Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/MYpm-iEQbiAtzCjDBppyShvkqa0.roa
File: MYpm-iEQbiAtzCjDBppyShvkqa0.roa (raw, json)
Hash identifier: 8rck0ytJgYHF1XriSNMFIjEvsq8jG10FBJj5gxrKTmk=
Subject key identifier: 31:8A:66:FA:21:10:6E:20:2D:CC:28:C3:06:9A:72:4A:1B:E4:A9:AD
Certificate issuer: /CN=fd261d45319e8375187436da44bf5b9adb044a7f
Certificate serial: 37B68F52
Authority key identifier: FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/MYpm-iEQbiAtzCjDBppyShvkqa0.roa
Signing time: Wed 12 Jan 2022 09:01:19 +0000
ROA not before: Wed 12 Jan 2022 09:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206492
IP address blocks: 212.25.7.64/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934711122 (0x37b68f52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd261d45319e8375187436da44bf5b9adb044a7f
Validity
Not Before: Jan 12 09:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=318a66fa21106e202dcc28c3069a724a1be4a9ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a7:39:5d:0a:44:c3:a4:1e:52:95:c1:ca:f6:
cd:ad:88:44:ff:5f:9e:04:11:7e:8b:c9:e6:bc:b5:
42:be:f1:32:99:5f:14:ce:ef:aa:d3:a6:bb:f6:ec:
f1:12:fd:85:a8:d6:7f:4c:76:e2:42:36:d0:ca:46:
99:73:a5:52:81:55:dc:b7:a4:84:f7:b0:10:fc:d5:
90:e7:7c:a1:b0:26:c0:a6:8f:c0:49:96:a1:39:01:
f4:6b:a6:76:44:8f:ed:6b:d4:18:c4:93:8d:f4:c6:
c2:57:a2:2f:ed:b4:ad:85:c7:f7:00:8b:c0:47:9d:
66:cd:4b:18:0a:40:b2:a3:2c:30:04:bc:56:9c:51:
73:59:79:f2:cf:f7:78:3f:12:83:72:79:bd:f5:73:
f6:6b:5b:99:f0:1b:f1:bc:05:7c:b2:af:dd:89:2c:
3a:bd:2f:de:65:b8:2e:da:18:e2:f4:f7:89:e2:f8:
3e:c6:6c:ad:03:8b:f1:11:6e:2b:b2:7e:68:90:94:
9d:1f:2d:28:ea:c8:96:af:ac:cb:ac:e0:65:96:fd:
da:a0:0a:36:32:d0:37:ba:be:8e:ff:16:33:9e:d1:
77:ec:72:6f:ea:74:92:50:08:f1:9c:1b:f3:b6:3a:
74:a6:4b:ca:c3:67:c4:5f:66:a6:b3:17:c4:d5:19:
c2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8A:66:FA:21:10:6E:20:2D:CC:28:C3:06:9A:72:4A:1B:E4:A9:AD
X509v3 Authority Key Identifier:
keyid:FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/MYpm-iEQbiAtzCjDBppyShvkqa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/_SYdRTGeg3UYdDbaRL9bmtsESn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.25.7.64/28
Signature Algorithm: sha256WithRSAEncryption
5f:82:87:d8:55:2e:0f:6d:0c:47:c0:94:1a:8d:c6:80:b8:79:
f7:2b:9c:59:67:3c:01:c8:9f:c9:dc:69:fc:7c:ef:0c:87:fa:
bc:7d:7a:58:8d:85:12:70:a4:d6:34:14:84:74:be:34:f0:32:
e0:65:dc:ee:7a:19:16:78:35:21:8a:79:0f:e9:29:37:31:01:
d4:0b:10:f3:18:2f:38:0a:2a:fe:16:43:7f:ed:96:91:57:c5:
00:5e:29:82:31:bc:35:46:5f:4b:f5:e4:c0:2a:2c:a9:f4:37:
5e:af:6b:c2:d8:6d:03:3f:f4:dc:52:cd:d3:14:77:86:d2:6d:
0c:5b:ab:eb:8e:3e:40:e5:8a:e4:6b:ff:23:31:a7:48:5f:12:
5c:2f:24:41:99:38:61:6c:e3:4a:b3:c4:4c:78:4f:c6:3b:e8:
55:9b:1e:71:da:87:14:6c:51:2c:c7:8f:d7:cc:9e:ea:42:1c:
93:ad:1c:65:fd:c5:a7:31:8b:46:a4:36:56:74:50:40:43:5a:
30:08:d9:02:83:96:00:b2:e1:a8:67:be:e8:ad:5f:75:89:f4:
0e:f7:d3:87:7d:1a:f3:c9:af:14:f0:3a:10:28:e4:41:c3:5f:
2b:28:3e:89:63:25:d4:60:65:b8:aa:4b:0c:a0:2b:81:e7:47:
b0:1d:9b:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:58 2023 by rpki-client on console-ams.rpki-client.org