d:05:3b:e1:
bd:8c:07:c9:c9:d9:7a:c4:bf:47:8e:6c:95:9d:9a:
87:16:a8:7a:7a:13:21:5c:4e:d0:33:2c:f2:e8:5d:
22:cb:b7:84:e9:d6:6b:26:15:ab:d5:60:95:dd:5c:
1a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CD:A8:1E:20:2B:91:91:AF:BD:DF:BC:2B:81:8A:D0:B1:45:FB:A8
X509v3 Authority Key Identifier:
keyid:AC:B0:0E:D6:2B:EE:F3:07:0A:13:6D:D9:84:5F:D2:6E:21:FD:26:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rLAO1ivu8wcKE23ZhF_SbiH9Jho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3a7ecc-4591-4adc-9880-aac89f2f17cd/1/ms2oHiArkZGvvd-8K4GK0LFF-6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3a7ecc-4591-4adc-9880-aac89f2f17cd/1/rLAO1ivu8wcKE23ZhF_SbiH9Jho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.80.0/21
87.237.120.0/21
93.191.48.0/21
185.146.236.0/22
IPv6:
2a02:420::/29
Signature Algorithm: sha256WithRSAEncryption
97:84:35:a7:57:f5:d7:7b:19:6a:b5:78:09:90:6a:3c:7b:26:
ec:3a:01:76:f9:89:44:27:17:d6:88:d1:9f:5b:ec:2c:41:d0:
9e:dc:69:c9:75:5c:29:5c:50:49:41:66:39:46:c2:7b:ce:36:
38:0e:9b:b5:84:40:73:f8:82:db:85:62:f5:36:a3:61:ca:6c:
b3:ba:5a:1d:4e:73:ee:27:2a:41:37:39:20:04:84:94:12:eb:
1f:79:3c:4f:72:0f:ca:1b:43:be:e5:87:b1:f2:69:a8:38:99:
e2:b9:15:6e:12:77:64:3a:12:55:47:ba:71:d5:6b:e9:fc:b8:
d2:80:63:7e:17:bf:11:7a:6d:8c:1b:9e:fd:fa:1f:4a:b5:1c:
53:8f:9c:2c:4a:36:50:b8:22:aa:22:8a:ef:57:24:01:76:5c:
ef:89:18:e6:54:51:8e:93:15:8c:ee:80:e7:35:7d:2f:7d:b8:
e1:ac:23:bc:ed:79:cf:ea:7b:d0:3f:11:5e:dc:00:1e:c3:8a:
f5:f5:69:cf:f8:9c:ed:ee:40:5f:47:7b:5b:5f:0e:97:da:6d:
6a:81:0e:d1:b2:3e:1e:13:0f:e3:03:48:0e:da:55:1c:7b:a0:
1a:c2:4b:32:f2:1f:90:f5:f2:41:e1:6f:18:26:4c:77:18:65:
bb:91:66:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:52 2024 by rpki-client on console-ams.rpki-client.org