Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/CMNgmTqebtOoSGGnKyNA5jZEq7o.roa
File: CMNgmTqebtOoSGGnKyNA5jZEq7o.roa (raw, json)
Hash identifier: SLCFJBOLwIiXxhTCTIONZePNZCP5u/IpME7DK9kEFSI=
Subject key identifier: 08:C3:60:99:3A:9E:6E:D3:A8:48:61:A7:2B:23:40:E6:36:44:AB:BA
Certificate issuer: /CN=391a0ecc2b9beaba9eb76d5519fe787b4033fc12
Certificate serial: 0635A1E8
Authority key identifier: 39:1A:0E:CC:2B:9B:EA:BA:9E:B7:6D:55:19:FE:78:7B:40:33:FC:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORoOzCub6rqet21VGf54e0Az_BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/CMNgmTqebtOoSGGnKyNA5jZEq7o.roa
Signing time: Thu 10 Mar 2022 09:41:45 +0000
ROA not before: Thu 10 Mar 2022 09:41:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212221
IP address blocks: 91.132.4.0/23 maxlen: 23
91.132.5.0/24 maxlen: 24
89.45.200.0/21 maxlen: 21
212.102.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104178152 (0x635a1e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391a0ecc2b9beaba9eb76d5519fe787b4033fc12
Validity
Not Before: Mar 10 09:41:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08c360993a9e6ed3a84861a72b2340e63644abba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:46:e6:b9:9e:06:b7:91:fd:46:67:c4:7a:93:
22:a3:a5:e6:39:7e:92:df:71:39:48:dc:d5:19:ab:
98:5e:b4:df:26:e2:2d:f3:80:2f:2b:8d:c5:74:86:
4f:21:69:69:b9:97:8a:d7:6a:98:92:34:08:46:68:
b0:c8:54:86:cc:70:e9:73:16:7c:d2:a6:7d:44:7c:
4b:33:43:a4:ea:ba:10:af:93:17:70:2f:9c:5a:b4:
93:77:79:70:60:3d:59:28:d9:34:50:fb:17:94:0a:
62:d0:23:77:74:be:d9:d1:80:b0:72:60:07:1d:5e:
d2:41:17:44:66:05:91:f5:62:87:97:8a:b2:c2:23:
5b:a5:71:83:c7:72:6b:7a:b4:53:97:14:63:08:f8:
66:70:b5:3e:93:ff:6b:d8:5d:8e:18:a5:ea:15:89:
e4:30:10:b7:49:cd:f5:42:55:02:71:1e:8e:f6:54:
81:e2:fd:33:95:60:45:46:17:bf:04:c8:71:f2:0f:
49:9c:af:45:b2:7e:47:71:39:be:db:ea:91:a4:88:
aa:67:ab:52:a8:c4:20:3b:56:25:07:00:47:6e:97:
ab:09:9e:9a:5a:8b:84:f4:60:c1:d9:f6:0b:df:59:
0f:1b:23:6a:54:21:9b:cf:27:11:75:be:86:c8:b3:
11:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C3:60:99:3A:9E:6E:D3:A8:48:61:A7:2B:23:40:E6:36:44:AB:BA
X509v3 Authority Key Identifier:
keyid:39:1A:0E:CC:2B:9B:EA:BA:9E:B7:6D:55:19:FE:78:7B:40:33:FC:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORoOzCub6rqet21VGf54e0Az_BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/CMNgmTqebtOoSGGnKyNA5jZEq7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/ORoOzCub6rqet21VGf54e0Az_BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.200.0/21
91.132.4.0/23
212.102.106.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:50:5b:dd:4b:7e:43:13:69:80:5d:bd:86:cd:94:f2:6d:d2:
0c:4d:d6:87:7b:17:1d:6f:57:54:53:a1:8a:a9:18:96:d8:ea:
25:c6:c9:fe:dc:90:fd:c6:e0:8b:c5:8f:45:18:c9:3b:eb:2d:
b0:69:46:ca:3b:01:64:d3:91:ab:c7:77:e7:19:76:00:69:4d:
d8:e9:11:ba:e9:70:d5:1d:87:f8:2f:d9:c2:cd:6d:13:41:37:
0a:03:73:5a:ae:4e:22:a5:5a:b4:97:e7:92:fb:10:40:02:92:
bf:3c:ec:7a:51:ad:10:8e:62:1c:72:92:6a:d5:0c:f9:ac:bb:
3f:7b:d0:78:84:0f:27:5e:c2:ee:6a:04:90:cd:f0:aa:aa:63:
ef:09:09:9f:5b:c6:2d:78:61:da:14:5d:3c:a2:d5:75:13:0a:
71:d3:72:ec:61:50:e7:be:ce:be:b4:7b:51:7a:92:60:1c:48:
80:42:98:8a:12:de:d5:06:fa:74:e3:f5:ad:2b:29:32:b6:88:
ec:1b:a8:9e:da:1c:e0:82:2b:ef:c4:ea:31:83:60:82:33:16:
93:e8:cf:29:cf:9b:36:ce:9f:68:b3:e4:29:64:c4:80:c1:0a:
f3:4e:38:e7:4b:d0:2c:14:5e:f3:5a:db:88:3d:3e:5c:53:61:
72:51:cc:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:28 2024 by rpki-client on console-ams.rpki-client.org