Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/mlUQprvhtryRKfjsn5PMvpSrUmQ.roa
File: mlUQprvhtryRKfjsn5PMvpSrUmQ.roa (raw, json)
Hash identifier: g7jCuq7j4hG2DtqulQdg+ALIpRnk4x1eSOpa9mi/W7w=
Subject key identifier: 9A:55:10:A6:BB:E1:B6:BC:91:29:F8:EC:9F:93:CC:BE:94:AB:52:64
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CA40F86
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/mlUQprvhtryRKfjsn5PMvpSrUmQ.roa
Signing time: Sat 01 Jan 2022 04:59:36 +0000
ROA not before: Sat 01 Jan 2022 04:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39330
IP address blocks: 212.91.22.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748949382 (0x2ca40f86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a5510a6bbe1b6bc9129f8ec9f93ccbe94ab5264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ec:5d:4f:a9:6f:a4:d9:ed:8f:3f:e8:dc:79:
92:4e:63:6a:fa:fd:4e:e0:44:09:c1:b3:0d:4f:b0:
b7:eb:b4:cc:c0:93:8d:45:0b:bc:10:bb:14:ac:fb:
75:85:50:a3:f9:d0:3c:a5:7f:81:68:e6:45:7a:13:
a6:ba:bd:6c:4e:26:f7:3b:05:79:1c:3c:ab:7f:9d:
ce:cc:da:82:44:26:bf:51:37:a2:44:2b:9b:59:01:
3a:d8:8f:e5:61:df:47:d8:3d:f6:07:4a:ab:10:6f:
07:a0:f2:fa:84:06:ef:20:5b:cf:db:c1:2f:12:f4:
57:5d:88:ca:56:19:3d:4e:0f:e1:1c:b8:e1:bf:da:
07:49:78:cb:11:0c:d9:e7:1b:0e:4f:18:66:a1:9c:
a4:84:52:19:35:45:61:1d:4f:35:f4:eb:1e:bd:2b:
9d:3e:0c:61:ed:1a:02:69:69:0f:34:d2:3d:a2:ce:
97:ac:34:85:c8:f3:1a:b2:ef:fa:93:43:fd:1a:fb:
9d:1e:4c:9b:e8:03:3c:df:b3:49:95:a7:ff:d0:c1:
6a:3a:55:80:e5:15:37:57:c0:5a:5f:da:8b:3a:dc:
eb:49:ce:9b:09:97:54:ad:38:8f:9d:59:67:bb:a7:
65:35:eb:4a:6a:be:cf:0f:10:4c:ac:6d:ff:92:62:
49:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:55:10:A6:BB:E1:B6:BC:91:29:F8:EC:9F:93:CC:BE:94:AB:52:64
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/mlUQprvhtryRKfjsn5PMvpSrUmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.91.22.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:58:4d:9a:67:85:2b:94:f2:77:67:66:eb:3a:4f:67:96:0f:
b1:49:1c:fd:90:a0:31:0d:42:51:6e:33:7e:20:37:5c:96:af:
ef:c6:1f:52:25:bb:a7:76:d3:34:a2:83:b0:ed:6f:a5:be:56:
06:fc:9b:4b:22:58:39:98:5e:8f:b0:1b:b2:9a:a8:23:f9:f8:
d6:b5:a0:9f:15:e0:83:07:9a:91:ac:83:79:65:95:68:7c:84:
2f:4e:5c:9e:eb:49:c2:2b:1f:23:23:89:3a:17:df:d1:7e:54:
5d:ca:c3:74:9b:51:f1:5d:7d:df:ee:20:a9:f9:95:e9:2e:96:
7c:c4:61:13:22:b1:4d:5d:7c:d0:53:09:31:c9:5d:65:8b:de:
ee:c8:e7:62:0e:62:0b:f5:a4:b4:26:6f:20:df:44:5d:45:51:
83:b7:cc:6a:08:6f:b8:bb:aa:05:21:54:34:f1:3e:88:e1:23:
b8:cc:ca:8d:00:d2:3c:ae:b7:d6:aa:aa:eb:1d:44:e5:37:9d:
dc:00:3e:55:5a:e0:6f:0f:41:bc:8b:e3:72:52:20:18:c4:c3:
8f:da:f8:2a:3d:73:a4:5f:a4:2c:78:50:55:0b:63:2e:ee:9d:
94:17:6a:ba:b8:05:0f:6f:ba:81:e3:8f:fb:4e:67:2e:81:00:
d3:07:a5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:03 2025 by rpki-client