Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/fb1289-4d14-40f0-9679-11afb4992eef/1/Mv67Nc4BjVXOzSnoi4TXeK0Ml_g.roa
File: Mv67Nc4BjVXOzSnoi4TXeK0Ml_g.roa (raw, json)
Hash identifier: oEb0eptASEHvSIB8xudNdi6V9oqD2bar94k26H183mA=
Subject key identifier: 32:FE:BB:35:CE:01:8D:55:CE:CD:29:E8:8B:84:D7:78:AD:0C:97:F8
Certificate issuer: /CN=aaebc9bfef2b4d23f19513bfd4d60bb798f5a59d
Certificate serial: 11439170
Authority key identifier: AA:EB:C9:BF:EF:2B:4D:23:F1:95:13:BF:D4:D6:0B:B7:98:F5:A5:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/quvJv-8rTSPxlRO_1NYLt5j1pZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/fb1289-4d14-40f0-9679-11afb4992eef/1/Mv67Nc4BjVXOzSnoi4TXeK0Ml_g.roa
Signing time: Sat 01 Jan 2022 02:51:54 +0000
ROA not before: Sat 01 Jan 2022 02:51:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142275
IP address blocks: 84.33.12.0/23 maxlen: 24
84.33.15.0/24 maxlen: 24
84.33.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 289640816 (0x11439170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaebc9bfef2b4d23f19513bfd4d60bb798f5a59d
Validity
Not Before: Jan 1 02:51:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32febb35ce018d55cecd29e88b84d778ad0c97f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:44:2b:13:77:d4:d7:f4:1f:a2:be:e3:36:c0:
12:7f:2b:af:f1:b4:93:e1:d0:a5:ee:c0:39:3f:6f:
1e:d0:0e:5c:32:d3:5b:29:25:d8:13:48:ff:3b:ea:
42:6c:5b:72:f2:c8:50:c0:f1:94:98:83:86:e1:33:
ba:f6:c1:1e:1a:f9:47:e5:3d:24:ed:17:ca:5f:d1:
37:78:1d:64:85:ca:b6:61:e5:20:f9:de:e6:c9:9c:
e1:9b:0c:e2:0c:4a:d1:e7:ca:2b:04:06:87:7d:6a:
12:20:9a:a5:91:d5:d6:65:dc:7e:3a:4d:59:aa:dc:
31:a1:2a:bd:d6:ae:c6:b9:a7:de:63:20:e6:1a:57:
55:20:36:8f:b1:f3:76:71:84:3a:be:23:05:45:94:
2f:45:9a:da:c4:fd:79:7e:6e:ef:a2:b3:cf:4e:84:
3c:d0:c2:89:39:a4:1d:e2:79:d3:5d:04:c3:72:07:
63:08:67:bf:d0:95:49:bc:83:74:a8:73:c6:d8:da:
26:02:2b:8b:05:93:ac:66:40:95:3a:f9:6c:3c:c5:
b9:4a:5c:db:b2:3c:9b:f5:c5:81:78:94:50:c5:36:
8f:f1:2d:fb:5c:e7:f6:7d:69:9e:d4:7e:2c:6e:9f:
90:be:06:3e:a4:e5:21:5e:e7:8d:d5:38:62:3f:72:
b4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:FE:BB:35:CE:01:8D:55:CE:CD:29:E8:8B:84:D7:78:AD:0C:97:F8
X509v3 Authority Key Identifier:
keyid:AA:EB:C9:BF:EF:2B:4D:23:F1:95:13:BF:D4:D6:0B:B7:98:F5:A5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/quvJv-8rTSPxlRO_1NYLt5j1pZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/fb1289-4d14-40f0-9679-11afb4992eef/1/Mv67Nc4BjVXOzSnoi4TXeK0Ml_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/fb1289-4d14-40f0-9679-11afb4992eef/1/quvJv-8rTSPxlRO_1NYLt5j1pZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.33.12.0/23
84.33.15.0-84.33.17.255
Signature Algorithm: sha256WithRSAEncryption
e2:16:a1:a5:e5:74:27:d8:02:3c:01:56:12:28:f2:13:5d:74:
4d:8c:2f:99:34:2d:f1:c7:fc:aa:2e:17:ff:5f:eb:75:35:60:
bf:27:b6:b8:5f:0e:0c:4f:42:c4:0b:15:62:30:49:35:98:2d:
13:dd:58:a3:36:3f:60:ac:a4:92:62:22:96:80:94:0e:83:7a:
c2:a0:10:0d:dd:c1:e0:f1:d4:37:38:09:79:ad:05:6d:45:0e:
67:3b:47:ea:b4:37:0b:bb:95:c9:95:ae:aa:18:81:8f:a9:88:
cf:3b:a6:5d:9d:92:38:de:7e:fb:be:f5:d5:4c:21:0b:d2:75:
4e:1b:86:0c:f9:78:d2:f9:d0:62:1a:43:d4:c8:0b:59:f2:5d:
0b:83:69:39:71:1d:d6:86:95:9b:e3:8b:20:b5:51:14:37:8c:
7d:81:5d:03:95:d1:a8:70:63:4e:ab:7e:8d:7b:4e:dc:0b:ff:
a1:c7:5c:2e:8a:f7:cf:b7:81:60:57:7d:cb:27:62:86:8e:da:
08:98:4c:9c:0f:02:92:6c:50:1c:12:17:75:2d:88:bf:1d:f8:
5f:40:b8:51:b9:cd:d8:c0:7d:59:24:03:88:7c:54:78:af:0c:
8c:4d:f2:5f:09:a0:f1:78:7e:75:4b:c3:29:fb:fd:ea:03:1b:
ba:f6:3e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:47 2023 by rpki-client on console-ams.rpki-client.org