Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/MgwbXJURXlh0FdnAplnpzUp4mV8.roa
File: MgwbXJURXlh0FdnAplnpzUp4mV8.roa (raw, json)
Hash identifier: 6/SigWn7E7up4iwZY3WwExKnCng8lcpPZS5IDTtvW8c=
Subject key identifier: 32:0C:1B:5C:95:11:5E:58:74:15:D9:C0:A6:59:E9:CD:4A:78:99:5F
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1CC28B74
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/MgwbXJURXlh0FdnAplnpzUp4mV8.roa
Signing time: Wed 06 Apr 2022 12:50:17 +0000
ROA not before: Wed 06 Apr 2022 12:50:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206070
IP address blocks: 77.36.62.0/23 maxlen: 24
93.120.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482511732 (0x1cc28b74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Apr 6 12:50:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=320c1b5c95115e587415d9c0a659e9cd4a78995f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:67:52:55:e8:1e:44:3f:20:e1:56:d5:97:85:
56:3c:d1:e3:f3:8a:b6:74:14:50:6b:09:92:f3:27:
95:fa:01:47:03:b9:e1:f6:ce:92:7a:51:b0:bd:ce:
50:72:57:ef:5a:a5:b5:31:bc:98:b5:0f:3a:05:cc:
74:87:3f:7d:d1:59:96:9b:6d:95:ea:b3:5a:4e:9e:
46:77:8e:91:5e:86:0e:a8:d0:c1:34:f4:e2:ca:7a:
09:7b:0a:c9:87:dd:bd:f6:15:5b:d9:c9:33:82:4f:
bf:71:08:af:44:f3:56:2d:97:9c:2b:8a:cb:3b:8f:
e7:3a:53:f5:9d:59:a0:37:cd:bd:e5:b3:b0:c2:c1:
da:15:af:48:cc:33:a9:f1:ad:3c:d6:8b:75:60:a8:
b4:bc:a9:b7:84:29:33:8b:90:34:b4:99:b2:37:6e:
f0:bc:5e:42:ee:4a:b8:99:58:2e:a7:0f:7a:35:a9:
1b:98:f5:bf:0f:de:02:35:4a:c2:52:90:30:01:52:
78:e5:12:85:9c:13:22:fb:df:52:cc:ff:6d:6b:e5:
e4:8f:a8:9d:04:0f:82:44:93:9a:41:0d:a1:24:4d:
1d:ff:16:f5:6f:50:93:ef:97:61:3b:06:a5:26:e2:
48:4a:18:70:1d:db:ba:44:6c:53:c1:bd:0c:63:e1:
c9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0C:1B:5C:95:11:5E:58:74:15:D9:C0:A6:59:E9:CD:4A:78:99:5F
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/MgwbXJURXlh0FdnAplnpzUp4mV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.36.62.0/23
93.120.43.0/24
Signature Algorithm: sha256WithRSAEncryption
34:dd:c0:7d:8f:52:7d:77:f2:10:7e:40:a7:00:93:f6:70:9a:
3b:c4:f5:9e:45:b7:c8:aa:92:19:ad:66:99:2f:8c:34:02:42:
01:47:ac:c8:eb:74:f3:d9:b5:0f:e4:c9:90:6f:37:30:f4:af:
e3:22:5e:e9:91:55:5d:81:3c:4c:81:04:84:01:70:b2:c5:2f:
a7:00:a0:26:0d:25:86:d0:2f:e3:1c:a5:17:93:88:d8:92:91:
7d:c1:19:8b:27:c9:f2:c8:fd:d5:3e:14:4e:ad:f1:3b:29:0d:
34:12:95:01:5f:ec:31:20:13:b7:89:b5:32:4e:84:c7:e9:2c:
fe:04:1d:05:50:e5:a4:8e:fb:ec:36:29:3a:97:12:44:34:94:
39:c7:f2:8f:8f:0c:e7:3b:9b:5b:2a:e4:82:57:7d:73:86:f6:
5c:b2:d4:1f:7f:55:88:a4:07:e8:6c:51:bf:34:3d:ab:f0:b3:
d5:82:03:83:21:39:82:ce:e0:bb:53:42:84:dd:41:2f:6f:32:
de:be:d6:c9:10:c8:fe:aa:d7:49:e9:24:fa:30:b8:e1:c0:57:
18:3f:fb:a1:9e:12:0c:8c:ac:7f:85:0f:20:df:d1:9f:24:6b:
2c:07:ef:e4:be:b1:ae:77:72:3c:91:c4:5c:7d:16:bd:87:bc:
0a:47:28:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org