Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/mRl9JAaD_xlntCpmMmbZr82_2BM.roa
File: mRl9JAaD_xlntCpmMmbZr82_2BM.roa (raw, json)
Hash identifier: V58SoNqMUo+DrnpP/ON6t9mJuY5zYuiOw6ZUi6R//BI=
Subject key identifier: 99:19:7D:24:06:83:FF:19:67:B4:2A:66:32:66:D9:AF:CD:BF:D8:13
Certificate issuer: /CN=3bda90ce49ea0eae040d7588b86b22e2af3018ab
Certificate serial: F44990
Authority key identifier: 3B:DA:90:CE:49:EA:0E:AE:04:0D:75:88:B8:6B:22:E2:AF:30:18:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9qQzknqDq4EDXWIuGsi4q8wGKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/mRl9JAaD_xlntCpmMmbZr82_2BM.roa
Signing time: Thu 24 Feb 2022 22:09:28 +0000
ROA not before: Thu 24 Feb 2022 22:09:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 62.3.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16009616 (0xf44990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bda90ce49ea0eae040d7588b86b22e2af3018ab
Validity
Not Before: Feb 24 22:09:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99197d240683ff1967b42a663266d9afcdbfd813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:18:ad:83:a7:c0:da:41:b7:9c:01:02:54:
2c:a7:a4:b8:9b:57:d2:4c:26:3b:b0:35:36:b2:60:
cd:0a:6c:c4:05:4c:ae:0d:14:18:aa:5c:67:95:aa:
65:a1:51:1e:24:df:b9:6a:a1:f5:f1:95:8a:72:8e:
99:b1:d7:68:6b:f8:f1:a1:58:81:f8:5a:e0:77:f9:
cd:20:3e:df:cd:19:6e:c4:1f:8b:d9:40:bc:77:4a:
1e:28:05:2e:a3:a5:85:2e:cf:40:72:a2:71:db:1a:
8a:50:b9:16:33:89:a9:81:ce:d3:68:24:d0:ad:38:
8a:a0:a9:c3:2e:a3:c1:12:8b:00:41:e1:fc:60:e7:
86:75:67:bf:b8:e7:f1:cc:67:f8:12:08:0c:84:68:
17:20:48:c7:04:cc:c8:2a:a7:46:4a:d4:8f:8a:81:
31:39:e4:b1:dc:32:ba:8d:80:81:a3:0d:3e:da:b6:
91:b6:f0:83:1f:61:e0:69:00:35:0d:cb:7b:7d:69:
9a:ea:c2:6c:42:9f:1c:68:6a:e2:1c:d9:6c:1e:6d:
07:9d:ef:8c:e0:77:3e:06:f1:5f:f9:27:b9:e7:44:
74:7f:6f:35:d8:99:19:0a:7c:45:89:53:07:50:61:
01:50:bd:c4:f6:84:ca:06:ce:96:3e:9b:21:5e:7e:
dc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:19:7D:24:06:83:FF:19:67:B4:2A:66:32:66:D9:AF:CD:BF:D8:13
X509v3 Authority Key Identifier:
keyid:3B:DA:90:CE:49:EA:0E:AE:04:0D:75:88:B8:6B:22:E2:AF:30:18:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9qQzknqDq4EDXWIuGsi4q8wGKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/mRl9JAaD_xlntCpmMmbZr82_2BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/O9qQzknqDq4EDXWIuGsi4q8wGKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.3.0/24
Signature Algorithm: sha256WithRSAEncryption
68:43:84:8b:93:0e:34:44:47:72:09:db:17:10:a0:dc:c7:ab:
0e:34:1e:0e:5b:c8:47:03:b2:c0:3f:58:ce:ae:62:53:75:7f:
a6:16:19:04:7b:6c:51:01:be:85:e0:69:af:0d:17:b0:8f:22:
8e:7d:d0:9a:35:d3:4c:6b:aa:ec:de:d5:e8:ea:84:2c:d3:5e:
91:a0:74:11:33:62:8e:7d:1a:4e:04:23:40:a2:b2:91:4b:07:
0d:a0:22:c1:79:94:f5:36:16:11:64:15:00:ce:7b:53:a5:6c:
d5:48:66:d8:e0:49:e1:0d:d1:e6:6b:2c:51:66:ca:c2:84:cb:
d1:87:34:9c:ed:d1:ce:eb:78:36:1c:c8:a9:9e:39:ca:62:ef:
6a:83:3f:c5:63:c9:17:a9:f3:64:b6:41:99:2d:14:90:6e:cc:
51:9d:ce:d8:26:6a:ee:e8:43:98:e3:9b:46:3a:42:d7:b2:7f:
e8:e4:cf:b8:28:67:3b:76:6e:45:ff:ef:ef:f0:ea:45:9f:1f:
c1:fa:e2:73:8a:23:1d:5b:eb:c5:55:68:8d:7c:17:52:d3:37:
85:c8:c1:db:5e:7a:9b:b8:24:5f:6b:f2:eb:23:dc:0e:0a:de:
5a:8e:9c:fc:1e:8d:9a:95:d9:8b:a1:ff:7e:3c:27:0a:7d:d5:
73:b4:7e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org