Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/M0HjzZlT7q1CB-LLHpzMO1nLLwE.roa
File: M0HjzZlT7q1CB-LLHpzMO1nLLwE.roa (raw, json)
Hash identifier: 9U3XxPkJqxgyaQfdjUzLotyymLI4i11H+LgxQXnYRTI=
Subject key identifier: 33:41:E3:CD:99:53:EE:AD:42:07:E2:CB:1E:9C:CC:3B:59:CB:2F:01
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 0182FC4BCEED37CC7CFA25F552513479138E
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/M0HjzZlT7q1CB-LLHpzMO1nLLwE.roa
Signing time: Fri 02 Sep 2022 03:43:22 +0000
ROA not before: Fri 02 Sep 2022 03:43:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197890
IP address blocks: 80.91.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fc:4b:ce:ed:37:cc:7c:fa:25:f5:52:51:34:79:13:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Sep 2 03:43:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3341e3cd9953eead4207e2cb1e9ccc3b59cb2f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:e5:37:30:84:2e:d2:ee:ca:44:2a:69:3a:
5c:bd:60:55:04:71:63:ea:3e:ef:52:50:34:24:dd:
89:28:1c:24:ca:88:91:0c:26:fd:5e:76:15:38:9f:
c0:97:bf:9c:4d:ef:54:d8:22:c0:7f:2a:04:94:a1:
4d:0c:9e:58:ff:b5:8f:d8:0f:bc:0f:bf:94:78:6a:
ee:9c:4a:f7:e7:4a:61:6e:65:a8:cf:ad:a3:1c:9e:
de:e6:a4:ad:ef:0e:ba:26:ae:7c:4b:8b:6e:d9:bb:
58:e1:fe:4f:f2:dd:ca:73:13:7a:7e:f9:94:de:17:
a7:75:0d:d7:39:57:14:e9:b3:da:37:ec:fc:c3:d2:
60:8c:fa:0a:18:8d:9b:8b:5c:42:99:0a:7d:48:45:
8f:02:03:0a:97:5b:b1:ec:9b:53:ef:4a:ef:c3:df:
07:da:b7:42:d8:d4:52:96:c9:b3:b1:18:1a:28:79:
6b:62:0c:59:87:75:91:0f:73:bf:11:8e:04:ca:98:
42:80:1b:5a:f4:db:19:70:b4:da:4b:d4:68:c2:6f:
58:b7:28:cf:67:2a:96:c9:94:f8:fb:f5:5a:40:df:
3d:f6:d5:63:c6:40:d7:fb:24:09:12:a2:a6:da:d7:
d6:12:11:cf:5f:5f:10:5a:62:09:0d:ec:e1:41:70:
62:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:41:E3:CD:99:53:EE:AD:42:07:E2:CB:1E:9C:CC:3B:59:CB:2F:01
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/M0HjzZlT7q1CB-LLHpzMO1nLLwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.218.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3b:22:2b:1f:77:34:e8:93:4f:60:b0:25:48:d9:75:e8:8a:
8d:ad:84:f4:06:da:b6:42:69:6a:b4:7c:60:76:91:1b:eb:ed:
bb:f1:29:79:18:92:78:19:3c:7f:11:a2:70:71:d9:b7:5b:0a:
59:19:fd:bc:b0:64:77:f3:fb:91:b7:7f:99:e8:cb:e0:0d:94:
8a:d2:8e:07:4d:da:fd:6b:f7:41:3b:a9:71:8c:6c:33:b7:d9:
6c:3e:6d:e3:c9:74:af:84:a9:6f:18:73:4c:c0:35:49:ef:30:
ba:6c:27:8b:c5:c8:c2:21:8e:c0:dc:b4:86:27:c5:df:9a:1d:
bf:9c:a6:16:99:91:b9:5f:7c:32:21:cd:92:3d:f9:af:de:03:
82:dd:7a:9a:0e:23:dd:c8:1e:5d:e0:4f:ee:2a:1e:6b:1f:52:
3f:80:1c:ff:d1:46:a5:0d:51:a9:f6:a1:53:e4:70:72:8f:d6:
24:8b:f3:e5:cc:b7:97:a6:a8:12:bb:5f:d8:79:52:b2:6c:b9:
fb:8d:2f:73:57:27:c9:93:23:6c:81:d2:2c:ce:f0:e7:4c:f0:
6a:74:49:b6:b1:d3:c4:ad:59:a9:66:69:e4:35:35:62:be:a2:
c0:0b:f3:05:36:0d:b4:5f:95:fc:83:68:6f:25:3d:2b:65:97:
9f:01:1b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org