Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/MO9AYosHiE1L2aH7NRfg4-7zup4.roa
File: MO9AYosHiE1L2aH7NRfg4-7zup4.roa (raw, json)
Hash identifier: etbpUOTIx8sIwSI+AiadbtZWy5G6VE0DwolyJhwuFCY=
Subject key identifier: 30:EF:40:62:8B:07:88:4D:4B:D9:A1:FB:35:17:E0:E3:EE:F3:BA:9E
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C630D95
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/MO9AYosHiE1L2aH7NRfg4-7zup4.roa
Signing time: Fri 04 Mar 2022 08:26:05 +0000
ROA not before: Fri 04 Mar 2022 08:26:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 194.163.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207818133 (0xc630d95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 4 08:26:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30ef40628b07884d4bd9a1fb3517e0e3eef3ba9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:93:5e:86:70:ce:70:cd:e7:89:96:fb:6e:cf:
4f:70:a8:af:58:cd:81:39:40:90:94:51:3e:47:10:
bf:f5:0a:e7:ab:00:74:bc:90:14:41:34:db:67:b7:
93:e8:21:6f:a7:56:52:6d:17:2c:83:00:c0:1f:7b:
d0:f5:a4:5b:2e:49:c4:43:36:10:d7:74:7f:9f:71:
90:c8:5b:b7:b6:9c:83:e9:13:ef:a4:bd:34:8e:8c:
f6:9d:84:6a:9e:06:6e:58:ce:52:ef:70:19:2e:36:
b7:17:77:8a:1a:4f:71:39:85:e8:d1:e0:46:05:53:
6f:d2:7d:4b:13:11:bf:59:a4:fa:00:d1:10:86:7d:
37:41:9c:54:48:eb:0e:69:71:22:e1:6a:94:aa:72:
05:d0:f7:f2:16:64:55:96:a0:2f:d3:6e:a0:0b:f5:
0d:5b:04:dd:a8:35:72:87:11:8f:0e:d7:1f:c2:fa:
ef:f6:77:d2:80:37:ad:06:93:4a:97:ad:45:a7:76:
fc:9c:47:b4:eb:39:f7:c0:67:ad:4b:4e:0a:2f:8a:
f4:0e:c7:5d:d7:39:fc:af:60:85:69:f0:0f:ba:92:
97:9e:96:1b:64:d8:44:03:84:dd:e2:17:15:97:54:
70:c0:46:81:60:e5:55:8c:a8:2f:54:3b:f2:10:ba:
4e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EF:40:62:8B:07:88:4D:4B:D9:A1:FB:35:17:E0:E3:EE:F3:BA:9E
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/MO9AYosHiE1L2aH7NRfg4-7zup4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.91.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:eb:f0:1d:5b:e8:01:1c:a8:02:76:f6:2b:08:fd:d5:db:55:
56:88:43:ce:cf:b9:92:97:93:da:ab:ff:98:4a:11:0d:6a:17:
22:01:27:5c:76:a3:3d:64:84:c1:29:87:75:b1:ae:80:ef:0f:
f7:32:eb:5b:2e:a7:84:af:63:df:d2:10:a3:ae:a7:f9:bc:64:
3f:0b:59:24:4b:7c:95:5b:19:fa:55:94:3d:50:51:ec:96:78:
6a:fe:aa:49:8a:6d:3d:06:23:28:d7:c5:d0:5b:36:61:e6:1b:
ed:d3:e3:52:ed:98:55:1d:15:05:84:78:fd:1c:3f:45:3d:01:
de:29:d7:1a:fb:ce:92:ad:7f:ad:8c:d1:6b:4a:95:e3:8b:de:
63:15:0f:45:fb:76:1d:07:d7:33:6b:ba:af:d5:db:7c:61:4d:
50:d2:83:d4:19:44:cd:90:bd:8a:1f:a3:c2:08:5f:1f:94:1b:
c3:bb:c4:16:3e:f5:f6:2a:9e:3d:c1:82:20:b7:27:cb:be:bb:
c5:85:60:e6:18:3c:ad:7a:d0:59:9e:ca:d5:20:e3:62:5c:32:
07:f5:71:c7:ec:e2:02:f3:9f:89:da:87:e2:aa:bc:23:3d:a7:
be:76:fd:b9:69:85:41:97:17:2f:a0:d1:90:c4:d2:14:0f:87:
36:fe:71:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org