Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/46bece-502f-4f0d-b724-1097da9ddf27/1/mr_cGQYms9ENvpTxcbRbihkoLBM.roa
File: mr_cGQYms9ENvpTxcbRbihkoLBM.roa (raw, json)
Hash identifier: w7YFHNG/14jLKXz4BSDlWQfOeOHb9hLhAbOAfb/+T8g=
Subject key identifier: 9A:BF:DC:19:06:26:B3:D1:0D:BE:94:F1:71:B4:5B:8A:19:28:2C:13
Certificate issuer: /CN=8afbc64d593fc073c693143566310295de0a8337
Certificate serial: 040BD806
Authority key identifier: 8A:FB:C6:4D:59:3F:C0:73:C6:93:14:35:66:31:02:95:DE:0A:83:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivvGTVk_wHPGkxQ1ZjECld4Kgzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/46bece-502f-4f0d-b724-1097da9ddf27/1/mr_cGQYms9ENvpTxcbRbihkoLBM.roa
Signing time: Sat 01 Jan 2022 16:02:07 +0000
ROA not before: Sat 01 Jan 2022 16:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202288
IP address blocks: 91.244.245.0/24 maxlen: 24
2001:678:728::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67885062 (0x40bd806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8afbc64d593fc073c693143566310295de0a8337
Validity
Not Before: Jan 1 16:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9abfdc190626b3d10dbe94f171b45b8a19282c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:80:8a:d8:5d:27:35:99:58:32:89:38:e1:24:
29:a1:2f:3f:f0:89:fc:41:dd:52:e7:ac:3a:6e:c9:
f1:2a:d3:dc:c4:f5:59:c0:0a:81:52:53:08:f7:13:
13:63:e2:a3:53:41:9f:30:4c:60:24:a9:f1:86:b7:
17:0b:cf:44:7e:4a:fb:d7:02:d6:f5:07:0d:87:80:
0f:1a:e8:67:92:0f:e2:9c:3b:7c:c8:ba:f9:26:22:
c7:c8:57:67:3d:b8:d6:bb:58:b5:85:e4:11:3d:04:
fd:68:a8:55:1a:5a:cf:89:dd:e3:c8:0d:b8:27:39:
91:27:2b:f4:59:6c:bb:87:88:0f:7b:aa:00:33:9f:
bd:21:53:98:a8:ea:09:41:51:ad:d4:0b:ff:ca:07:
e7:ee:02:ae:1a:0a:cf:f5:72:7f:d9:bf:c1:d3:c2:
d0:c6:f4:9b:e2:6b:25:e7:b7:23:d8:37:8a:c1:74:
3c:51:c4:76:7a:e0:aa:ff:c9:0e:c5:35:5e:c8:9a:
6d:59:c6:2f:11:de:56:34:23:de:a7:59:04:1f:76:
01:63:dd:e3:88:36:df:05:b6:14:40:48:43:8b:4e:
99:25:08:02:dc:f4:26:63:f3:82:eb:28:25:0e:c9:
7c:4a:c7:bd:7b:73:86:56:2e:f1:f0:08:39:fd:31:
39:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BF:DC:19:06:26:B3:D1:0D:BE:94:F1:71:B4:5B:8A:19:28:2C:13
X509v3 Authority Key Identifier:
keyid:8A:FB:C6:4D:59:3F:C0:73:C6:93:14:35:66:31:02:95:DE:0A:83:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivvGTVk_wHPGkxQ1ZjECld4Kgzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/46bece-502f-4f0d-b724-1097da9ddf27/1/mr_cGQYms9ENvpTxcbRbihkoLBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/46bece-502f-4f0d-b724-1097da9ddf27/1/ivvGTVk_wHPGkxQ1ZjECld4Kgzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.245.0/24
IPv6:
2001:678:728::/48
Signature Algorithm: sha256WithRSAEncryption
5a:81:eb:3e:a3:03:f0:c0:e6:0b:49:c8:62:6d:37:37:ab:cd:
ce:76:37:a7:bc:68:13:48:1d:db:21:5d:61:4f:b4:2f:de:d6:
97:3e:33:2b:2a:87:e8:f1:68:ef:8c:e4:13:e2:c3:67:40:66:
a6:9a:b1:ac:38:ef:0e:8d:7a:0d:ea:ed:24:92:4a:99:56:1c:
8e:18:78:f4:a7:44:2e:98:bf:ba:52:39:97:9b:de:49:cd:26:
2f:c1:66:f3:40:ba:92:60:f6:dd:14:5e:f5:0a:f0:d2:33:c3:
0b:f8:30:5e:0f:d7:50:d9:b1:55:11:71:dc:4a:9d:d2:8d:9d:
e0:db:9e:6d:cd:96:e6:0f:20:f2:25:ec:1f:57:89:ef:81:52:
a1:12:f1:84:87:1a:6b:11:90:6f:a9:3b:70:b7:f9:5b:b8:42:
4a:8e:ce:1c:5f:b0:e0:5e:90:74:71:5a:6a:d7:e1:e4:80:51:
ef:b2:8d:f4:0c:6f:32:39:32:e9:aa:f8:d6:6d:1b:71:08:d7:
06:bd:2b:0b:c4:4d:2d:d1:03:84:1c:08:83:d4:0e:df:61:09:
20:54:2f:80:7a:49:ad:ed:ec:6e:bd:a4:22:40:a6:fb:a6:98:
df:e7:d0:61:1c:08:83:85:ae:b6:4b:89:6f:4b:95:88:e2:9a:
99:0b:1a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:52 2024 by rpki-client on console-ams.rpki-client.org