Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/bMdveK411v5-xDDxVVXlHC-MgVg.roa
File: bMdveK411v5-xDDxVVXlHC-MgVg.roa (raw, json)
Hash identifier: WeJBqWrNICEt2Ek4fsz4w7R+OVrIZAS1apV8DOJi68Q=
Subject key identifier: 6C:C7:6F:78:AE:35:D6:FE:7E:C4:30:F1:55:55:E5:1C:2F:8C:81:58
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B6110AC
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/bMdveK411v5-xDDxVVXlHC-MgVg.roa
Signing time: Sat 01 Jan 2022 08:58:38 +0000
ROA not before: Sat 01 Jan 2022 08:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49887
IP address blocks: 84.44.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190910636 (0xb6110ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cc76f78ae35d6fe7ec430f15555e51c2f8c8158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bb:c3:4a:d6:c7:28:bf:20:a8:61:87:5a:3a:
bc:60:90:56:1f:59:45:d7:70:c2:4f:95:d6:ed:60:
1d:a0:b0:06:42:ce:3b:5e:b3:d5:11:90:d5:be:5b:
07:84:8d:e9:43:46:f5:11:7d:86:a1:a1:a7:99:e1:
44:10:43:c9:6f:fb:80:c9:56:73:97:2e:d2:e4:ff:
c7:fc:69:d1:32:60:c1:e2:fb:4d:98:7d:59:80:43:
7f:e5:4b:5b:c8:00:92:50:b9:46:6a:28:ad:f3:10:
c3:7b:f9:92:91:14:c8:4a:3d:22:6e:b6:b0:a5:87:
1c:c2:d2:1b:58:f9:b3:b0:c1:6d:6c:17:f8:44:df:
f4:71:ef:b2:75:7b:79:ec:b7:16:77:27:2e:e3:74:
eb:15:5a:d8:67:0e:8a:f7:5a:3a:78:0a:39:d4:0a:
ae:51:34:44:80:5b:6d:6f:2b:b9:6d:4b:06:48:54:
6d:20:da:93:41:73:d8:5a:ba:56:25:4a:f1:53:af:
b6:a7:d9:c6:87:74:db:e3:5d:a7:8e:01:8c:ff:b3:
51:1b:29:5c:8c:a0:c4:ed:08:e6:af:fb:3f:24:b6:
37:70:16:52:4b:33:60:07:1e:23:61:c5:e1:0c:5e:
a4:52:6a:43:8d:f6:c7:e4:31:98:82:ea:e0:53:ca:
a8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C7:6F:78:AE:35:D6:FE:7E:C4:30:F1:55:55:E5:1C:2F:8C:81:58
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/bMdveK411v5-xDDxVVXlHC-MgVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.44.16.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:28:28:a1:84:f7:73:8b:74:11:ca:8c:c7:d3:97:ab:b6:c3:
b5:78:bc:97:0b:89:e8:99:7c:ec:01:e0:f1:96:9a:92:a9:26:
b9:08:b1:07:0f:3b:bc:52:54:ab:eb:ae:2b:7c:43:13:45:27:
dd:7f:50:50:fe:3f:de:36:e5:90:c9:d2:76:7b:f4:43:e0:9d:
a0:1c:c6:45:15:a0:02:d7:cf:99:39:2a:32:8b:bb:5d:3b:50:
62:9f:58:8c:de:c3:8e:ab:ed:9a:08:24:30:ef:92:e2:4e:87:
a6:c9:0e:55:37:e2:6b:79:9d:46:0d:1b:04:87:b3:42:07:fc:
5b:a2:7e:94:a3:f2:ba:9c:59:45:88:d7:21:4a:45:b2:28:1c:
51:6b:6f:ad:f6:6e:96:76:e5:c5:4c:54:65:7f:df:88:85:49:
2f:70:7a:14:d4:18:32:f2:98:a8:b3:26:bf:18:55:d1:c2:6d:
14:98:c9:df:7c:3a:85:48:63:4e:90:72:ac:d5:86:49:6d:bd:
41:ed:38:af:b6:22:13:49:1d:a3:2a:56:c5:73:3f:8b:ec:5e:
a6:aa:34:4a:71:ef:b3:ed:e7:08:34:d4:b9:b3:22:da:4a:12:
3b:c6:02:8d:f5:69:cc:8d:d7:90:50:32:96:fe:72:a0:9d:f5:
b3:50:b1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:11 2023 by rpki-client on console-fra.rpki-client.org