Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/m3M_8o5c2s6wwRVpC83t3J8sEnI.roa
File: m3M_8o5c2s6wwRVpC83t3J8sEnI.roa (raw, json)
Hash identifier: 7YQEVpVRXc3On102F3yq5IjWq490tAMPtki92mwFkTk=
Subject key identifier: 9B:73:3F:F2:8E:5C:DA:CE:B0:C1:15:69:0B:CD:ED:DC:9F:2C:12:72
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1AA3567C
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/m3M_8o5c2s6wwRVpC83t3J8sEnI.roa
Signing time: Tue 19 Apr 2022 15:40:03 +0000
ROA not before: Tue 19 Apr 2022 15:40:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207783
IP address blocks: 85.120.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446912124 (0x1aa3567c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 19 15:40:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b733ff28e5cdaceb0c115690bcdeddc9f2c1272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d6:1f:8d:e0:97:18:54:6b:84:8f:d0:5d:1b:
9f:21:2a:a4:50:02:dd:e9:04:87:0a:3d:e2:02:d5:
d6:b5:f4:1c:44:32:19:88:b2:a0:09:c5:b0:0d:ae:
cf:e9:c7:ab:1b:1b:34:09:8b:18:e9:e4:c6:b9:9b:
1d:d4:08:c4:3b:e2:e2:4a:70:68:83:01:ad:53:6e:
92:38:ef:81:a0:84:7c:ed:cb:d6:fb:c5:4b:b7:ad:
09:1e:59:25:22:3c:62:68:0f:f3:fc:7a:a2:c0:75:
d6:62:52:5a:40:ce:d7:94:7e:3c:b8:e6:45:12:28:
37:61:5f:58:b1:c5:da:c7:6f:44:53:3e:a3:11:6e:
b3:a9:46:95:f9:ab:99:8e:71:54:a0:e4:61:67:3d:
0e:81:b2:9b:f4:2f:63:9a:3a:6e:da:62:c8:aa:ed:
89:9c:c1:d5:28:07:49:db:b2:8b:04:7c:90:03:a7:
1e:84:0c:69:b8:36:e0:1f:eb:71:1e:fe:55:68:72:
eb:83:9e:27:9e:99:6d:3c:d1:70:8d:fb:16:61:2d:
7e:d0:b2:23:dd:5e:97:23:18:46:c4:7f:2e:10:79:
f9:35:28:d4:35:86:26:d5:55:66:0c:03:de:09:e3:
e6:35:b0:6a:64:7b:a9:1e:1e:ad:e1:7b:18:47:c8:
5e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:73:3F:F2:8E:5C:DA:CE:B0:C1:15:69:0B:CD:ED:DC:9F:2C:12:72
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/m3M_8o5c2s6wwRVpC83t3J8sEnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.144.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:e0:6b:4e:31:a8:24:b5:41:06:ca:f8:e0:15:01:f8:2a:9c:
9b:27:3f:bc:de:19:d0:92:1c:96:2a:70:4f:7a:5b:e0:b8:07:
45:bc:58:b7:05:9e:39:c1:4b:7a:f2:6c:33:69:46:1f:76:8a:
49:52:f2:98:4f:15:ec:ae:f7:6f:e4:a8:9f:35:08:af:1a:04:
9c:30:c2:2c:62:8b:95:fa:e2:b8:60:42:8d:a7:c8:08:27:d4:
02:8c:9b:83:8c:76:3c:13:b4:66:5f:36:44:fb:16:29:ad:2a:
ee:ea:1d:62:e1:66:1b:38:3c:26:ba:f8:e3:56:ee:03:cf:e4:
c7:ec:bf:67:39:9f:bc:4d:20:99:c3:00:7c:d6:d7:f7:9b:90:
03:af:12:25:c4:00:3b:08:53:8d:83:33:97:2f:88:28:9e:e5:
34:3d:3b:33:c6:51:7a:7c:31:2c:e3:41:87:e8:9e:a7:b6:7a:
38:b6:87:73:66:3a:a8:d5:cd:1e:27:bf:d1:c5:fe:c0:e0:b3:
4c:31:57:55:4b:9e:72:aa:c7:44:84:98:05:bc:54:5b:58:83:
38:ef:9f:81:89:2f:0a:ac:bd:54:c7:52:c5:12:4c:1f:13:d2:
4d:9c:64:67:a0:a1:ec:e1:30:c0:37:64:07:50:d5:47:66:05:
1c:d6:96:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org