Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MGS8KFQgwhAn4UlrW5UkszujaHs.roa
File: MGS8KFQgwhAn4UlrW5UkszujaHs.roa (raw, json)
Hash identifier: oprsgJsdhgAm9C75SbpoyaIlJ8JtDN9QBzLHZXtnnL0=
Subject key identifier: 30:64:BC:28:54:20:C2:10:27:E1:49:6B:5B:95:24:B3:3B:A3:68:7B
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2DEB9706
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MGS8KFQgwhAn4UlrW5UkszujaHs.roa
Signing time: Mon 09 May 2022 06:18:44 +0000
ROA not before: Mon 09 May 2022 06:18:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203756
IP address blocks: 212.91.15.0/24 maxlen: 24
2001:1a68:53::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 770414342 (0x2deb9706)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: May 9 06:18:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3064bc285420c21027e1496b5b9524b33ba3687b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:aa:64:44:3c:07:8c:42:f3:af:5d:b4:19:6a:
34:6f:b2:78:83:b7:99:23:1f:57:9e:46:5f:1e:ab:
03:1b:6f:68:c8:32:b8:5f:2c:a1:e2:9a:64:97:b1:
b8:bf:83:97:d1:ad:8e:00:0f:fa:31:fc:14:d3:0c:
ef:aa:38:bb:cc:3b:08:27:da:05:88:ce:a3:1f:66:
cb:39:7c:5c:8e:43:14:4a:de:55:20:fb:11:17:f9:
71:eb:4b:ec:b7:cc:47:ce:c0:0f:42:ec:70:31:c7:
18:72:34:d2:87:21:53:96:e2:7d:76:ed:1b:56:3f:
01:52:19:79:2a:e9:fd:8f:ed:45:63:75:05:4b:4d:
10:d7:f5:95:3f:0f:41:fe:26:84:9a:b2:8a:30:3c:
b6:ed:8b:cd:a0:74:e7:64:92:e2:63:1e:26:3f:0e:
79:77:25:32:c7:5f:92:f9:4d:68:45:6f:5e:4e:c5:
f6:37:83:0b:15:fa:7d:48:72:d6:fa:1e:d8:82:44:
f6:11:a7:15:c8:29:31:a4:2e:7e:c5:ba:10:41:4c:
a6:d4:a2:f1:83:4a:1c:92:ff:4a:d8:c6:9c:0f:c2:
58:7f:7c:ab:ca:0f:da:3a:5b:df:06:88:e3:59:65:
30:51:e5:7b:e8:ec:df:f9:1e:ec:42:b8:00:34:0e:
ce:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:64:BC:28:54:20:C2:10:27:E1:49:6B:5B:95:24:B3:3B:A3:68:7B
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MGS8KFQgwhAn4UlrW5UkszujaHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.91.15.0/24
IPv6:
2001:1a68:53::/48
Signature Algorithm: sha256WithRSAEncryption
4c:4e:b2:70:59:8d:a7:8d:18:34:3d:65:e4:3d:b7:f2:ed:45:
cb:6c:27:d5:8f:dd:35:ce:e7:08:79:e0:bd:9e:5f:ea:dd:f1:
a5:b2:35:87:92:43:cd:07:1f:65:83:9e:10:4e:a7:d5:a5:54:
d7:72:8c:67:dc:f3:dc:94:67:72:3c:f7:c4:50:d0:78:8e:e5:
41:29:fa:16:ee:8c:c3:51:d8:6f:4a:10:21:9a:da:e9:9d:be:
bf:e2:81:8e:d3:8e:22:45:39:0f:1a:27:c2:08:24:58:52:0e:
f6:e3:4a:1e:86:b6:8e:69:6b:ae:19:58:dc:77:d0:cd:50:51:
d2:a6:c3:13:f1:72:e6:de:53:86:a6:bc:40:89:8f:cd:68:81:
eb:69:73:31:6d:d4:4c:fe:ad:11:1c:e1:fd:a5:c6:ea:cd:53:
3f:9b:c9:1d:34:83:c0:6c:ef:66:76:ad:c9:de:d8:d6:e0:6b:
ed:2c:23:f1:3f:be:32:af:a9:b5:00:dd:1a:c5:07:91:3b:86:
dc:14:b4:b3:16:16:c4:93:8c:dc:11:dc:15:41:49:dc:1c:8b:
b2:b6:1f:d7:8f:fe:81:cf:49:10:f7:34:2a:18:55:6b:2b:5a:
12:52:9e:d6:3d:76:e5:8f:97:34:90:ae:47:f5:02:72:18:10:
7e:74:53:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org