Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ME20jcUgZUuU_NQ7cr8zkBwamFg.roa
File: ME20jcUgZUuU_NQ7cr8zkBwamFg.roa (raw, json)
Hash identifier: GTeOuLGCxRT97aJXfAoKxgzsxCHAUNAPWH4Gw38TBME=
Subject key identifier: 30:4D:B4:8D:C5:20:65:4B:94:FC:D4:3B:72:BF:33:90:1C:1A:98:58
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C61A5BB
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ME20jcUgZUuU_NQ7cr8zkBwamFg.roa
Signing time: Sat 01 Jan 2022 01:02:28 +0000
ROA not before: Sat 01 Jan 2022 01:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41624
IP address blocks: 212.73.158.0/23 maxlen: 23
87.120.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476161467 (0x1c61a5bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=304db48dc520654b94fcd43b72bf33901c1a9858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7b:d4:98:87:8d:bb:b6:90:af:6a:41:62:e5:
14:ff:ef:01:37:65:dd:e4:32:bc:78:d8:15:70:11:
cf:92:f7:89:a0:06:6f:1f:d3:c0:db:67:ab:f3:61:
bb:33:bf:ec:ad:ec:88:b3:6a:1c:ca:f7:df:2e:c7:
b6:df:4b:27:4e:b2:92:51:59:7b:b8:5e:86:e0:97:
f1:6e:f7:34:4a:9e:65:a3:0d:0a:e3:85:8c:f0:eb:
fd:84:c8:f4:5d:95:1b:03:6d:5c:0b:c6:bd:64:8e:
02:f1:6e:97:bf:64:a3:34:61:b1:d2:b1:87:cb:1d:
74:35:53:3c:81:cb:39:c2:82:b6:d6:66:d0:dc:05:
78:88:cd:95:d4:5c:e0:e9:7f:c4:40:53:af:5e:a6:
51:17:dd:f5:84:4e:da:1d:3c:90:13:48:38:3f:a0:
cc:fc:f3:e4:ba:7f:6e:2b:3f:68:86:a0:3e:88:77:
c8:ec:f1:49:f5:9b:64:87:55:67:5c:6b:7d:23:8e:
db:50:22:19:ee:48:7d:b6:f7:33:a1:f8:5b:52:fc:
b1:c6:57:3b:a2:bc:21:ca:29:0f:15:ba:61:db:ef:
d7:26:c2:01:7b:3b:be:17:98:af:18:d5:10:ea:27:
31:0f:e9:cd:6f:08:bc:24:29:cb:bc:e6:0e:50:0f:
09:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:4D:B4:8D:C5:20:65:4B:94:FC:D4:3B:72:BF:33:90:1C:1A:98:58
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ME20jcUgZUuU_NQ7cr8zkBwamFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.152.0/22
212.73.158.0/23
Signature Algorithm: sha256WithRSAEncryption
65:5d:9a:fe:69:cd:99:8b:76:ec:74:fb:38:6b:cd:ba:b5:1f:
b0:03:30:1b:70:82:96:ae:7d:51:57:f7:77:a7:49:fc:0e:c1:
c1:b9:d3:35:7b:db:4b:cd:b0:bb:53:e0:27:54:ff:95:f9:d7:
c9:e7:ed:37:f6:f0:19:42:ba:dd:99:91:0a:6f:3f:e5:f8:13:
0e:be:3f:46:d0:c4:78:05:24:9f:9a:71:7d:8f:ec:8b:aa:8f:
12:44:61:eb:ba:ad:5e:5a:9d:2b:7d:ce:b0:ef:69:a1:8b:0f:
84:83:f7:7e:af:91:92:d3:bc:a2:54:cc:ef:fc:aa:42:61:62:
52:6a:db:96:72:11:48:e0:47:19:0e:89:13:3d:a2:d9:b4:99:
d4:bc:e0:ac:60:c6:52:07:02:0b:1d:15:90:f7:17:c9:10:50:
64:d0:f8:a4:eb:6a:39:29:77:6e:17:4e:fa:24:03:83:f9:3d:
4a:be:77:05:55:5a:2b:9e:68:c5:d2:53:c1:d8:5a:03:89:93:
d7:4c:24:ff:97:b1:22:4d:29:30:52:53:a6:a6:32:e4:5f:5f:
d9:12:60:1b:e3:e5:4d:15:fa:3b:aa:68:da:7a:50:cf:68:d8:
f6:f7:74:8a:d8:e0:d4:27:e1:e3:ed:d6:64:35:33:4c:2b:eb:
a5:5b:34:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-ams.rpki-client.org