Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/mCbOcbn1BG8ghQf9z5VBlHw_zII.roa
File: mCbOcbn1BG8ghQf9z5VBlHw_zII.roa (raw, json)
Hash identifier: npl7zHsh9DliODNhIpFNMOn0TLwIf4WUuKUCE5ufaKs=
Subject key identifier: 98:26:CE:71:B9:F5:04:6F:20:85:07:FD:CF:95:41:94:7C:3F:CC:82
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01842DAB44B787D75B2BA8B32F551A95A529
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/mCbOcbn1BG8ghQf9z5VBlHw_zII.roa
Signing time: Mon 31 Oct 2022 10:51:49 +0000
ROA not before: Mon 31 Oct 2022 10:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11402
IP address blocks: 93.114.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:ab:44:b7:87:d7:5b:2b:a8:b3:2f:55:1a:95:a5:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Oct 31 10:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9826ce71b9f5046f208507fdcf9541947c3fcc82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0e:83:85:b6:26:27:e9:36:7c:62:e0:5d:a3:
fa:d0:e8:77:cd:db:47:7b:ea:29:0b:cf:ad:81:f2:
e8:f9:33:58:3b:57:33:c1:64:5e:94:c8:26:02:10:
16:84:f7:d8:1f:b5:a9:f8:84:cb:b5:92:3c:63:b5:
92:47:60:64:ba:6e:15:8b:10:65:95:ba:8e:c5:29:
bd:00:d4:fc:75:5c:0e:b0:7f:7e:8e:39:8f:a1:66:
57:08:2a:87:fe:7b:0a:ed:2e:ec:39:cc:f3:46:0c:
ce:d7:8b:8d:43:57:a1:ab:91:f4:ea:ac:53:a1:a3:
c6:5e:de:84:18:8b:18:ad:a5:72:4c:d9:dc:65:7e:
eb:1c:a5:cb:50:00:6d:57:5a:f1:0c:9d:27:82:54:
47:99:05:8b:89:cf:8b:83:bd:2d:16:ce:cc:8c:d1:
ae:ef:8d:55:71:0d:82:73:c7:cf:9a:39:87:1c:d8:
50:43:f6:dc:14:dd:a2:b3:00:35:15:2a:38:0c:aa:
ff:12:32:da:b1:01:41:5c:3b:4e:51:0f:e1:e5:c9:
23:7c:ab:47:79:31:12:11:14:3d:33:0e:53:ab:cd:
32:77:39:2e:81:13:69:11:36:57:84:5f:81:6d:fd:
eb:d6:63:7e:06:f6:fc:61:9b:5e:37:3b:df:00:71:
80:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:26:CE:71:B9:F5:04:6F:20:85:07:FD:CF:95:41:94:7C:3F:CC:82
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/mCbOcbn1BG8ghQf9z5VBlHw_zII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.61.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:3a:6b:6d:59:9c:47:fc:f5:33:36:37:37:86:b7:9c:99:ec:
ca:58:ac:d1:9f:6d:94:2c:35:8d:97:18:f0:fc:12:10:c6:a7:
bb:f8:79:44:90:84:59:e5:06:7f:c4:f6:c1:e4:61:86:6b:19:
a2:63:44:af:86:4a:84:bd:84:60:f0:30:0e:d1:b8:ed:f7:e6:
a3:6e:44:a3:1b:34:ec:84:74:e6:0e:c4:bc:e1:80:a8:4d:2a:
0e:aa:7f:e1:d2:4f:8d:7a:99:6f:ea:a8:ae:7c:1d:65:42:7d:
cf:f0:3f:68:31:45:b1:1a:78:81:ae:4d:a0:f9:25:07:f9:89:
87:f1:b2:96:cc:a0:4b:db:f9:33:1e:38:f5:3d:f1:6e:6d:ed:
cc:f0:ba:f4:03:ed:3a:da:a0:6a:4f:70:fd:16:12:8d:5c:19:
b1:fa:64:4b:f0:a9:15:bb:f3:db:2e:3d:fd:35:53:ef:32:55:
5c:a6:bd:6c:ff:8e:12:6b:10:cd:2c:3e:bb:0a:b9:dd:06:6e:
72:7a:fa:d1:09:00:34:9c:d3:b7:75:83:ca:a9:a4:a7:a0:dd:
06:c3:45:a8:53:95:a4:2d:0b:7f:34:aa:b3:cd:8c:e1:bb:0f:
f4:1f:cc:b8:ec:2d:86:f7:c5:fb:90:73:95:7b:0f:35:5b:51:
aa:c0:5f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org