Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/mkpe-R6iRrCTg6pTyzEKVYNIxJE.roa
File: mkpe-R6iRrCTg6pTyzEKVYNIxJE.roa (raw, json)
Hash identifier: MUDBzxCVKyDwp6fzR9iioZ09BhAvCrApWNENfROsFl0=
Subject key identifier: 9A:4A:5E:F9:1E:A2:46:B0:93:83:AA:53:CB:31:0A:55:83:48:C4:91
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 062AC1E9
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/mkpe-R6iRrCTg6pTyzEKVYNIxJE.roa
Signing time: Tue 29 Mar 2022 10:56:28 +0000
ROA not before: Tue 29 Mar 2022 10:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 94.154.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103465449 (0x62ac1e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Mar 29 10:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a4a5ef91ea246b09383aa53cb310a558348c491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:41:03:1a:59:31:46:fc:f1:c0:f7:50:49:cc:
63:d0:70:18:79:b6:dd:55:8c:f5:6c:97:26:25:cf:
c1:12:ed:27:79:4f:2d:c1:2b:c7:b5:70:a7:89:68:
15:70:19:a2:41:57:91:80:6d:84:f3:40:70:a6:2c:
2f:cc:0f:8b:c7:e6:e7:af:e5:8d:9b:96:b4:00:33:
5c:b2:b7:9c:41:ff:ee:81:df:d0:f5:74:ae:51:0b:
24:a3:1d:df:ea:ac:a4:4c:8c:ef:36:52:64:d0:2f:
72:a8:af:31:17:39:bc:b6:83:31:e3:d2:d1:5a:6e:
5b:97:7e:92:fe:b1:32:13:c9:fd:bc:1f:6f:88:82:
d9:2b:ff:e5:cb:a0:21:da:f4:3d:6f:ad:ac:81:4c:
c4:05:c7:92:fa:3b:a5:6e:1a:8b:01:80:35:ef:0f:
75:37:54:b6:09:66:f6:6f:e2:46:68:5a:fc:e2:96:
79:85:2f:15:5b:50:ff:10:c4:f6:b4:c8:bd:72:dd:
bc:35:11:b5:58:20:8a:38:c9:87:a9:6d:b0:51:07:
b1:2f:8f:d6:53:7f:16:b0:99:2b:49:ab:04:39:ef:
bb:7f:5f:70:91:ab:77:ad:c4:6f:dd:76:ec:b7:3d:
90:67:c2:68:03:07:bf:20:75:67:77:dc:ad:c0:67:
58:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4A:5E:F9:1E:A2:46:B0:93:83:AA:53:CB:31:0A:55:83:48:C4:91
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/mkpe-R6iRrCTg6pTyzEKVYNIxJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:71:00:af:79:74:39:d0:7b:6d:c7:0c:20:5c:21:ab:36:70:
8b:df:89:64:ee:8a:85:fe:46:fa:71:95:c0:e8:fa:ee:a2:09:
55:9f:62:da:3b:e2:a7:e4:3b:41:17:91:c4:e9:5e:26:71:9e:
cf:82:f8:a7:cd:96:e6:96:02:05:6a:6f:3d:41:14:af:e5:06:
d5:3e:66:aa:72:3a:ca:71:75:0a:2e:1d:d9:a8:ae:c9:1e:01:
89:3d:f3:8e:0c:da:eb:b3:70:83:be:89:2f:55:4c:85:77:8e:
88:01:52:91:d5:8b:6f:ad:94:f9:13:f9:5b:ae:76:46:69:ed:
e4:18:a9:db:5b:85:37:5c:52:49:62:be:c9:c7:db:5a:c0:61:
0e:4e:fe:20:82:4b:3b:9b:51:96:fa:69:b1:e2:59:8c:3d:ae:
56:fb:43:1b:29:00:ed:f6:81:eb:19:fd:6b:09:00:39:bb:18:
e6:24:6d:79:25:12:fd:69:6f:4a:76:83:93:dd:d3:53:1f:ca:
98:c2:74:f4:53:6c:09:fb:67:ea:6c:d2:32:5d:ed:d1:77:c2:
63:8b:3f:f8:47:56:ad:d0:cc:70:a0:bd:cc:6e:ec:47:ea:12:
0c:b3:7b:ca:9c:2e:78:62:74:aa:db:d8:76:bc:f1:5d:cf:37:
ce:7e:0c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:10 2023 by rpki-client on console-fra.rpki-client.org