Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/025122-5b87-40de-858b-0731a526211d/1/mMNwPkU2v_ncviEtxbA3WDn9dHc.roa
File: mMNwPkU2v_ncviEtxbA3WDn9dHc.roa (raw, json)
Hash identifier: ddiWrUk0RStElJpzDdfTbEHYGqAXFQ8rkLrmLJkpblA=
Subject key identifier: 98:C3:70:3E:45:36:BF:F9:DC:BE:21:2D:C5:B0:37:58:39:FD:74:77
Certificate issuer: /CN=85bb7b75b26dfe13e8583ea7c1ae621944c8ce30
Certificate serial: 01821F82D2B140B7A0B7F51F4465A029A158
Authority key identifier: 85:BB:7B:75:B2:6D:FE:13:E8:58:3E:A7:C1:AE:62:19:44:C8:CE:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbt7dbJt_hPoWD6nwa5iGUTIzjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/025122-5b87-40de-858b-0731a526211d/1/mMNwPkU2v_ncviEtxbA3WDn9dHc.roa
Signing time: Thu 21 Jul 2022 06:47:23 +0000
ROA not before: Thu 21 Jul 2022 06:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 194.26.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:82:d2:b1:40:b7:a0:b7:f5:1f:44:65:a0:29:a1:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85bb7b75b26dfe13e8583ea7c1ae621944c8ce30
Validity
Not Before: Jul 21 06:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98c3703e4536bff9dcbe212dc5b0375839fd7477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c8:cb:46:bc:1c:90:9d:c5:f9:39:6f:69:e2:
39:c8:09:17:6b:a7:58:75:79:53:a1:30:8b:45:3e:
fb:6f:06:42:25:a1:a2:87:17:39:ba:26:8c:6a:7b:
13:2f:e4:7b:4b:88:40:eb:24:f2:d2:f3:5b:a8:ed:
b7:99:a4:ec:2c:51:35:e8:42:c1:ec:66:76:46:13:
aa:b2:4e:15:ab:36:af:ad:0a:34:22:8d:73:0c:41:
d8:55:8c:f4:28:9f:da:74:53:9d:8d:56:81:a3:c7:
24:e6:73:37:24:e3:71:e5:f2:aa:85:f6:e4:de:c1:
fd:c1:19:be:b2:9b:11:0f:f7:c0:0e:65:ce:59:c1:
d0:05:f1:3a:34:3c:15:f6:b9:84:af:f1:56:5c:81:
70:ca:ff:0b:71:68:29:ae:ad:7b:56:7e:82:d0:db:
3f:1f:b2:76:75:be:40:43:21:6f:9b:01:7f:f6:8a:
f6:63:d4:10:1e:c6:27:60:8f:24:50:0a:65:f9:53:
29:39:13:cf:9e:ae:6c:20:48:8a:29:ec:b2:09:38:
55:19:19:e8:21:1b:47:88:85:fc:7b:6e:bd:df:eb:
83:70:d8:01:4a:0c:ee:25:f9:76:cd:2e:b2:e8:a0:
8f:84:6a:9b:66:ff:54:93:7f:b0:e0:07:30:2b:62:
ae:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C3:70:3E:45:36:BF:F9:DC:BE:21:2D:C5:B0:37:58:39:FD:74:77
X509v3 Authority Key Identifier:
keyid:85:BB:7B:75:B2:6D:FE:13:E8:58:3E:A7:C1:AE:62:19:44:C8:CE:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbt7dbJt_hPoWD6nwa5iGUTIzjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/025122-5b87-40de-858b-0731a526211d/1/mMNwPkU2v_ncviEtxbA3WDn9dHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/025122-5b87-40de-858b-0731a526211d/1/hbt7dbJt_hPoWD6nwa5iGUTIzjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.202.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:ab:b0:72:0c:4c:3b:35:f6:68:fc:f3:23:4a:de:6e:0c:9a:
37:58:41:07:dc:d8:9f:d3:64:e5:e6:84:f3:51:52:7c:7e:df:
15:d1:6e:66:c5:17:42:f4:4c:08:b0:1b:34:f7:2a:19:52:a7:
5b:cd:cc:8c:82:8c:b7:6f:97:35:86:e5:93:b4:d8:73:aa:9a:
a1:a6:86:14:dd:de:c9:26:5e:4b:44:11:e1:3a:42:75:3b:57:
7d:f0:04:93:1f:bc:30:29:5a:06:5e:2b:80:fb:59:b9:44:d8:
72:4f:4a:99:e0:fc:ae:64:d3:7f:a9:41:72:2b:cd:88:34:28:
a3:64:18:9d:89:8e:91:5c:a3:5f:5e:a8:38:81:1f:c3:d1:3a:
1a:51:44:3b:5d:0a:62:51:a9:f3:6e:a8:23:0c:8b:c4:fc:2d:
6a:08:bc:50:8f:3f:b8:2b:b5:ca:b9:2d:21:48:fe:22:e7:04:
93:46:1b:da:94:19:3b:73:47:88:ef:d3:45:e7:9c:2f:c1:26:
b6:28:a6:0a:1f:af:c8:d3:4a:08:af:e6:ad:da:01:31:97:6a:
d6:0c:2c:c1:43:1f:67:d4:f8:3d:7c:63:32:d0:eb:31:5d:b9:
a2:10:5c:a7:52:b7:a0:ea:35:24:86:d4:5f:6e:2b:63:77:c5:
2c:ff:40:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:52 2023 by rpki-client on console-ams.rpki-client.org