Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/MVjw5n3SmxA2ZfEEyePpzCKOCos.roa
File: MVjw5n3SmxA2ZfEEyePpzCKOCos.roa (raw, json)
Hash identifier: OtZsW7eXDbUGORKnn/X7ssDSipkp4IS9IylxwY9bbec=
Subject key identifier: 31:58:F0:E6:7D:D2:9B:10:36:65:F1:04:C9:E3:E9:CC:22:8E:0A:8B
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A63F0D0
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/MVjw5n3SmxA2ZfEEyePpzCKOCos.roa
Signing time: Sat 01 Jan 2022 14:56:38 +0000
ROA not before: Sat 01 Jan 2022 14:56:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204834
IP address blocks: 92.242.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979628240 (0x3a63f0d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3158f0e67dd29b103665f104c9e3e9cc228e0a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fb:5f:bf:52:37:7e:b0:66:bc:8e:3f:63:ce:
15:24:de:52:76:2e:96:f6:eb:f7:c9:e2:6b:dc:2f:
f6:cf:b9:33:76:03:45:53:cd:ba:88:d1:4f:39:5d:
2c:04:c0:b8:a6:84:70:18:0c:cf:f2:4d:0f:87:91:
d2:b5:a8:9b:0f:b4:88:40:ca:2f:e2:f3:53:6a:27:
bb:33:cd:3e:5e:31:d1:74:44:9f:e5:a7:65:57:7c:
66:fe:3c:1c:b0:b7:31:55:6c:7b:96:29:02:0b:c1:
e2:20:5d:fe:92:9d:4c:48:ea:b9:dd:7b:fb:24:8a:
8c:20:74:f3:c8:2e:dc:d3:ec:3a:b6:73:ef:c2:2d:
57:04:be:ff:b6:ab:b1:5f:93:72:29:62:2b:28:a7:
56:ea:37:38:90:e3:87:2e:27:d5:fe:65:b5:39:07:
56:09:3d:4b:3d:28:04:d6:96:9c:d2:f4:2c:b9:75:
72:ba:88:23:61:77:10:1c:30:ac:f7:a0:5f:ac:d6:
b1:0b:79:5c:2d:70:f8:80:29:0f:f0:16:a6:06:c3:
90:37:40:4d:f5:f0:f3:df:9f:f2:b6:35:d6:d3:93:
02:3c:8f:db:e8:b1:ff:0d:6c:8e:1e:57:a3:b4:a4:
eb:86:09:29:d6:78:d4:48:cd:95:85:75:a8:2f:39:
8e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:58:F0:E6:7D:D2:9B:10:36:65:F1:04:C9:E3:E9:CC:22:8E:0A:8B
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/MVjw5n3SmxA2ZfEEyePpzCKOCos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.242.201.0/24
Signature Algorithm: sha256WithRSAEncryption
15:81:d2:0a:b7:70:ba:5b:08:53:62:c0:ed:3b:8f:ee:61:23:
1b:98:ba:df:c5:67:bb:d0:f1:90:75:1c:5b:56:14:3f:cf:da:
1d:46:32:76:f9:20:f4:a6:16:4e:96:53:2e:7c:b3:1d:06:95:
f9:ea:37:aa:10:c5:ec:de:86:d7:b3:0a:e2:02:46:05:2f:cf:
65:78:65:3d:d6:a6:7c:37:a0:f9:2c:30:71:70:46:d1:29:93:
c8:76:73:77:f9:18:c9:18:50:4b:7f:3e:fe:28:b7:e3:a6:eb:
2d:4a:77:3f:9d:2c:36:e9:68:90:3a:d4:9b:55:1c:5e:de:75:
f1:7e:21:ef:f1:ff:df:6f:aa:75:04:aa:41:5a:98:f6:53:de:
3e:9e:c3:2f:22:b1:ad:22:9f:56:7d:f8:1d:bf:4f:61:bf:c5:
6f:39:0f:02:82:60:45:93:55:ed:1b:95:59:11:09:5a:7c:e4:
fe:1e:c9:3f:96:87:41:8b:12:e1:a9:ff:89:4c:30:e4:86:7b:
10:a8:b0:62:88:74:5a:a6:64:8a:27:c5:ae:3a:54:3a:2e:f7:
e2:f1:a4:1f:76:0c:a6:79:41:56:cc:f7:f0:9a:18:07:e6:98:
59:89:b4:af:7c:5c:3f:b9:85:55:1a:7c:e3:3a:3f:1c:6b:fd:
a5:48:de:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:19 2023 by rpki-client on console-fra.rpki-client.org