Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/6728ad-9070-4b11-aa98-c2e5fdb925f3/1/mtpSSdoop3hPOZAix3xBUzq9kyA.roa
File: mtpSSdoop3hPOZAix3xBUzq9kyA.roa (raw, json)
Hash identifier: /OHIwQP0EryD2+r5L7ZPHhKmO7XogTyn9WG/vfAKGYQ=
Subject key identifier: 9A:DA:52:49:DA:28:A7:78:4F:39:90:22:C7:7C:41:53:3A:BD:93:20
Certificate issuer: /CN=453639642f9d2b4672343af8d82fc75547cd9851
Certificate serial: 016988
Authority key identifier: 45:36:39:64:2F:9D:2B:46:72:34:3A:F8:D8:2F:C7:55:47:CD:98:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RTY5ZC-dK0ZyNDr42C_HVUfNmFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/6728ad-9070-4b11-aa98-c2e5fdb925f3/1/mtpSSdoop3hPOZAix3xBUzq9kyA.roa
Signing time: Tue 08 Feb 2022 15:50:21 +0000
ROA not before: Tue 08 Feb 2022 15:50:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43872
IP address blocks: 217.198.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92552 (0x16988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453639642f9d2b4672343af8d82fc75547cd9851
Validity
Not Before: Feb 8 15:50:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ada5249da28a7784f399022c77c41533abd9320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:23:c2:ab:b3:bf:3b:29:6b:a6:0e:5b:11:05:
c3:a6:e9:9e:d3:eb:4a:ef:75:4b:20:a1:e4:9e:d8:
21:a5:d3:3e:36:eb:d6:d9:bd:d7:16:d5:98:0c:a7:
2a:6a:d4:14:8b:32:f9:67:71:08:06:e6:8d:fe:16:
cb:6e:70:f5:f8:d3:0a:6f:db:de:bc:b0:ab:cb:69:
3a:1c:19:04:ec:c8:6b:a6:65:15:b7:83:03:88:3e:
92:ad:19:54:37:be:7b:ce:d7:25:86:b7:5c:af:be:
fd:ba:f8:c6:70:36:cf:7f:77:d4:d5:92:87:63:2e:
a0:59:53:48:b2:f1:91:8b:c3:aa:b0:2f:32:31:ff:
c3:b5:28:e5:a4:b3:52:2a:e9:99:55:41:a1:36:27:
b4:62:74:9a:24:1f:a6:4e:67:5f:46:d1:07:5a:cc:
9b:6a:b5:a4:39:da:bc:3b:8c:0b:93:22:a9:2b:d3:
2e:c9:e2:b0:69:e5:9e:a3:1e:f0:12:41:b7:df:28:
f6:23:9e:01:8a:f5:ec:2c:41:48:c9:5a:dd:55:d2:
bb:13:9b:11:5f:5f:08:e5:82:e2:67:48:ab:46:2a:
b9:ea:bb:47:11:b4:b0:b4:fc:b2:09:52:e2:9d:fa:
8c:3b:e2:52:c3:e4:15:6b:53:88:da:49:bf:9f:86:
10:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:DA:52:49:DA:28:A7:78:4F:39:90:22:C7:7C:41:53:3A:BD:93:20
X509v3 Authority Key Identifier:
keyid:45:36:39:64:2F:9D:2B:46:72:34:3A:F8:D8:2F:C7:55:47:CD:98:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RTY5ZC-dK0ZyNDr42C_HVUfNmFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6728ad-9070-4b11-aa98-c2e5fdb925f3/1/mtpSSdoop3hPOZAix3xBUzq9kyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6728ad-9070-4b11-aa98-c2e5fdb925f3/1/RTY5ZC-dK0ZyNDr42C_HVUfNmFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.183.0/24
Signature Algorithm: sha256WithRSAEncryption
19:74:cd:84:24:d8:c9:94:0b:e6:72:bd:e0:fc:5e:86:21:00:
cd:0d:ac:cd:ea:f6:7b:45:72:b0:a1:40:6f:e2:86:6e:f9:9a:
bd:db:53:6e:dd:d0:dd:8a:90:a1:20:a4:3e:db:19:fc:a0:aa:
bc:26:94:bb:cc:0f:65:64:ba:05:35:f3:00:af:2d:a9:c7:4c:
a4:c7:f5:ac:52:ec:cf:2c:54:a3:30:60:d4:fb:66:41:c8:95:
13:66:a1:f3:22:20:67:26:e1:02:a7:e5:67:ab:b5:d5:75:cb:
f9:50:ef:22:05:b7:ae:89:f2:7b:40:57:24:a1:fd:67:86:91:
34:17:2c:76:58:77:6c:e7:7c:16:54:68:d9:ac:c3:01:bb:fa:
c9:bd:3a:60:66:65:6f:ae:e9:c6:82:a0:88:14:9d:76:6c:bd:
28:fb:bb:2e:bb:d1:ba:4c:f0:90:4a:21:08:71:95:38:52:71:
04:a8:35:22:b8:2c:96:f4:a4:8c:94:82:25:2b:6a:12:68:09:
b7:1a:d1:de:62:4a:29:34:b2:d1:db:91:8a:4d:a6:d6:e8:62:
63:e5:58:50:87:c9:58:bd:83:2d:c2:42:bb:86:99:5b:ff:10:
a8:20:76:d4:06:81:86:85:a3:2b:2c:69:f2:32:46:33:62:99:
74:5e:04:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-ams.rpki-client.org