Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/63eb50-150f-401d-92cd-162d723b510a/1/MOH-Lai-H8CFzq1ZqqeygZJ63Go.roa
File: MOH-Lai-H8CFzq1ZqqeygZJ63Go.roa (raw, json)
Hash identifier: 8I2FMtPQ480qukpoLo2i1nX74qEAgT9HcXN07mKZgLs=
Subject key identifier: 30:E1:FE:2D:A8:BE:1F:C0:85:CE:AD:59:AA:A7:B2:81:92:7A:DC:6A
Certificate issuer: /CN=a4057bd139c9fd2d0518b72039c3defcd101a55b
Certificate serial: 0185628A801BAD9A9907F93BAECE7D336EA1
Authority key identifier: A4:05:7B:D1:39:C9:FD:2D:05:18:B7:20:39:C3:DE:FC:D1:01:A5:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAV70TnJ_S0FGLcgOcPe_NEBpVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/63eb50-150f-401d-92cd-162d723b510a/1/MOH-Lai-H8CFzq1ZqqeygZJ63Go.roa
Signing time: Fri 30 Dec 2022 10:18:41 +0000
ROA not before: Fri 30 Dec 2022 10:18:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31164
IP address blocks: 193.25.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:8a:80:1b:ad:9a:99:07:f9:3b:ae:ce:7d:33:6e:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4057bd139c9fd2d0518b72039c3defcd101a55b
Validity
Not Before: Dec 30 10:18:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30e1fe2da8be1fc085cead59aaa7b281927adc6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:71:cb:0c:d8:3c:2e:c1:9b:6e:50:43:6c:00:
c8:2b:f5:eb:5d:5a:f0:43:b2:2c:b0:51:ff:37:b7:
16:ce:7f:e6:9f:76:ed:9d:24:76:bf:10:8d:45:2e:
e1:55:29:d8:e5:51:51:26:40:bb:b6:55:57:6c:eb:
58:58:df:c5:17:2b:69:46:c1:0e:8c:35:2b:0a:89:
aa:63:06:98:51:52:d4:10:21:7d:20:27:6d:4a:f6:
8a:40:f3:b1:54:a1:80:2e:e9:b8:ec:fa:4a:d1:b6:
d6:31:f6:e0:46:2d:ca:c6:d4:46:8b:cf:2b:d4:bb:
b7:d0:d2:1a:19:f7:01:54:4a:3a:4a:63:c8:a7:9f:
a5:12:80:c0:fc:d5:a1:33:2a:22:75:1c:78:28:e9:
68:f2:df:8d:76:1f:da:d8:95:1e:f9:bf:ca:1f:fa:
0c:45:76:3b:ab:b0:2a:b6:38:d3:91:66:ee:9b:6a:
51:b0:2b:5c:24:23:81:79:69:d4:ef:8d:14:31:fc:
7e:46:91:17:5f:1c:48:20:f6:b1:e3:31:8a:1c:59:
ad:77:f1:98:81:7d:6a:12:9a:08:42:1c:cc:2b:d3:
bd:c2:1b:51:c8:03:dc:8c:6e:73:a2:c2:0f:84:3a:
e4:cb:c1:fe:13:81:57:fa:0a:4b:83:01:01:cd:e3:
7f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E1:FE:2D:A8:BE:1F:C0:85:CE:AD:59:AA:A7:B2:81:92:7A:DC:6A
X509v3 Authority Key Identifier:
keyid:A4:05:7B:D1:39:C9:FD:2D:05:18:B7:20:39:C3:DE:FC:D1:01:A5:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAV70TnJ_S0FGLcgOcPe_NEBpVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/63eb50-150f-401d-92cd-162d723b510a/1/MOH-Lai-H8CFzq1ZqqeygZJ63Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/63eb50-150f-401d-92cd-162d723b510a/1/pAV70TnJ_S0FGLcgOcPe_NEBpVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.192.0/24
Signature Algorithm: sha256WithRSAEncryption
57:66:ce:83:3e:29:af:5f:9d:70:7f:22:26:cd:6e:79:7c:50:
dd:d9:63:7c:51:45:52:b9:bb:56:a1:5e:e2:22:d0:50:22:4e:
fb:85:28:5f:e6:b5:d9:78:54:00:c3:2d:c1:b6:54:43:65:46:
e8:25:5b:63:c3:c3:0f:c9:cb:27:be:f6:3c:d2:a2:a9:be:5b:
8c:cf:3b:7f:42:76:ff:17:75:02:60:34:4b:98:17:19:93:0f:
7b:98:bd:16:4e:cb:01:0c:e4:3c:e2:7d:b2:a2:59:cc:83:6b:
00:13:e1:18:a0:79:31:25:65:ab:c7:35:63:8e:10:9e:68:42:
d6:25:78:71:52:94:77:ea:46:a7:90:9f:bc:8b:01:e9:78:4c:
42:8a:c2:26:f5:80:3c:25:6f:37:15:e4:87:39:7e:bd:1f:e7:
77:a8:57:a2:ff:d8:db:37:22:cb:55:9e:15:4c:1a:59:c5:c8:
4e:b0:2c:7e:b2:40:72:96:79:72:ea:6e:be:64:ec:6e:95:39:
75:85:36:21:13:11:c3:11:e4:dc:3c:48:86:a6:f2:94:4c:d2:
4e:68:a4:64:51:e5:b7:2e:20:18:3f:67:14:07:e2:6d:24:6b:
1e:8d:dc:60:b0:82:b8:39:63:c9:5a:58:4f:56:20:b1:ea:0a:
7d:cb:50:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-ams.rpki-client.org