Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/mj2NTxUwjxo3yzjdO04vKwcTX_c.roa
File: mj2NTxUwjxo3yzjdO04vKwcTX_c.roa (raw, json)
Hash identifier: kmA97RL/LxSc5i0jFMQezCiIZ5cxq6NLugGASOTcNSI=
Subject key identifier: 9A:3D:8D:4F:15:30:8F:1A:37:CB:38:DD:3B:4E:2F:2B:07:13:5F:F7
Certificate issuer: /CN=8e303cc2af838789652771c345e07df3e80d544f
Certificate serial: 1607F7D5
Authority key identifier: 8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/mj2NTxUwjxo3yzjdO04vKwcTX_c.roa
Signing time: Sat 01 Jan 2022 06:55:39 +0000
ROA not before: Sat 01 Jan 2022 06:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21155
IP address blocks: 193.186.36.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369620949 (0x1607f7d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e303cc2af838789652771c345e07df3e80d544f
Validity
Not Before: Jan 1 06:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a3d8d4f15308f1a37cb38dd3b4e2f2b07135ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4b:9a:b3:46:3a:dc:b7:f5:49:e7:3b:e9:c0:
17:b0:9b:28:af:6a:df:bb:14:cb:b1:5c:11:a7:78:
e1:ab:e8:47:e0:aa:a2:1a:17:fe:32:4d:c4:dc:44:
48:d1:05:cb:ee:af:8e:e8:04:18:3d:70:d2:d5:15:
c0:36:df:a7:4e:71:d1:76:18:63:2e:e8:23:76:f7:
3e:3f:56:9e:94:c6:62:86:b1:dc:c7:a8:21:3e:e8:
a9:4a:54:84:5f:3a:c6:0d:ef:5a:6f:54:39:84:cc:
3c:10:23:88:28:06:29:2f:d9:35:0f:3c:4c:e6:2e:
ee:a4:c1:7e:0c:25:e6:03:13:a7:1d:e9:21:c3:25:
cc:c4:49:e5:cb:4e:f5:a6:78:6d:8e:2f:e7:e5:4b:
c6:7b:9f:c4:3f:a4:c9:b7:7f:9e:79:25:97:eb:4e:
02:aa:64:89:90:dc:63:3d:f2:5a:26:0e:df:d7:c5:
f6:2c:c7:de:95:87:a5:94:74:60:f8:64:7f:b0:48:
6b:1a:cf:db:19:46:d7:b9:7b:56:b8:8a:23:a1:e2:
df:e8:53:fe:3a:b9:12:bc:14:e4:dc:99:c4:20:5d:
c4:b2:b7:83:d4:b9:8d:15:ba:c8:4e:36:1d:fa:d3:
d1:0f:45:d0:c6:53:06:e2:9e:35:28:09:c7:fa:6b:
bf:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3D:8D:4F:15:30:8F:1A:37:CB:38:DD:3B:4E:2F:2B:07:13:5F:F7
X509v3 Authority Key Identifier:
keyid:8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/mj2NTxUwjxo3yzjdO04vKwcTX_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/jjA8wq-Dh4llJ3HDReB98-gNVE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.36.0/23
Signature Algorithm: sha256WithRSAEncryption
38:fe:9e:c5:ba:83:64:80:12:b2:06:32:6d:7f:64:49:e4:a1:
9b:9f:08:2c:40:0b:39:fa:f3:31:ce:58:e2:91:e3:f3:1d:6c:
2b:ea:7c:4f:41:ee:18:f7:cf:d1:81:f5:54:c5:16:d1:f1:f3:
2a:3c:ea:8b:72:0c:c6:27:03:0a:61:c9:aa:3a:c5:4e:d7:5e:
03:fe:10:90:30:0d:1e:1c:a3:04:cb:1e:24:2b:d1:2e:51:88:
df:f9:90:fb:81:c5:1f:48:18:b1:8b:91:8b:f6:32:02:95:76:
48:fd:23:0c:ac:79:0f:7e:0d:67:e4:ed:d2:79:bb:29:09:d5:
a8:fc:92:d2:7b:29:b1:43:b7:d6:92:c7:99:ef:18:8e:9a:0f:
61:f7:22:6c:50:14:a4:53:33:e5:ae:3b:f2:34:09:e6:8c:25:
aa:90:3e:40:9b:c1:1d:c8:04:ca:b8:2b:c1:eb:84:8b:5e:c2:
73:87:24:f9:a3:69:0e:6d:e1:5c:17:6e:0d:98:cf:33:d5:61:
65:1a:d5:de:0f:2a:73:cf:2d:8f:79:6a:48:4a:40:0a:dd:ee:
a0:a0:6b:13:09:ad:95:f6:10:e0:ec:bf:b5:8e:55:81:49:94:
ce:97:13:3f:5a:fa:1d:ad:2d:0d:ac:28:f1:54:2c:79:1c:be:
54:58:86:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:02 2024 by rpki-client on console-ams.rpki-client.org