Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MDOdk1HcwZ5IusOHaOyJb38PLc4.roa
File: MDOdk1HcwZ5IusOHaOyJb38PLc4.roa (raw, json)
Hash identifier: dO4pEAD0zSWp82uorzeGfp2Apmu9ciJ1ZbiCdXdjZno=
Subject key identifier: 30:33:9D:93:51:DC:C1:9E:48:BA:C3:87:68:EC:89:6F:7F:0F:2D:CE
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01840EC044FCEF12CAB4AC601D5B3E2F67CD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MDOdk1HcwZ5IusOHaOyJb38PLc4.roa
Signing time: Tue 25 Oct 2022 10:46:32 +0000
ROA not before: Tue 25 Oct 2022 10:46:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132969
IP address blocks: 193.35.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:c0:44:fc:ef:12:ca:b4:ac:60:1d:5b:3e:2f:67:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 25 10:46:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30339d9351dcc19e48bac38768ec896f7f0f2dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2c:e9:e9:10:7e:62:32:a1:7b:ea:1f:4e:87:
b2:c2:95:42:90:4b:ff:84:4e:ee:0e:3a:b1:15:37:
a3:63:83:75:0f:14:73:c0:62:af:e6:a7:bd:fa:7c:
c9:f8:d1:f6:ba:13:51:d8:61:5c:36:c5:da:d5:a3:
51:3b:bd:5d:ac:8e:2d:30:9d:10:62:6c:19:1f:20:
28:12:6e:d8:2d:3c:91:86:22:a8:a5:71:18:81:4a:
61:aa:e7:63:59:c1:03:e8:95:24:f0:c0:4b:3f:46:
02:f3:15:4a:3d:f3:04:37:96:b5:8c:f7:27:7b:74:
72:28:4d:15:b9:f4:ba:4e:c6:90:b6:e1:bb:1f:8f:
d5:63:90:54:55:9d:10:a0:a1:f0:76:1e:94:15:01:
54:4a:9c:16:c2:c0:89:5d:1c:86:93:02:ad:01:77:
af:65:5a:a2:a4:52:42:b5:9e:75:40:dc:42:1e:5a:
86:da:1c:5c:ff:06:a9:68:12:2c:2e:0f:1e:b2:d6:
b1:79:b1:58:3a:c6:44:2a:e6:98:d6:06:dc:fc:da:
93:9e:a7:b7:f8:06:61:fa:fe:be:b0:e7:b2:5c:86:
0e:30:f3:14:5c:af:d6:f0:76:84:b9:36:d7:ee:80:
0a:f4:97:c8:37:94:89:ac:11:18:2b:b2:49:8c:6a:
9c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:33:9D:93:51:DC:C1:9E:48:BA:C3:87:68:EC:89:6F:7F:0F:2D:CE
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MDOdk1HcwZ5IusOHaOyJb38PLc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.16.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ea:ff:c9:f6:be:f3:96:1e:72:37:9d:84:33:75:2f:4e:d0:
3d:9e:a9:a3:23:cc:e9:e4:31:45:0c:d1:58:6e:19:c8:08:49:
66:59:9e:42:aa:16:bb:7d:8f:8a:87:5c:9a:36:cc:9f:98:78:
b5:60:6b:d8:41:c1:ca:3d:9f:07:07:61:b4:32:cf:65:ba:5f:
cc:9b:fb:3d:4e:20:bb:35:e7:6b:ee:31:16:d9:d2:b3:50:b4:
1b:f7:41:84:b5:fb:f2:58:43:3e:de:90:a7:44:d0:22:68:8e:
99:e9:7a:8b:9b:0e:12:29:fe:c6:c4:3b:d7:b8:7a:ea:84:6b:
d5:65:f1:7c:0d:4c:00:5d:a7:38:5a:31:8a:20:61:a8:f7:c9:
43:d3:4e:2b:0d:a2:22:ca:64:ea:fe:37:9b:9c:a6:1a:00:31:
64:64:b9:36:7e:37:73:7a:eb:09:3e:3d:bf:60:fa:b4:f4:ae:
1e:d1:0f:0a:37:6d:d2:2a:b2:ea:a2:2c:74:e0:33:39:92:ae:
8a:c9:ba:62:ca:e0:5d:93:33:c6:2f:e4:19:7b:f4:bf:bc:56:
34:3b:1b:97:74:b0:df:1b:e0:18:51:7c:ef:1b:8e:1c:a5:f9:
b2:0f:11:84:b8:71:56:e9:d3:a9:9d:bf:5b:e1:79:78:20:b4:
3b:d2:24:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-ams.rpki-client.org