Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/MZ-Ty-b_vOKkvr11KBXXv7_Kn3s.roa
File: MZ-Ty-b_vOKkvr11KBXXv7_Kn3s.roa (raw, json)
Hash identifier: Dh5kFZ43LOYqpOhnbmzW/YLxiDlzgFye0mk9VrzIbB8=
Subject key identifier: 31:9F:93:CB:E6:FF:BC:E2:A4:BE:BD:75:28:15:D7:BF:BF:CA:9F:7B
Certificate issuer: /CN=050b1e38c704bd08e3b9d17f590367b1d1f03c4a
Certificate serial: 031EFEE8
Authority key identifier: 05:0B:1E:38:C7:04:BD:08:E3:B9:D1:7F:59:03:67:B1:D1:F0:3C:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQseOMcEvQjjudF_WQNnsdHwPEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/MZ-Ty-b_vOKkvr11KBXXv7_Kn3s.roa
Signing time: Sat 01 Jan 2022 08:03:52 +0000
ROA not before: Sat 01 Jan 2022 08:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197912
IP address blocks: 128.127.170.0/24 maxlen: 24
128.127.169.0/24 maxlen: 24
128.127.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52362984 (0x31efee8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=050b1e38c704bd08e3b9d17f590367b1d1f03c4a
Validity
Not Before: Jan 1 08:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=319f93cbe6ffbce2a4bebd752815d7bfbfca9f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a9:0c:2f:3d:82:3f:04:9f:7c:80:2d:00:fa:
ec:ff:ec:48:22:c4:6d:f2:e9:d0:0f:1b:a1:2c:c2:
ab:e8:23:2c:6a:94:c5:d0:37:07:af:f1:d3:9f:ec:
ad:c8:bf:e1:87:8a:e9:fb:67:6d:78:fc:19:ff:f3:
2d:56:79:20:45:dd:f3:9b:45:d7:9a:22:ca:22:bd:
74:af:36:de:f3:c1:2d:4a:79:b7:e0:9b:50:0f:a5:
5a:a6:5f:95:59:bf:28:cc:28:b3:6d:6f:2f:37:1d:
46:9a:e9:51:80:69:4d:74:0b:31:d6:17:f0:7d:c1:
79:7e:d4:ff:4c:52:ba:d3:ae:0e:f6:56:9d:4f:bd:
2b:e0:99:36:07:fc:aa:d1:c4:53:76:81:ca:6e:42:
f2:cc:97:0b:e6:74:35:93:35:56:7f:5b:16:5b:8e:
a9:03:35:82:28:38:48:31:d7:20:22:44:e8:cd:79:
d7:31:cf:f3:32:ed:18:29:9a:a5:0e:58:3a:fd:c9:
92:b9:af:56:de:af:61:ed:c1:3f:b7:88:11:46:cd:
85:ee:5a:9f:14:33:a2:75:ae:4a:74:7b:0f:28:33:
be:cb:06:04:4f:48:c9:ea:23:d0:f1:5b:f3:29:f1:
fd:fb:5a:ee:11:b3:1c:e6:cb:a8:be:63:43:c9:89:
48:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:9F:93:CB:E6:FF:BC:E2:A4:BE:BD:75:28:15:D7:BF:BF:CA:9F:7B
X509v3 Authority Key Identifier:
keyid:05:0B:1E:38:C7:04:BD:08:E3:B9:D1:7F:59:03:67:B1:D1:F0:3C:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQseOMcEvQjjudF_WQNnsdHwPEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/MZ-Ty-b_vOKkvr11KBXXv7_Kn3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/BQseOMcEvQjjudF_WQNnsdHwPEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.127.168.0-128.127.170.255
Signature Algorithm: sha256WithRSAEncryption
7d:19:17:53:b7:d4:7f:e0:c7:b8:72:b9:8b:f6:9e:e1:d2:c4:
6e:35:f0:0d:b0:35:c6:b9:c7:84:73:48:99:db:be:9e:f7:3e:
50:c0:c5:a3:a7:c1:20:97:c1:e0:8f:f5:75:56:26:f5:d2:a5:
54:39:f9:b4:df:8d:ca:d3:e9:94:b3:85:3d:fb:89:de:91:b6:
89:9d:c1:1b:6f:01:04:26:4e:6d:dd:29:16:fd:b4:f2:6b:01:
45:03:41:dd:d4:f1:4e:67:e2:64:01:a3:24:3b:f7:dd:d9:13:
6e:b6:eb:94:56:36:d1:c7:c2:af:67:56:66:13:60:fa:d5:0e:
ab:18:ae:fd:6c:16:26:2c:73:b4:e6:87:30:da:f8:18:50:ca:
fa:a3:b4:99:ab:91:79:62:14:68:62:a3:1f:68:55:1b:41:c2:
27:1e:1e:d7:87:4d:81:31:02:5f:6d:aa:25:ef:78:8c:60:cb:
3c:1a:e2:e3:f2:82:34:16:66:b7:8b:d0:f1:4c:e1:48:c9:af:
d7:48:01:d0:a5:6f:ae:73:bd:96:a6:09:61:22:6f:2f:9e:17:
c2:fa:73:8c:1b:da:9f:14:5f:ba:c5:cb:3d:36:2f:dc:be:70:
8d:2b:b4:22:d4:2c:3a:c8:41:06:bd:25:9f:9d:a5:6a:a9:7a:
ef:59:3d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:00 2023 by rpki-client on console-fra.rpki-client.org