Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/MvAHmTEfti8HwNmmZXuzhW4zWGo.roa
File: MvAHmTEfti8HwNmmZXuzhW4zWGo.roa (raw, json)
Hash identifier: bEHwJKqArcYETUwm7GnLe9pFOkI++vMuzfwvF+0/vAQ=
Subject key identifier: 32:F0:07:99:31:1F:B6:2F:07:C0:D9:A6:65:7B:B3:85:6E:33:58:6A
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 09480F80
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/MvAHmTEfti8HwNmmZXuzhW4zWGo.roa
Signing time: Fri 01 Jul 2022 13:18:25 +0000
ROA not before: Fri 01 Jul 2022 13:18:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 45.95.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155717504 (0x9480f80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Jul 1 13:18:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32f00799311fb62f07c0d9a6657bb3856e33586a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:82:33:97:60:9f:76:b7:3f:a6:73:0d:e7:dd:
2b:5d:b2:be:76:35:9a:da:a7:44:bc:fe:02:bd:41:
76:e5:d4:32:0b:0c:61:86:c5:fb:96:9c:b2:bc:54:
a0:c7:42:7a:22:16:66:4c:1b:c0:88:09:10:03:3c:
5b:2e:b6:6e:bb:43:7c:c5:fa:70:25:9d:44:48:f8:
76:9b:06:96:c4:b6:19:c8:c8:2d:45:35:e9:36:47:
98:b1:27:cb:49:84:c1:aa:bd:ee:22:a4:ec:f5:fd:
4f:64:99:b3:de:f0:91:77:de:05:ef:b2:b7:ee:5e:
95:fa:1c:69:1c:98:32:07:59:ec:e0:b6:ab:b4:98:
8a:7d:63:a2:60:aa:5c:83:fe:99:0d:51:ae:b6:d6:
ec:85:36:64:2b:12:79:c4:a4:0c:82:19:4c:5d:87:
bd:db:f9:ea:07:e3:01:c2:a3:ae:2f:ae:c8:72:ca:
0a:a3:d6:ca:a3:7c:4e:23:da:e8:9b:08:bb:eb:86:
26:04:37:ea:1d:14:60:7e:49:ab:e7:2d:69:39:95:
a9:0f:6e:19:02:b0:0a:62:42:68:77:cc:4d:93:3d:
56:4c:43:af:74:b6:5f:7e:35:2c:73:fe:c1:41:8b:
3e:47:7b:4c:7f:15:92:a2:91:4d:7b:9e:5d:c3:69:
97:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F0:07:99:31:1F:B6:2F:07:C0:D9:A6:65:7B:B3:85:6E:33:58:6A
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/MvAHmTEfti8HwNmmZXuzhW4zWGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.207.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:2b:2e:6f:db:5d:1f:3e:bf:c2:82:d3:39:d5:30:0d:f8:4d:
21:1f:19:26:35:78:f9:1d:c9:8c:79:d6:4a:8a:4c:7f:64:27:
2a:ac:28:f6:7c:72:fe:0c:56:2f:13:53:94:e4:64:50:70:24:
da:76:6a:9d:fb:d3:52:bf:a2:03:62:5a:c5:67:b8:46:6d:83:
7d:dd:65:dd:47:23:8b:34:08:fd:d4:e1:a5:91:78:38:5e:fa:
ad:75:2c:27:7e:2a:59:8b:03:84:70:80:6b:12:ad:bb:ba:ee:
71:82:47:e1:d0:20:75:d2:9b:76:fb:35:fe:c9:b3:38:2f:09:
f9:3d:f8:12:d1:7d:0b:8a:31:b4:7b:56:d2:6e:93:ce:e6:f5:
15:d1:53:36:32:bb:88:ca:fb:ec:a6:cd:06:9c:0c:2d:08:9b:
89:6c:21:0e:37:5a:81:d2:2d:37:46:d8:63:74:8a:73:12:b8:
81:13:34:aa:69:3a:ff:a5:af:13:42:84:55:65:4d:64:83:92:
47:6f:d3:e3:cc:21:01:ac:5f:a8:66:1b:55:a2:a3:14:7d:df:
8a:8e:d5:ed:ae:dc:2b:57:fb:27:8f:3a:6d:6c:5d:06:c7:da:
16:f2:b2:9b:9c:e9:67:4c:ab:a5:27:f6:06:95:98:dc:61:d9:
b9:92:43:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:05 2023 by rpki-client on console-fra.rpki-client.org