Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/M0zPDJ1qE3LDssqwMFRyow9mlOM.roa
File: M0zPDJ1qE3LDssqwMFRyow9mlOM.roa (raw, json)
Hash identifier: S3OPg/eIfnQO6DJmCw2YoINiAVnHLsGTJgFu0QNbQPI=
Subject key identifier: 33:4C:CF:0C:9D:6A:13:72:C3:B2:CA:B0:30:54:72:A3:0F:66:94:E3
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 145C6C34
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/M0zPDJ1qE3LDssqwMFRyow9mlOM.roa
Signing time: Sat 19 Mar 2022 06:49:27 +0000
ROA not before: Sat 19 Mar 2022 06:49:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207238
IP address blocks: 91.242.102.0/24 maxlen: 24
91.242.68.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 341601332 (0x145c6c34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 19 06:49:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=334ccf0c9d6a1372c3b2cab0305472a30f6694e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0e:fe:94:ba:7e:6d:6f:db:a0:ee:e7:66:a9:
49:90:42:c1:2c:f5:f7:fe:41:4a:b7:9e:c7:38:57:
fb:48:cd:45:34:61:d1:98:4a:74:4b:f8:20:82:d7:
04:4a:4d:bc:be:74:ce:57:8e:e1:d7:d1:a8:72:eb:
91:12:9d:aa:8c:2e:6a:16:b1:b4:e2:06:df:4c:36:
d1:06:0b:a1:7c:4e:7e:0f:a4:bf:bf:7a:cc:6c:b7:
22:6c:72:6f:92:72:b4:02:02:2c:96:97:4e:03:b3:
cf:f1:6d:b8:d8:ba:30:ae:27:86:39:74:bf:4e:83:
72:41:65:46:2a:68:01:5d:b9:bb:06:d2:01:be:30:
53:db:1d:34:f9:79:e3:1a:dd:f9:90:60:c2:47:d1:
89:f4:42:23:e7:67:e5:ff:3e:7a:d1:f6:d2:fd:90:
f3:28:e2:76:c8:12:55:ac:c0:d8:b6:1d:1e:4d:aa:
ae:96:3f:5d:b6:25:24:2a:c6:72:7c:18:3b:56:a4:
4e:db:41:13:cd:c4:b0:b7:cd:a9:53:9b:88:af:33:
02:23:96:1e:dd:9e:2c:09:11:ed:cd:10:78:37:0b:
b6:1c:92:93:08:03:a0:c8:58:20:73:8c:8d:1e:10:
ab:35:c6:da:f6:b0:ae:23:82:6a:4a:bb:04:1c:36:
e4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4C:CF:0C:9D:6A:13:72:C3:B2:CA:B0:30:54:72:A3:0F:66:94:E3
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/M0zPDJ1qE3LDssqwMFRyow9mlOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.68.0/23
91.242.102.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:95:e9:35:6f:a5:97:57:35:5e:99:df:9d:f6:3d:6e:40:a7:
9a:f7:a3:44:5b:a7:81:88:82:bd:4c:39:cc:2a:aa:f8:d2:ac:
7b:c8:a7:12:05:68:4f:ab:29:be:11:d2:58:4b:4e:b4:a4:86:
fc:d5:55:f0:d4:d6:a9:81:2b:f4:be:a9:cf:9c:cd:12:0d:41:
12:f7:f6:38:48:88:25:a4:79:05:c3:91:0f:b9:e2:27:25:19:
5f:b9:a9:4b:ea:97:30:30:e9:b9:76:e2:e5:4c:da:85:df:51:
65:ca:95:03:73:0d:98:d8:24:2c:67:42:a5:4b:4a:ba:8c:11:
15:fa:a0:a6:f0:6f:7d:bf:0e:63:2c:ce:53:33:0d:cd:20:cc:
c6:78:e1:f1:db:27:cd:2d:89:00:d2:66:36:17:a7:09:94:2a:
52:9d:bd:70:62:44:18:25:4a:7a:98:42:a8:9d:60:ea:f7:84:
6e:3b:a3:40:bf:fa:d4:42:86:d4:97:5b:ff:aa:69:7c:d4:36:
47:cd:11:7a:b4:a0:5a:3a:13:75:c6:d1:a1:a8:6c:37:bc:1f:
be:e1:bd:62:0f:50:2b:14:0b:ed:ae:c4:ff:63:81:4f:59:8c:
d7:d1:8b:bd:5f:69:9e:e6:e8:d5:96:e6:cb:cf:3b:d7:55:d6:
ba:f8:e0:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org