Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/3MT_2P3FRNpSsqrVHyOK28Tq-V8.roa
File: 3MT_2P3FRNpSsqrVHyOK28Tq-V8.roa (raw, json)
Hash identifier: 4lRhGtei6pyuGw4jhBELngVb0V0oQVC36F1lC9//m48=
Subject key identifier: DC:C4:FF:D8:FD:C5:44:DA:52:B2:AA:D5:1F:23:8A:DB:C4:EA:F9:5F
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2C976B96
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/3MT_2P3FRNpSsqrVHyOK28Tq-V8.roa
Signing time: Sat 01 Jan 2022 04:59:31 +0000
ROA not before: Sat 01 Jan 2022 04:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21344
IP address blocks: 217.149.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748120982 (0x2c976b96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcc4ffd8fdc544da52b2aad51f238adbc4eaf95f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:62:28:b9:d2:6a:25:c6:f0:b4:ab:4a:ac:e1:
56:2f:38:a1:d5:0b:57:ee:65:b0:8f:c6:f6:dd:d0:
c9:ec:d5:39:f9:ef:db:44:d9:63:d1:2f:73:99:24:
e1:20:ef:90:f8:e9:2a:e1:2e:15:56:46:a1:40:af:
f2:a9:a1:75:08:6d:4b:b3:ea:3e:16:ab:84:aa:e9:
c0:1f:60:1b:93:34:28:96:52:de:d5:83:bf:16:e8:
4d:a8:d9:c9:c9:d7:41:9c:98:0d:c8:fc:b4:79:94:
4e:79:bd:4f:8f:43:a5:39:e1:96:e6:55:c2:e0:97:
79:71:0c:90:94:30:6f:ab:43:ce:02:d3:59:4f:3f:
db:88:e4:ad:98:f2:18:ec:08:55:a9:ff:0d:d3:6f:
95:8a:b4:6e:a2:56:69:38:6c:26:49:7b:c9:36:67:
63:46:dd:f4:7b:0a:36:35:53:d7:17:58:66:3c:cd:
f1:11:d7:ab:04:e6:b4:e0:6d:09:f4:39:09:ef:86:
c7:1e:75:ce:c1:1a:d2:e7:d6:eb:fd:83:71:8d:02:
9f:c0:e5:94:67:68:5a:43:aa:54:4a:ae:fc:4b:6f:
05:3a:2b:37:c0:72:86:04:75:a5:fc:61:3f:10:ae:
be:69:5f:0a:e4:4e:ac:c6:50:8a:54:f1:fa:7d:b1:
70:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C4:FF:D8:FD:C5:44:DA:52:B2:AA:D5:1F:23:8A:DB:C4:EA:F9:5F
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/3MT_2P3FRNpSsqrVHyOK28Tq-V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.149.247.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:4b:50:d2:4c:1d:14:68:18:6b:51:dd:4e:31:6c:27:6d:81:
f3:3c:97:16:47:67:aa:84:b0:c1:06:d0:d2:7f:5f:61:34:cc:
00:24:67:8a:47:cc:66:5e:ce:61:7b:af:60:24:fb:90:9a:18:
e2:db:60:58:c3:5e:98:77:2f:b5:da:d1:e3:58:e4:df:a9:66:
81:da:0e:d4:a5:f3:7c:f5:44:c5:0f:eb:e8:af:fe:f2:1a:f2:
40:38:bd:1c:93:07:98:2a:ad:a3:b4:22:d8:20:61:20:7b:b4:
ec:2f:2d:2b:6e:ef:06:ef:78:57:5f:10:22:c5:b5:5d:f8:ca:
70:fe:5c:62:2c:4a:16:92:b7:d5:7e:0f:06:a9:94:e8:ec:5a:
a1:53:08:45:fb:cd:c1:72:ff:68:83:10:65:a3:c8:2c:c0:93:
aa:12:fb:b8:9b:a7:b5:43:c8:d6:e8:ca:83:90:33:f5:db:3a:
f9:f9:d8:85:e0:3d:fd:b8:84:03:44:88:14:f2:c9:95:f9:c3:
f4:98:98:b2:23:bf:93:f2:aa:c7:ec:42:3a:06:a3:4f:b2:1c:
9e:0d:a2:21:51:d2:5f:51:7a:e6:38:45:ec:b6:ac:a8:26:41:
1f:82:b6:85:63:c2:e2:75:e7:dd:9b:b6:c0:f3:df:4f:14:b7:
48:56:67:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:25 2025 by rpki-client