Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/MFPDN_iLv0UUr4wxbwayBzG0WAY.roa
File: MFPDN_iLv0UUr4wxbwayBzG0WAY.roa (raw, json)
Hash identifier: s7TlnZJ4HKZHa0uYBnvQyX2yG+EJ2WxRO+4J3hwAyGU=
Subject key identifier: 30:53:C3:37:F8:8B:BF:45:14:AF:8C:31:6F:06:B2:07:31:B4:58:06
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01852FE88664F80E7B6E37E390AF788F5506
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/MFPDN_iLv0UUr4wxbwayBzG0WAY.roa
Signing time: Tue 20 Dec 2022 14:20:45 +0000
ROA not before: Tue 20 Dec 2022 14:20:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200456
IP address blocks: 213.238.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:e8:86:64:f8:0e:7b:6e:37:e3:90:af:78:8f:55:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Dec 20 14:20:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3053c337f88bbf4514af8c316f06b20731b45806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c0:ae:2e:48:a3:84:97:02:36:17:3d:db:a0:
d8:4f:b7:50:87:d6:4d:86:a2:25:cb:79:61:2b:62:
bd:58:3f:58:72:35:41:f5:d8:8e:1e:ff:2a:36:fd:
3b:a6:ec:59:e7:1f:81:0c:4d:ff:25:e1:dd:ae:7c:
b4:c7:5e:4c:7a:1a:dc:ce:9c:46:7a:99:11:a2:0f:
e9:39:a4:17:a9:a0:99:89:a6:f0:3d:ac:2c:17:ec:
70:62:fe:0e:5e:7f:08:d9:7b:2f:87:bb:3d:dd:11:
9a:94:43:e4:ba:08:7e:b3:b0:35:3f:b6:29:22:79:
58:ce:06:08:0e:b3:8c:f5:1c:b4:f1:df:d3:92:6b:
ce:7d:28:35:d3:34:12:d0:49:10:63:27:13:3f:0b:
d6:81:a4:c1:2f:1d:2e:25:c1:9f:16:5d:d9:10:cb:
8f:72:5b:28:35:7d:6d:c5:4c:56:e7:e1:32:93:2a:
b9:57:98:7b:50:f6:05:bf:40:48:04:4b:e5:95:f0:
6f:42:c9:1b:b6:bc:09:ae:ed:1c:c2:e3:e1:73:0e:
20:62:0b:5b:54:21:ae:29:1c:8b:52:d7:1f:99:39:
1f:98:40:38:a6:b4:77:f4:9a:77:63:b4:cc:84:46:
4c:03:d4:f3:be:50:a1:7c:e6:74:5c:6a:e4:73:32:
14:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:53:C3:37:F8:8B:BF:45:14:AF:8C:31:6F:06:B2:07:31:B4:58:06
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/MFPDN_iLv0UUr4wxbwayBzG0WAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.171.0/24
Signature Algorithm: sha256WithRSAEncryption
67:6b:42:32:ec:41:b9:d7:fa:b9:2f:05:f9:47:b7:7a:56:4b:
3b:9a:d9:99:bf:11:76:10:3f:36:04:35:df:b8:b2:98:95:c4:
7b:e6:9d:e0:3e:3b:6c:ba:12:80:00:d1:e3:f5:6c:c3:75:8d:
5d:6e:ce:39:58:29:03:a5:ee:c3:d9:f9:c7:1e:f3:15:a9:68:
44:e3:d9:83:78:4e:91:fe:ff:30:2e:61:ff:a2:fe:9d:00:e8:
cf:e0:77:9a:e8:ee:4f:66:08:80:3e:8d:13:64:9b:84:36:fe:
36:1e:cc:3b:de:73:41:5e:df:78:34:5f:38:45:b9:5d:d3:c2:
31:51:9e:f1:91:44:58:ae:60:a0:32:73:c1:9e:95:4a:4d:bb:
61:cd:b1:76:fc:41:39:b9:fe:bb:4f:41:d2:89:5d:ff:db:f9:
29:2f:92:31:ba:5b:bd:1a:90:ab:88:e5:de:5a:dd:00:12:dd:
62:86:b7:fc:a0:c7:76:16:5a:28:e5:e0:68:6b:c6:1a:98:e4:
c0:4e:1d:74:2e:87:dd:ed:a3:5a:3f:3e:2e:c9:e0:f4:07:18:
5a:db:1c:b6:c0:0f:0f:bf:1d:c4:a8:a8:d2:c6:3c:b7:b5:db:
81:42:35:1e:31:25:69:00:8a:43:9c:13:ed:47:ba:7a:b9:88:
3f:59:c7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org