Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/mFkmIiMDNbBAfGNYuaZfZ82gXV8.roa
File: mFkmIiMDNbBAfGNYuaZfZ82gXV8.roa (raw, json)
Hash identifier: 4fbfCZV9yP98tUzcfpb/VnaISbOfLzzokY5nm8eTQbw=
Subject key identifier: 98:59:26:22:23:03:35:B0:40:7C:63:58:B9:A6:5F:67:CD:A0:5D:5F
Certificate issuer: /CN=fb43195dcec60f59c2f89c8af902025d173bba6a
Certificate serial: 3415B1
Authority key identifier: FB:43:19:5D:CE:C6:0F:59:C2:F8:9C:8A:F9:02:02:5D:17:3B:BA:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-0MZXc7GD1nC-JyK-QICXRc7umo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/mFkmIiMDNbBAfGNYuaZfZ82gXV8.roa
Signing time: Thu 17 Feb 2022 07:16:04 +0000
ROA not before: Thu 17 Feb 2022 07:16:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48266
IP address blocks: 62.68.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3413425 (0x3415b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb43195dcec60f59c2f89c8af902025d173bba6a
Validity
Not Before: Feb 17 07:16:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98592622230335b0407c6358b9a65f67cda05d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e0:bc:3f:75:8d:c7:e5:1b:77:13:57:1d:75:
29:96:9a:dc:15:b8:21:6f:6e:96:58:66:50:7b:ae:
3f:0c:3d:25:83:fd:63:f6:1b:8f:76:f4:62:66:43:
34:c7:53:dd:a0:da:62:7d:00:1b:b1:60:44:4c:c0:
d1:b5:b8:aa:75:9c:97:06:f8:ce:69:35:1c:12:75:
25:a4:c0:05:86:92:aa:f4:9f:eb:93:23:68:22:32:
ec:46:2e:0e:3b:44:02:83:c1:aa:fc:8b:11:e0:a8:
f7:17:cb:5d:4d:b5:f6:94:11:20:14:9e:46:20:c0:
11:04:aa:fa:f9:5e:49:54:f5:80:4a:5e:31:fc:3f:
00:9f:80:0e:56:0e:e0:7b:50:26:b3:d0:49:87:cb:
6d:af:5b:b1:e3:7d:5d:a6:3a:cc:49:c4:b3:23:ed:
ac:6c:b3:a5:99:33:90:d5:08:df:0c:ee:59:d4:43:
ab:ec:3d:51:a8:bb:c3:58:0b:a5:9c:22:9d:84:4d:
1a:a2:bb:e1:7f:12:63:c0:c8:9a:e9:a8:d7:2a:1a:
cc:f8:6a:ff:0e:79:b3:3a:25:cf:df:b7:19:54:2e:
80:02:39:0a:29:ec:13:e1:03:bd:a0:9f:eb:c5:3e:
b5:7c:96:2d:f5:f1:78:ef:09:a4:8b:25:12:ac:de:
c2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:59:26:22:23:03:35:B0:40:7C:63:58:B9:A6:5F:67:CD:A0:5D:5F
X509v3 Authority Key Identifier:
keyid:FB:43:19:5D:CE:C6:0F:59:C2:F8:9C:8A:F9:02:02:5D:17:3B:BA:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-0MZXc7GD1nC-JyK-QICXRc7umo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/mFkmIiMDNbBAfGNYuaZfZ82gXV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/1-0MZXc7GD1nC-JyK-QICXRc7umo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.80.0/24
Signature Algorithm: sha256WithRSAEncryption
98:4e:04:d7:17:56:25:09:84:4e:95:c1:9b:92:77:4c:69:24:
b3:f0:24:9b:d4:3d:fc:2a:49:66:55:05:09:e7:12:7e:c9:c9:
36:54:93:a1:7d:26:4b:25:04:b7:8e:63:ea:8f:78:62:1e:bf:
75:1b:9f:fa:38:57:50:a0:a9:1a:aa:68:1f:88:d7:bf:99:c3:
b5:13:24:f1:fc:2a:76:bc:e9:c0:85:b3:be:72:e5:be:13:83:
a5:f1:26:60:a2:fb:8a:93:fa:8c:0e:51:bf:6c:be:ab:6b:1e:
75:3f:54:6c:fd:82:f4:ed:b0:80:e4:46:ca:de:24:03:96:73:
1a:0f:da:ff:12:22:56:61:b3:19:fc:63:e9:d7:f0:7f:c7:41:
cf:91:ce:31:76:fb:08:ff:01:b4:a4:92:89:de:62:67:ca:36:
31:01:5c:0c:4d:c0:a8:71:10:dc:4e:06:98:19:25:76:1a:0c:
0d:21:e9:28:17:da:b8:17:c8:52:30:00:c1:26:13:5e:95:71:
5e:e8:57:a0:19:33:37:0b:54:fe:0c:41:ed:86:b9:39:0b:e3:
60:ee:02:75:da:3f:ef:ba:04:41:57:33:84:3c:10:2f:5c:78:
5b:6e:ca:7b:a6:82:c4:8d:7e:7d:c9:a5:62:09:4f:3b:66:fb:
06:4a:1a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org