Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/mlafA1802q-qT7qqq6zm3yJuwBI.roa
File: mlafA1802q-qT7qqq6zm3yJuwBI.roa (raw, json)
Hash identifier: LqmLwiGNQ6I2H7xitH409nB9JH7PirxD0FPNthXki7U=
Subject key identifier: 9A:56:9F:03:5F:34:DA:AF:AA:4F:BA:AA:AB:AC:E6:DF:22:6E:C0:12
Certificate issuer: /CN=c5ebb8b79422fb2d6d8a82db7f1ac0b6aa59b37f
Certificate serial: 0551A87D
Authority key identifier: C5:EB:B8:B7:94:22:FB:2D:6D:8A:82:DB:7F:1A:C0:B6:AA:59:B3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xeu4t5Qi-y1tioLbfxrAtqpZs38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/mlafA1802q-qT7qqq6zm3yJuwBI.roa
Signing time: Sat 01 Jan 2022 10:03:40 +0000
ROA not before: Sat 01 Jan 2022 10:03:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34239
IP address blocks: 195.95.226.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89237629 (0x551a87d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ebb8b79422fb2d6d8a82db7f1ac0b6aa59b37f
Validity
Not Before: Jan 1 10:03:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a569f035f34daafaa4fbaaaabace6df226ec012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:18:fb:6f:5f:89:c6:5c:8f:76:c5:f0:14:1d:
e5:22:89:ed:f3:bd:d5:77:0a:fd:66:0e:ae:fe:a7:
b4:e3:c9:39:ee:6f:06:ea:6d:fc:2b:f0:9b:27:3d:
49:db:d9:20:af:d9:da:ac:cb:99:3b:3f:ce:0e:b4:
a3:a0:44:ed:9b:e1:1e:f7:a8:71:96:b4:23:78:45:
c5:c2:32:a0:eb:ca:a5:69:5a:e1:67:e8:fe:48:7f:
73:cc:0e:eb:d7:c8:87:d0:e8:59:a2:b8:99:16:fe:
85:ad:16:cb:ff:58:84:0d:ae:6d:26:0e:ca:4a:c1:
e1:d9:f4:02:4e:42:e0:28:5d:2c:f9:66:7b:ff:0e:
89:c4:d6:92:5d:ef:d5:fb:ba:c8:d3:11:d3:fa:41:
46:d1:84:b7:1c:f9:22:2c:0b:97:bb:91:fa:15:58:
6d:ab:42:30:b1:d6:ef:bb:3d:94:c4:53:7e:37:b0:
0f:90:ee:79:86:ac:e8:94:77:83:d1:d1:e1:2d:3e:
73:a5:7d:cc:42:8f:06:18:17:f9:ec:1f:05:ea:ac:
f7:6e:8c:d0:0c:5c:6d:1c:3c:43:15:27:b3:59:01:
8d:94:7c:3e:e3:e6:f2:1b:1f:da:3f:e9:e5:a5:89:
ae:15:94:fe:28:86:6a:09:07:9a:fe:ec:a7:ca:c1:
ba:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:56:9F:03:5F:34:DA:AF:AA:4F:BA:AA:AB:AC:E6:DF:22:6E:C0:12
X509v3 Authority Key Identifier:
keyid:C5:EB:B8:B7:94:22:FB:2D:6D:8A:82:DB:7F:1A:C0:B6:AA:59:B3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xeu4t5Qi-y1tioLbfxrAtqpZs38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/mlafA1802q-qT7qqq6zm3yJuwBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/xeu4t5Qi-y1tioLbfxrAtqpZs38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.226.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:37:11:a6:b7:12:35:54:1d:44:8d:d1:d6:c9:59:bc:c7:ee:
ba:40:44:1b:e3:6d:c9:14:9f:07:42:ae:5d:73:0e:e0:eb:c2:
12:76:60:fe:c5:02:2a:63:dd:0c:78:1d:5e:85:ca:a0:4b:24:
9f:1e:d4:67:2c:93:2a:aa:ca:2e:7b:bc:98:ba:ce:3e:e6:16:
8a:dc:74:fb:4b:8d:43:ce:de:45:bb:71:12:13:4c:43:5a:5d:
49:90:c9:ca:34:dd:89:5b:fa:a3:6a:10:c1:7f:9b:18:2f:8d:
43:b3:fb:70:85:ac:82:4d:b6:3c:3a:68:00:00:37:f7:94:ec:
ab:11:a1:45:62:e4:a2:77:c4:c3:34:4c:f2:22:83:a7:c7:b3:
50:0d:f0:f5:d1:45:02:0b:19:b6:e7:ee:b9:0e:0d:8b:73:ca:
bb:73:a4:14:a6:d7:c3:d7:bd:e5:31:eb:0b:f5:66:2f:8a:6f:
02:35:e8:1e:8e:dc:1c:cf:15:59:2c:25:fa:0e:d2:37:a6:9e:
fb:a9:ba:14:68:cc:32:5d:a1:8c:0e:0f:7d:66:48:d9:ce:77:
6e:8f:8c:cf:b7:c7:7b:92:6c:16:e9:f0:57:68:e6:9f:15:91:
d4:ac:55:2e:30:1f:08:0e:3d:ea:1d:0e:02:84:65:44:c1:6d:
18:84:42:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org