Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Mhw8Mx61qJE0uaaTHzVDfht0WLM.roa
File: Mhw8Mx61qJE0uaaTHzVDfht0WLM.roa (raw, json)
Hash identifier: NeI+P2OpVg6gp87UYZPFFRT3m4osXvG8soAF2TItHYc=
Subject key identifier: 32:1C:3C:33:1E:B5:A8:91:34:B9:A6:93:1F:35:43:7E:1B:74:58:B3
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17E7D6CA
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Mhw8Mx61qJE0uaaTHzVDfht0WLM.roa
Signing time: Sat 01 Jan 2022 03:59:54 +0000
ROA not before: Sat 01 Jan 2022 03:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31527
IP address blocks: 213.91.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401069770 (0x17e7d6ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=321c3c331eb5a89134b9a6931f35437e1b7458b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:80:de:08:98:5d:5a:42:6c:09:a6:fd:fe:f6:
6c:6e:b0:db:07:ec:20:7b:46:d8:db:4a:c0:54:1d:
ec:a9:88:6a:64:4e:2f:cd:51:06:f0:96:27:f6:17:
2b:d8:d1:25:38:c1:cb:f7:3c:b0:2e:69:73:dc:72:
c0:9c:b4:a5:69:f4:10:9d:f7:02:38:6f:1e:d9:b1:
32:08:b5:b1:c3:17:2d:50:b0:48:e6:9a:89:02:69:
c7:e2:b8:4c:1f:80:8f:02:4b:59:d6:dd:76:2b:85:
b5:5c:3f:2f:24:94:58:7b:65:16:67:8c:41:25:f9:
db:71:e2:f8:b1:15:20:86:ca:95:8d:ff:ad:8e:90:
0e:1b:28:2d:c2:b4:b5:fa:31:b3:05:d9:c7:02:a7:
b1:b1:94:78:d5:3c:f4:e0:4a:31:f5:35:f5:3a:1e:
4a:b1:a6:f6:d7:98:6a:b2:d2:59:4a:c3:fb:e9:b1:
97:5f:1e:85:7a:b7:63:dc:90:03:65:60:cc:e9:08:
dd:06:37:71:60:e3:16:51:32:d9:cf:8c:73:a9:96:
66:70:8c:9b:fa:2c:b2:bd:93:1f:26:c4:2e:32:79:
9b:20:20:96:3c:7a:50:90:38:69:7d:47:13:10:e1:
43:b2:81:65:fa:b4:9c:26:a9:5f:5f:12:25:a6:ee:
a8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1C:3C:33:1E:B5:A8:91:34:B9:A6:93:1F:35:43:7E:1B:74:58:B3
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Mhw8Mx61qJE0uaaTHzVDfht0WLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.252.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:aa:03:2b:cf:05:44:4e:26:26:81:9d:09:ba:ee:5a:1b:ac:
96:a1:17:88:42:97:f9:05:90:cf:13:f6:83:4e:57:46:fb:56:
8c:09:bf:77:4e:74:3c:18:cd:f3:a7:d3:5a:e9:93:05:0e:3e:
83:52:c6:fc:dc:c1:ab:ef:9b:15:cf:0c:e3:e0:a7:b5:c0:d7:
38:92:54:18:8d:57:ea:ea:1c:65:5e:0e:e0:9f:38:88:fa:3d:
ae:7d:67:35:15:43:a0:5e:5d:fe:8e:9a:2b:b7:b1:54:85:df:
cf:32:4f:d2:35:7a:91:1d:8b:f8:24:ff:00:70:4e:96:d5:af:
f9:37:f2:9a:3b:8d:ea:a2:0f:00:9a:01:d3:64:91:77:7a:83:
91:57:0a:bd:01:27:86:e0:43:ae:cc:f7:0d:71:75:b8:07:16:
c5:15:0d:eb:7d:46:ad:63:7b:08:ee:1f:9a:ae:b5:a6:50:f2:
24:e2:e1:f3:fd:68:31:58:d3:a0:1c:b7:4e:0e:29:97:de:4c:
08:eb:3e:8d:3c:b1:b6:18:61:b1:7c:3e:e5:e8:6d:a2:4d:bd:
02:ff:ed:0f:ed:da:7c:1f:0d:34:54:67:85:ba:04:3f:73:cf:
eb:5a:f8:26:ab:8a:91:12:1d:59:3c:df:72:e2:62:0a:70:e7:
de:fb:a4:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org