Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/mGNXopBrxozdTPjdh7RTZYKftm8.roa
File: mGNXopBrxozdTPjdh7RTZYKftm8.roa (raw, json)
Hash identifier: P9dFbvtmwf20pq4eZ6Sds/Hvcm62PCmWTANx9XF9yxw=
Subject key identifier: 98:63:57:A2:90:6B:C6:8C:DD:4C:F8:DD:87:B4:53:65:82:9F:B6:6F
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018362C89DF7D559A057591B36E7C4B7D373
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/mGNXopBrxozdTPjdh7RTZYKftm8.roa
Signing time: Thu 22 Sep 2022 01:20:58 +0000
ROA not before: Thu 22 Sep 2022 01:20:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 267950
IP address blocks: 45.139.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:62:c8:9d:f7:d5:59:a0:57:59:1b:36:e7:c4:b7:d3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 22 01:20:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=986357a2906bc68cdd4cf8dd87b45365829fb66f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4e:73:03:a8:d6:14:34:ce:44:bd:fc:1b:3e:
da:dd:da:e3:49:7e:f7:67:d6:40:ca:73:5e:c8:25:
39:d8:2a:c6:d3:d3:8f:1d:da:08:d4:44:9e:57:d3:
d7:a9:70:c3:de:1b:49:18:a4:56:f5:5c:09:43:d3:
6d:79:e9:18:2a:57:e5:f2:59:bb:9b:01:9b:7e:11:
ef:38:06:78:4c:e8:4f:3f:d0:5e:99:7a:1e:21:9b:
74:d9:86:ed:22:07:9c:f6:ea:f5:18:8a:aa:c8:d7:
90:20:e0:e8:69:f7:50:82:22:fb:aa:de:af:5a:26:
e2:e1:56:cb:bd:aa:db:ea:6c:11:d3:fd:b0:06:c2:
d8:9c:af:d2:a9:e0:c7:69:dc:20:19:4f:aa:2c:25:
af:6d:3c:ac:e3:8a:79:57:62:3c:84:1e:86:0e:67:
17:a3:b4:e8:c4:3a:b7:f8:e5:67:ff:6b:95:57:44:
2a:63:4d:93:ea:c0:2a:5c:ab:28:70:49:f8:11:f3:
10:39:82:51:85:50:2c:38:e9:e2:3c:a6:bc:67:4a:
60:73:45:5c:9c:56:e8:38:69:c5:2e:50:d7:d8:16:
00:7d:3e:14:c5:17:9b:7f:a8:56:45:9e:e4:20:cf:
02:58:8d:d4:b7:e7:ec:b8:0a:41:25:6e:ab:44:19:
3c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:63:57:A2:90:6B:C6:8C:DD:4C:F8:DD:87:B4:53:65:82:9F:B6:6F
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/mGNXopBrxozdTPjdh7RTZYKftm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.197.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:71:98:3e:45:a4:c1:8c:32:42:a5:ba:e2:70:93:0a:c8:de:
42:3c:d3:5f:55:c9:cb:e1:0e:82:2d:29:ea:86:85:27:f4:d0:
2d:fe:a4:66:aa:13:2e:42:32:14:8a:c6:24:27:fd:bb:b2:1f:
99:13:aa:92:c2:1c:40:1f:61:fb:06:36:6d:c2:66:de:35:80:
bb:e8:c7:23:14:22:90:32:25:cf:88:4d:01:c4:e2:c2:19:ad:
59:8d:ad:e9:84:63:8d:5b:45:97:f3:9a:8d:a5:88:14:ce:9f:
8e:b2:d9:e3:83:f6:9b:c5:78:57:96:f7:a2:2f:b7:98:7f:66:
24:08:e1:17:2a:35:3b:37:37:8c:de:bc:64:85:12:d0:ef:61:
c2:a2:82:e4:af:9f:25:2c:83:3a:2c:57:6b:04:be:58:ef:bb:
4d:77:a6:53:f9:50:96:f0:2a:8a:53:41:41:11:0b:65:ae:57:
b8:86:6b:84:a8:c5:d2:f0:7c:16:ec:c7:63:1c:1f:d6:ae:40:
da:be:ba:b6:88:66:9f:62:75:11:39:63:1a:11:b3:78:50:9d:
ab:5f:cc:1c:2e:9f:a1:fe:61:59:b9:85:6b:d8:94:4f:4b:d2:
f5:9a:c8:61:7a:1b:ba:9b:67:77:66:b1:5e:cc:e1:93:85:ed:
5d:af:79:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:47 2024 by rpki-client on console-fra.rpki-client.org