Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/mXLG6NyQl_UYApalBQ4XpRpVONU.roa
File: mXLG6NyQl_UYApalBQ4XpRpVONU.roa (raw, json)
Hash identifier: VTUlgQ4r5nHGC3OP64plvKXh54kt3z6+uiBTRHM5mVU=
Subject key identifier: 99:72:C6:E8:DC:90:97:F5:18:02:96:A5:05:0E:17:A5:1A:55:38:D5
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B72F625
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/mXLG6NyQl_UYApalBQ4XpRpVONU.roa
Signing time: Thu 02 Jun 2022 15:41:48 +0000
ROA not before: Thu 02 Jun 2022 15:41:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20454
IP address blocks: 85.121.14.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460518949 (0x1b72f625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jun 2 15:41:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9972c6e8dc9097f5180296a5050e17a51a5538d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2c:ba:b0:a4:a7:43:10:d0:9b:bc:8a:ba:fa:
72:a4:2b:1a:21:e9:b2:c5:fe:67:5f:3f:ca:c6:0e:
d4:fd:bc:4c:95:00:fc:52:e4:b2:1b:ad:d1:19:90:
79:77:c6:13:e7:fa:91:91:f5:18:61:6f:de:a0:fa:
bb:9b:72:f3:42:dd:6c:3a:a5:3f:e6:c1:41:59:1b:
78:11:bb:97:d0:05:04:5d:ff:fe:98:88:55:f8:ce:
29:b8:cd:c2:bf:72:02:21:83:0a:72:5a:5d:3e:8a:
3c:09:f9:87:6d:83:1c:da:ae:2f:24:cf:14:1d:8f:
3f:bc:f2:2c:ea:e6:48:e9:7e:08:a3:d5:48:3d:34:
be:ac:e1:6f:6e:c9:e1:37:08:3b:f8:82:00:13:54:
d0:3d:74:ee:96:10:2b:e4:a1:38:0f:65:b8:2d:b7:
b5:3c:e3:16:64:4f:34:9d:e7:e3:94:c7:b6:c3:48:
11:5a:47:32:26:9d:d5:d4:9c:c0:db:a4:e5:f3:be:
2c:57:a7:49:e4:54:0b:f7:de:15:c6:a6:de:6d:4b:
4e:96:05:86:89:f7:a9:66:42:2d:9a:6e:c0:70:18:
8b:30:c6:56:3d:c3:1e:64:31:be:26:e7:35:f3:aa:
ff:4a:49:ef:1b:c3:13:7b:94:a2:99:80:0a:ce:c5:
41:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:72:C6:E8:DC:90:97:F5:18:02:96:A5:05:0E:17:A5:1A:55:38:D5
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/mXLG6NyQl_UYApalBQ4XpRpVONU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.121.14.0/23
Signature Algorithm: sha256WithRSAEncryption
54:49:cd:43:95:36:e2:ff:99:86:a0:98:58:a8:ff:1b:b0:6d:
23:e4:00:98:82:cb:06:6c:7a:41:c6:d8:80:85:bd:fa:e4:e6:
99:5a:9c:54:ab:d7:06:ae:f8:e6:8e:b2:7b:ab:6f:73:35:04:
39:cf:ec:b7:8a:fd:c3:89:9e:af:76:89:64:57:cc:8f:c3:e4:
17:9f:67:45:82:dc:14:b8:f4:f5:73:5c:41:62:58:e2:c6:04:
5e:4c:0f:aa:1f:62:3e:74:ea:1f:e6:7a:c0:85:21:c7:f3:92:
31:5d:ef:fa:a4:62:9c:7a:2c:12:16:bf:8e:3f:d2:b1:2e:99:
3c:65:29:09:0f:ad:0d:7e:80:0d:ea:af:b0:24:eb:86:47:77:
ed:62:df:a6:f1:ed:6c:3f:fc:17:70:b4:1d:86:f8:f7:8b:60:
c1:1b:f8:f1:76:88:9e:9b:e7:8d:36:9d:5a:b5:cf:08:12:98:
31:04:7d:7c:1b:88:32:2c:53:6f:d8:91:15:0e:3f:20:a3:4d:
23:89:27:38:9c:fc:86:db:4b:0d:47:16:09:c7:c1:1f:dc:8e:
c6:af:44:37:05:35:0a:2f:25:70:75:53:d9:8e:80:2e:6c:dc:
63:af:c5:5c:f1:a7:a5:32:a3:c7:bb:e4:89:d0:b6:e9:2c:01:
1d:2a:ee:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org