Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/7ed08b-492d-44bf-9e4e-fe573b023fd2/1/MqVb2hIPfSzwIPQmqP-9q4qqX3A.roa
File: MqVb2hIPfSzwIPQmqP-9q4qqX3A.roa (raw, json)
Hash identifier: ZdFffNS8VsjhhvJfyMTBmo+XyENcYXCIbB2X5z8ysAs=
Subject key identifier: 32:A5:5B:DA:12:0F:7D:2C:F0:20:F4:26:A8:FF:BD:AB:8A:AA:5F:70
Certificate issuer: /CN=f7bc29f353852d180d23410997d0f047ec1778d3
Certificate serial: 1333E5E5
Authority key identifier: F7:BC:29:F3:53:85:2D:18:0D:23:41:09:97:D0:F0:47:EC:17:78:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97wp81OFLRgNI0EJl9DwR-wXeNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/7ed08b-492d-44bf-9e4e-fe573b023fd2/1/MqVb2hIPfSzwIPQmqP-9q4qqX3A.roa
Signing time: Sat 01 Jan 2022 05:52:10 +0000
ROA not before: Sat 01 Jan 2022 05:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 160.45.0.0/16 maxlen: 16
130.133.0.0/16 maxlen: 16
87.77.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322168293 (0x1333e5e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7bc29f353852d180d23410997d0f047ec1778d3
Validity
Not Before: Jan 1 05:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32a55bda120f7d2cf020f426a8ffbdab8aaa5f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2e:90:e7:46:df:ef:29:b8:9f:76:84:fb:15:
59:99:45:d3:f4:b5:64:f9:e1:31:a1:a7:74:21:53:
64:be:9f:25:ad:d5:0d:fd:da:d2:25:66:f4:25:01:
c7:20:ff:17:59:f9:ba:cf:c5:55:6c:e1:23:cb:56:
c3:c3:41:05:da:27:58:23:74:6b:05:07:bd:63:e8:
57:89:78:bd:f8:c7:3f:86:3f:b3:b6:51:f7:fb:07:
3d:db:e7:48:2c:3c:af:54:3c:f1:40:0b:fe:9d:d7:
fa:19:9c:5b:35:1d:b0:b9:24:57:e0:10:05:e5:2c:
d6:4a:96:4d:ae:1c:e1:16:3b:59:8a:5a:17:97:2e:
74:1a:5e:d9:f3:f1:69:de:6c:58:82:99:59:35:24:
49:9e:12:d3:75:fc:ce:01:44:f6:94:e7:f8:90:f4:
34:72:ec:13:24:1e:94:b5:0e:28:ec:5f:ac:c3:d9:
bb:10:30:25:7d:c8:13:97:2d:10:7c:01:05:52:49:
cf:df:f2:de:8a:27:77:36:81:7a:8c:58:48:d1:f1:
8c:ea:ab:2f:ec:b9:17:28:a4:15:50:88:d0:a9:43:
e5:cc:00:1f:19:24:88:62:dd:6d:8b:0f:dd:26:53:
99:55:f4:db:2c:c1:78:fb:13:78:24:26:74:ab:f5:
2e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A5:5B:DA:12:0F:7D:2C:F0:20:F4:26:A8:FF:BD:AB:8A:AA:5F:70
X509v3 Authority Key Identifier:
keyid:F7:BC:29:F3:53:85:2D:18:0D:23:41:09:97:D0:F0:47:EC:17:78:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97wp81OFLRgNI0EJl9DwR-wXeNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/7ed08b-492d-44bf-9e4e-fe573b023fd2/1/MqVb2hIPfSzwIPQmqP-9q4qqX3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/7ed08b-492d-44bf-9e4e-fe573b023fd2/1/97wp81OFLRgNI0EJl9DwR-wXeNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.77.0.0/16
130.133.0.0/16
160.45.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2f:f0:ad:29:0a:95:67:a2:82:87:49:d9:9a:19:19:99:d5:08:
ca:3a:e1:cd:0e:48:85:75:f2:01:22:08:66:10:cb:af:92:43:
62:86:07:4c:03:4e:a0:aa:01:25:c9:5b:b2:ed:77:01:31:e8:
49:08:b0:40:15:6e:ea:98:f2:56:7c:a7:02:70:ef:3c:d8:9c:
70:de:f2:49:97:7a:cb:5d:6c:f0:54:db:fb:5a:1a:75:c2:c2:
20:86:84:4d:02:7b:76:3c:6b:cd:04:76:31:a0:04:8e:b7:8d:
41:47:59:07:79:8c:b8:33:ac:9c:7c:45:97:47:7f:92:94:06:
49:4d:6d:8e:f9:31:db:99:2f:98:7c:dd:d4:05:db:2a:10:0d:
79:de:17:5c:65:84:da:02:74:ad:be:43:e0:54:64:37:97:2d:
aa:5b:e2:cc:66:e7:4a:17:6d:98:73:8f:4a:3f:6d:cb:98:3d:
e0:3c:44:ea:02:19:31:27:83:f0:a1:62:8c:94:a8:c0:96:82:
66:52:20:fc:cf:05:75:dd:d8:e6:89:d9:78:98:87:79:1e:48:
1a:77:24:4c:93:90:00:37:61:68:c8:c4:54:77:92:a1:7f:0b:
f7:92:cd:4d:5f:28:92:97:5e:3a:23:24:3d:7b:1a:af:9a:62:
b9:9d:b0:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:25 2023 by rpki-client on console-fra.rpki-client.org