Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/MO8n09EhDttj1UfQmeWN5JylDz8.roa
File: MO8n09EhDttj1UfQmeWN5JylDz8.roa (raw, json)
Hash identifier: jPc5qi9y253qe9hianw863ogSFd+UhB1O1HIg7aIptw=
Subject key identifier: 30:EF:27:D3:D1:21:0E:DB:63:D5:47:D0:99:E5:8D:E4:9C:A5:0F:3F
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C3AFEE
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/MO8n09EhDttj1UfQmeWN5JylDz8.roa
Signing time: Sat 01 Jan 2022 07:04:30 +0000
ROA not before: Sat 01 Jan 2022 07:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 192.144.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147042286 (0x8c3afee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30ef27d3d1210edb63d547d099e58de49ca50f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:07:b3:af:18:45:c8:ec:bc:05:2d:d5:ec:0a:
c8:a7:4a:ac:42:56:cb:77:16:94:0f:af:82:bb:38:
c3:70:45:29:14:2d:d6:9b:cc:50:6b:7d:57:30:56:
0b:51:9c:6f:9d:37:48:1e:3a:5b:cc:a7:ce:5f:c4:
d2:20:43:bc:87:a4:c9:0d:34:0d:3f:9b:ca:db:82:
55:f2:36:15:63:cc:f1:84:9a:58:5f:f1:51:76:12:
39:91:90:62:60:47:17:25:0e:f1:bf:74:23:67:37:
bb:3c:48:40:ff:56:5c:5b:01:96:fe:56:37:bc:8a:
e6:1e:86:3b:33:87:d5:3c:28:aa:01:b3:24:08:4f:
25:0b:68:4b:89:be:44:da:e0:8d:53:cd:96:60:3c:
b0:d1:ac:50:d5:d0:2d:17:d6:b8:15:30:08:3d:1e:
70:04:30:50:c7:eb:de:e6:d9:9c:71:42:5c:b5:29:
0f:76:fb:23:eb:d0:38:98:b9:87:63:f9:6e:b6:ea:
19:34:5d:8d:41:e7:73:81:96:05:52:22:1c:34:92:
94:ce:4b:6c:91:fd:e3:f1:cd:be:49:7b:2b:99:2a:
9f:ad:b5:8e:f8:06:ce:a2:69:4d:54:18:90:68:0d:
82:87:16:d9:e8:c8:15:23:14:f4:b2:33:d0:51:cf:
2e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EF:27:D3:D1:21:0E:DB:63:D5:47:D0:99:E5:8D:E4:9C:A5:0F:3F
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/MO8n09EhDttj1UfQmeWN5JylDz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.33.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:68:4d:2b:10:f9:77:a2:15:8a:7b:ff:85:64:1a:8a:55:de:
1a:ab:86:ff:09:d2:97:a2:1c:18:41:a9:49:26:bc:ca:d3:4d:
77:64:74:3b:cc:6c:f1:b3:a5:99:b7:b0:95:e1:12:b1:b2:13:
3d:60:2e:96:ba:49:65:a7:e0:ba:92:9c:3b:4f:7d:ad:35:81:
fe:6b:3a:72:c1:06:1f:d6:8a:35:b7:4b:9c:45:98:55:ee:60:
93:e7:87:f2:5f:d1:cc:5f:cb:4b:d0:27:60:eb:0b:3d:e0:b3:
4a:1e:5a:42:33:ba:80:0d:37:16:77:5f:72:74:90:31:eb:4a:
76:fd:42:48:3c:37:5a:33:a1:a8:db:43:45:af:2c:1e:8d:39:
a3:a6:20:f1:93:fd:f4:be:35:94:67:62:1f:d0:70:cb:04:67:
97:4e:0f:f8:0a:d0:2d:37:cd:a0:04:b0:75:02:3a:ce:0d:a3:
9e:09:3b:82:02:14:e2:02:0a:41:48:fd:99:b3:3a:e7:c9:3c:
f6:2a:ec:f6:a3:0b:30:45:70:e0:e3:50:5f:6b:5c:ac:7e:19:
25:cf:3f:85:26:f9:38:64:28:60:3d:d5:2b:bb:4f:6d:74:59:
c5:04:04:89:4e:94:f5:c2:b3:de:75:12:f6:a3:4c:cd:43:1c:
c4:9c:60:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org