Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/mCYqVMnlF2um0HDUsD7nfQXpFtQ.roa
File: mCYqVMnlF2um0HDUsD7nfQXpFtQ.roa (raw, json)
Hash identifier: NreN+wJdnQxMdnhrHJsC8ezCKcZHLh5ahd+CQ/AGKuU=
Subject key identifier: 98:26:2A:54:C9:E5:17:6B:A6:D0:70:D4:B0:3E:E7:7D:05:E9:16:D4
Certificate issuer: /CN=1a93849bff337df8b8b0bd1ae252ee6119d8a61f
Certificate serial: 0F53EB7B
Authority key identifier: 1A:93:84:9B:FF:33:7D:F8:B8:B0:BD:1A:E2:52:EE:61:19:D8:A6:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpOEm_8zffi4sL0a4lLuYRnYph8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/mCYqVMnlF2um0HDUsD7nfQXpFtQ.roa
Signing time: Tue 11 Jan 2022 08:38:04 +0000
ROA not before: Tue 11 Jan 2022 08:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8315
IP address blocks: 91.200.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257158011 (0xf53eb7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a93849bff337df8b8b0bd1ae252ee6119d8a61f
Validity
Not Before: Jan 11 08:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98262a54c9e5176ba6d070d4b03ee77d05e916d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ed:63:d4:9a:59:ba:50:32:c2:6a:9b:a9:03:
49:94:e5:b8:17:9f:27:b3:43:ae:99:15:a6:66:ca:
92:59:42:6f:a5:9a:d2:e1:bd:10:33:10:b7:ce:d6:
79:0f:55:7e:a6:79:4e:fa:b7:eb:4d:b6:91:10:8d:
56:be:e0:a8:e8:39:c0:c4:a8:1a:82:19:8b:9d:38:
3f:be:2d:e0:ca:b2:b9:d8:43:e4:c4:58:d8:6d:73:
72:3c:23:91:9a:01:27:5b:c6:16:61:94:eb:08:0b:
e0:83:ef:f7:de:1a:b9:1f:fa:fe:37:d4:4b:1e:9d:
50:01:ad:af:26:ba:8a:b0:dc:e6:b3:fe:b9:60:96:
a5:e0:6e:5c:fe:3f:56:df:b2:f5:55:a8:f7:3e:71:
25:ad:69:ed:a3:8e:bc:1d:8d:ee:f7:6d:e7:b1:fc:
8e:3c:f4:93:5b:a2:8e:1c:8f:3d:2a:27:9d:1e:b2:
7d:54:c0:2c:a3:dc:42:5a:6d:8e:ba:33:d0:1c:db:
70:b9:4d:5f:ee:25:fa:2e:dc:c2:94:65:ff:06:6a:
68:88:40:65:9b:fd:15:58:8d:26:bf:b9:89:80:b4:
87:38:3f:91:96:ca:fb:9c:cd:03:a8:fc:92:2a:67:
0a:3a:05:1f:ab:8c:c9:1c:a6:66:9b:6a:56:83:21:
3b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:26:2A:54:C9:E5:17:6B:A6:D0:70:D4:B0:3E:E7:7D:05:E9:16:D4
X509v3 Authority Key Identifier:
keyid:1A:93:84:9B:FF:33:7D:F8:B8:B0:BD:1A:E2:52:EE:61:19:D8:A6:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpOEm_8zffi4sL0a4lLuYRnYph8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/mCYqVMnlF2um0HDUsD7nfQXpFtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/d4497a-11f2-49ac-aef9-43e67d5d0a85/1/GpOEm_8zffi4sL0a4lLuYRnYph8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.50.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e1:aa:a4:7a:f7:7e:0b:ce:ab:fe:d2:c4:4d:fd:80:49:71:
2c:c9:6a:5c:57:2d:23:79:ec:21:df:b4:10:8b:c9:9d:6a:6c:
97:df:64:59:4c:c0:df:9e:6f:e6:1c:4c:a7:b7:1e:69:63:cd:
02:88:eb:79:32:95:8c:48:25:46:65:9f:44:c1:20:ba:b1:47:
10:29:1b:65:92:88:96:16:a2:85:19:13:7e:20:ea:3b:f6:c2:
8b:87:99:30:e0:11:1f:e0:29:7b:1a:0a:62:56:06:f5:be:78:
85:e4:10:07:a0:8a:8a:32:4c:00:27:8a:11:2c:c3:b2:32:f8:
c9:f6:a9:a1:65:03:d9:4c:f6:7d:de:2e:51:45:d4:d4:ec:3e:
e7:63:22:e1:38:5c:59:a7:de:76:3e:39:ae:cc:8f:0b:a4:97:
46:f2:00:7d:13:6c:d5:76:64:96:3c:3e:76:3f:0c:6f:d1:56:
9d:64:d3:bc:34:9d:d8:65:68:6f:f9:34:45:b6:75:1f:70:d9:
ae:8d:4e:0f:dd:2b:e2:5b:0b:b5:f9:14:d6:12:fd:08:6e:ec:
69:15:78:e8:ed:06:2a:60:85:33:a8:23:35:67:4b:66:ad:3b:
5f:c9:af:85:66:43:45:2f:e6:c3:e7:7f:da:fb:57:24:61:50:
35:c1:69:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:48 2024 by rpki-client on console-ams.rpki-client.org