Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d6dbd8-6466-48d0-a597-3ec447310dfb/1/MX6Zby3mrib-G7Y5zO_ulxa3lOI.roa
File: MX6Zby3mrib-G7Y5zO_ulxa3lOI.roa (raw, json)
Hash identifier: s4R+StMrVahl/NfaXiggyiHG20TeJIKkXY3OI31U0lA=
Subject key identifier: 31:7E:99:6F:2D:E6:AE:26:FE:1B:B6:39:CC:EF:EE:97:16:B7:94:E2
Certificate issuer: /CN=5f82ae9a304ac082c18a2891666f64cee81d5ca8
Certificate serial: 020188
Authority key identifier: 5F:82:AE:9A:30:4A:C0:82:C1:8A:28:91:66:6F:64:CE:E8:1D:5C:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X4KumjBKwILBiiiRZm9kzugdXKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d6dbd8-6466-48d0-a597-3ec447310dfb/1/MX6Zby3mrib-G7Y5zO_ulxa3lOI.roa
Signing time: Mon 14 Mar 2022 20:30:50 +0000
ROA not before: Mon 14 Mar 2022 20:30:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35773
IP address blocks: 195.214.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131464 (0x20188)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f82ae9a304ac082c18a2891666f64cee81d5ca8
Validity
Not Before: Mar 14 20:30:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=317e996f2de6ae26fe1bb639ccefee9716b794e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1d:e8:1c:ea:de:e7:60:b0:a7:12:0d:ad:02:
e0:97:9f:42:98:49:60:41:05:e1:68:5b:e3:1e:ef:
87:b6:d9:1b:5e:10:b2:dc:af:1c:b3:f6:6b:84:a4:
a5:e2:ca:44:8e:97:85:cf:bc:20:59:a0:62:7c:60:
6e:92:e1:36:cf:bd:3d:d6:c8:64:d0:2c:7b:fa:ee:
50:aa:78:d8:2d:92:c6:bb:cb:45:cd:76:20:15:e0:
33:ba:d0:45:1c:08:ee:a0:10:89:f5:c0:de:32:ef:
4e:b5:04:0a:44:23:68:9e:d8:dc:0a:31:6c:69:03:
82:b1:bc:28:26:db:22:28:27:e2:86:3d:58:17:ff:
5b:79:93:62:2b:ce:a9:25:6b:65:83:3e:c2:f7:23:
58:3b:a0:68:03:69:fd:65:f2:41:72:ae:19:42:7b:
cc:2b:5e:a6:cc:d6:9a:82:90:4e:b3:da:76:6c:b4:
ff:dd:35:a9:a8:84:e0:a9:59:61:51:de:ec:4c:64:
cd:07:75:17:60:bd:47:65:8f:45:d1:7b:94:f0:fb:
c7:f4:46:a2:6c:0f:4b:eb:6c:be:45:8c:ae:d6:53:
e0:00:d5:10:33:e5:d1:49:77:36:77:28:6d:4d:c0:
58:f5:4a:71:21:41:43:b8:02:f3:e3:60:71:af:97:
8c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7E:99:6F:2D:E6:AE:26:FE:1B:B6:39:CC:EF:EE:97:16:B7:94:E2
X509v3 Authority Key Identifier:
keyid:5F:82:AE:9A:30:4A:C0:82:C1:8A:28:91:66:6F:64:CE:E8:1D:5C:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X4KumjBKwILBiiiRZm9kzugdXKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d6dbd8-6466-48d0-a597-3ec447310dfb/1/MX6Zby3mrib-G7Y5zO_ulxa3lOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d6dbd8-6466-48d0-a597-3ec447310dfb/1/X4KumjBKwILBiiiRZm9kzugdXKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.248.0/21
Signature Algorithm: sha256WithRSAEncryption
20:54:64:ed:f6:5e:04:f2:51:ae:f5:5d:24:d6:99:31:3c:45:
1d:06:41:1c:f3:f0:ef:f3:6b:e9:38:bd:5a:a0:8d:08:82:3b:
52:f4:72:ec:2c:d9:41:93:6f:a4:90:79:99:f0:50:0e:fa:0e:
10:99:8e:d5:c6:7f:c1:8c:53:21:af:f7:18:6d:f9:46:c7:62:
22:b6:84:1a:7d:64:3e:7d:8b:67:c5:2e:c4:dd:74:83:f6:be:
58:ca:39:2b:bf:03:55:44:32:15:7b:4d:7d:a0:6f:1d:aa:e8:
26:d2:b8:75:a1:66:84:67:00:61:7e:44:8b:82:0e:b9:1f:34:
09:ba:42:97:4c:22:cc:e2:9b:40:ea:22:8c:30:8b:e9:b2:ae:
a1:43:bf:a2:73:b2:e0:ba:eb:74:81:fb:f1:7b:62:99:37:12:
6c:35:92:c2:9f:1b:c4:69:f0:60:57:52:55:e8:21:8f:9b:31:
74:9f:b5:19:05:9a:32:79:1a:80:9f:9a:06:46:ae:fa:d9:4b:
ea:6a:68:20:34:e6:cf:1f:26:ea:e1:3e:01:c1:11:04:43:28:
d1:38:87:d1:ad:ec:02:71:2f:06:9d:08:85:95:be:0d:68:57:
d4:9e:8d:ba:57:5f:e8:87:4e:c2:6d:83:cb:6e:2d:8c:8c:a5:
f3:36:47:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:21 2024 by rpki-client on console-ams.rpki-client.org