Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/mXsY2bQ8_MKZ_1n4SGl_FJ2MAzM.roa
File: mXsY2bQ8_MKZ_1n4SGl_FJ2MAzM.roa (raw, json)
Hash identifier: x4wxNfoffpS4cmRhjkkLpTlXLi5WhsCCVBWQzib2Wf4=
Subject key identifier: 99:7B:18:D9:B4:3C:FC:C2:99:FF:59:F8:48:69:7F:14:9D:8C:03:33
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38975795
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/mXsY2bQ8_MKZ_1n4SGl_FJ2MAzM.roa
Signing time: Sat 01 Jan 2022 05:54:29 +0000
ROA not before: Sat 01 Jan 2022 05:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208030
IP address blocks: 46.19.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949442453 (0x38975795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=997b18d9b43cfcc299ff59f848697f149d8c0333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:68:9c:ae:27:40:11:e8:ba:cb:00:e2:45:20:
19:3a:9e:b2:1a:a1:83:47:32:29:4d:3f:7a:ea:bd:
b6:1a:2f:b7:f2:ae:77:cc:e8:d9:1e:c3:49:1d:5f:
20:1d:10:4a:02:d0:35:ef:4f:21:dd:e4:c5:78:75:
e6:aa:de:48:52:c9:ad:2a:39:e7:ef:8a:89:7d:6c:
1f:1f:e5:f4:8f:d7:54:dc:92:d0:1e:42:5d:17:c9:
ed:b6:bb:49:8a:d5:b1:0c:98:db:17:07:81:b5:39:
0c:c2:5d:e5:a2:e9:41:f7:2b:0b:2e:73:01:a2:34:
33:15:b5:43:ff:4e:dd:c4:53:3f:3f:04:af:b4:50:
e1:f5:0e:cb:47:a1:9d:35:0a:79:44:1b:41:b0:f5:
8a:5a:6b:6c:d8:ad:7b:b5:17:34:78:ae:6f:91:73:
a3:75:39:80:d6:84:8f:b2:e4:4c:8f:ab:58:8a:28:
25:a1:d1:0e:b2:14:8a:78:30:fa:36:b0:5c:6e:50:
a3:12:44:bf:bb:9e:a7:34:37:25:3b:0d:b9:21:e7:
ad:f1:02:d4:8c:b5:46:01:7b:da:51:51:ce:49:54:
35:5b:bc:99:41:ca:30:d1:13:b8:b5:0b:01:cf:09:
7e:00:97:ef:92:b9:cc:f4:4e:d0:a6:9d:56:e9:77:
97:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:7B:18:D9:B4:3C:FC:C2:99:FF:59:F8:48:69:7F:14:9D:8C:03:33
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/mXsY2bQ8_MKZ_1n4SGl_FJ2MAzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.200.0/24
Signature Algorithm: sha256WithRSAEncryption
17:1a:73:b1:0a:89:8b:79:0a:f1:28:32:80:b6:98:d5:5b:f3:
8f:75:37:08:19:57:ac:05:fc:b1:ad:06:5e:22:b4:db:ac:d0:
35:9c:53:eb:a4:ae:96:dd:65:14:1e:07:d8:21:20:c1:1d:33:
4d:cb:84:7a:2c:90:8d:de:06:2f:6f:0f:ae:9f:62:8d:f8:44:
10:78:1d:d8:25:d2:52:27:c6:3f:83:ae:38:3b:d5:19:83:80:
de:44:89:d6:48:10:a3:c7:43:64:79:62:cc:9b:8b:77:8e:7e:
1b:80:e1:a4:1c:92:be:dd:e3:57:ab:3d:e3:b9:5c:ea:32:bd:
eb:ae:a3:23:53:e3:03:68:0c:da:92:43:81:6c:15:97:f6:43:
e4:04:8e:d1:3b:84:cf:41:e7:58:25:08:05:0a:db:8e:a4:f6:
f7:65:42:f7:99:3f:40:a9:e5:6a:37:d4:27:94:45:c0:b5:58:
4b:3c:e6:55:05:c8:f6:cc:e7:a2:5b:20:cd:d8:24:da:c5:7f:
34:aa:7c:b5:a2:98:8d:2e:17:a2:94:6c:e0:97:c3:b2:0e:d2:
02:01:22:7b:11:5f:f4:b4:83:86:b4:d0:d1:35:10:7d:b8:89:
34:f0:b7:88:ec:9d:04:da:b6:63:23:ab:af:db:c2:2a:e9:c4:
5d:65:67:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org