Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Mw5e0O9P_7okLVgM5_MYXOjOaH4.roa
File: Mw5e0O9P_7okLVgM5_MYXOjOaH4.roa (raw, json)
Hash identifier: Y7Ns0eDq3eyDb+aSkCVl/7iNZWU8yokXL7wUps/8x+U=
Subject key identifier: 33:0E:5E:D0:EF:4F:FF:BA:24:2D:58:0C:E7:F3:18:5C:E8:CE:68:7E
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 1049C2D5
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Mw5e0O9P_7okLVgM5_MYXOjOaH4.roa
Signing time: Sat 01 Jan 2022 15:00:48 +0000
ROA not before: Sat 01 Jan 2022 15:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 212.98.96.0/24 maxlen: 24
46.32.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273269461 (0x1049c2d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jan 1 15:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=330e5ed0ef4fffba242d580ce7f3185ce8ce687e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dd:30:60:65:b9:df:77:a5:9e:d9:9d:42:71:
2a:a4:d8:bf:0f:01:3d:1e:93:cc:58:12:1b:e9:f7:
92:34:74:9e:f0:18:b9:4b:b8:4e:85:02:9d:1f:3c:
11:a3:2c:6d:90:f9:1a:2a:b6:a4:33:08:ba:28:d9:
90:6d:b1:76:5c:75:69:27:5e:32:71:e3:4d:b6:ea:
87:fc:44:a5:96:77:c0:0c:91:65:02:1f:e1:55:49:
41:e4:36:76:06:f7:de:d0:11:5d:f8:d8:b8:e2:92:
4d:b3:dd:1a:2b:0a:87:0a:56:6c:b4:a3:6c:73:48:
a4:bf:8d:7b:62:32:92:db:ad:b8:d1:36:f7:bb:39:
6d:45:17:55:36:4f:80:ef:e5:97:46:e4:58:e6:cc:
f1:0d:a8:9d:13:09:73:08:62:17:17:6e:19:2e:9e:
0c:2d:0f:ce:79:dc:e1:a6:47:3e:c9:1f:b9:61:21:
b7:be:0f:7b:27:a6:84:0b:a0:dd:1f:2c:c5:bf:23:
56:57:f9:26:90:fa:39:a4:8b:ce:8d:c9:97:11:9f:
36:15:88:4b:4d:76:5e:64:68:48:48:e5:3b:64:11:
1d:80:15:c5:fe:b7:1e:ee:a4:06:6b:b6:dd:70:3b:
01:71:d7:82:41:f7:2e:85:24:92:5b:f0:0a:b5:7c:
17:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0E:5E:D0:EF:4F:FF:BA:24:2D:58:0C:E7:F3:18:5C:E8:CE:68:7E
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Mw5e0O9P_7okLVgM5_MYXOjOaH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.156.0/22
212.98.96.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ee:0f:61:47:c1:f9:ce:32:ac:1f:16:70:31:3e:5a:9e:0e:
d5:64:75:a9:f9:14:c0:b3:7a:97:d1:17:81:04:7e:bb:4d:ac:
77:47:10:b8:ee:79:1e:87:19:05:bf:44:79:b6:88:ea:78:83:
74:79:2e:0c:ad:41:89:b3:fd:ab:a8:45:ea:7f:a3:53:3b:32:
6f:4a:90:87:60:3d:da:ff:bc:29:d9:64:98:01:27:e4:fe:8c:
c6:fd:bc:85:d1:58:fb:98:c9:0d:de:18:37:4f:23:4d:e3:9c:
31:ef:72:33:cf:32:93:71:ee:2e:75:9c:63:53:d2:c3:4b:c7:
79:f4:72:ee:67:e4:1c:eb:0f:43:61:f2:b8:9f:b5:96:c1:4d:
01:c9:ef:bf:9b:f6:36:24:8f:4f:5a:75:c4:b3:7a:12:26:b6:
76:1b:d1:b0:ed:5b:a9:ec:88:e2:8e:bb:4a:5e:d9:80:10:5c:
60:22:aa:0d:bd:42:1b:ed:0f:ba:19:a1:fa:54:03:55:7e:03:
82:e1:be:66:7b:aa:b6:27:7f:2f:dc:5a:01:c6:93:58:03:11:
01:a0:ce:5c:c6:6e:16:5b:3a:36:93:1f:03:b8:83:43:93:82:
e0:be:5d:c4:a2:89:14:63:ce:e9:76:2c:5c:25:b8:8d:da:0d:
a8:2c:33:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org