Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mzhzQ1gqnHBbxn7qa-hoDfTU3Wk.roa
File: mzhzQ1gqnHBbxn7qa-hoDfTU3Wk.roa (raw, json)
Hash identifier: X3tTDhKOd4Y1gbZTg6Zsf8OoiAHZdhvcJ1FUxE1qteE=
Subject key identifier: 9B:38:73:43:58:2A:9C:70:5B:C6:7E:EA:6B:E8:68:0D:F4:D4:DD:69
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 0182B589B945829288147F4781CCDD151FAF
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mzhzQ1gqnHBbxn7qa-hoDfTU3Wk.roa
Signing time: Fri 19 Aug 2022 09:57:58 +0000
ROA not before: Fri 19 Aug 2022 09:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64473
IP address blocks: 107.150.174.0/24 maxlen: 24
2a07:22c0:c100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b5:89:b9:45:82:92:88:14:7f:47:81:cc:dd:15:1f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Aug 19 09:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b387343582a9c705bc67eea6be8680df4d4dd69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ac:db:e2:4c:8e:54:2c:e5:40:63:12:69:1b:
e2:26:be:7a:60:78:d0:77:23:85:82:69:57:f1:6e:
d2:99:4f:e3:9a:8f:5a:bc:85:90:2b:c0:cc:02:e6:
01:81:b8:cc:f3:45:ea:9a:0a:3b:1d:23:e5:15:3d:
16:19:f4:11:fc:5c:bc:d7:7f:b5:0b:1f:aa:d6:2d:
16:d6:e8:a2:25:2d:5a:3b:33:37:3a:42:ac:5c:3b:
a7:df:9b:bc:1f:3a:c3:49:72:01:b6:02:73:29:de:
97:06:5c:5c:d3:48:d3:4b:25:f6:60:f0:e1:17:e3:
0e:7b:5c:e3:33:f0:cf:5a:59:f2:a4:0e:b8:1b:21:
9b:36:d9:20:1c:59:46:b3:42:a2:bf:58:30:75:50:
84:5e:28:4c:cd:db:64:0e:09:ce:92:29:38:08:88:
94:84:06:a3:67:00:cf:b4:a9:64:d1:a1:44:3f:4a:
75:7f:77:93:7d:27:52:3d:a9:41:bb:5f:e1:47:17:
4f:a1:e3:90:dc:3a:27:fd:5c:79:ba:f7:ac:d8:4e:
e7:2a:55:3e:e0:8f:74:06:f7:d4:79:56:41:c3:00:
11:53:23:ff:a6:d7:3b:d0:0f:c9:81:54:52:3f:00:
9c:d2:ea:bc:d8:d4:32:86:ad:e1:26:ce:44:d4:89:
ee:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:38:73:43:58:2A:9C:70:5B:C6:7E:EA:6B:E8:68:0D:F4:D4:DD:69
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mzhzQ1gqnHBbxn7qa-hoDfTU3Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.150.174.0/24
IPv6:
2a07:22c0:c100::/40
Signature Algorithm: sha256WithRSAEncryption
2b:44:c1:9b:fd:09:a6:4e:d8:c2:cb:26:f2:c1:29:95:6e:d6:
ae:6a:06:01:81:85:54:0d:fa:ce:1d:23:84:67:f1:03:10:94:
56:a9:a5:5e:da:c6:c2:56:c3:e0:94:52:b8:98:0c:38:a2:5d:
a3:90:ac:63:b0:22:d8:96:bb:ee:1c:fc:31:8b:91:2b:10:cc:
66:96:9e:b5:0d:33:85:98:28:97:19:2b:ca:33:2e:52:96:e8:
25:49:c8:bb:16:ec:ce:94:86:b0:02:f4:4c:35:b7:ad:d4:b8:
5c:69:80:53:d4:ce:cb:db:22:42:41:6c:a6:92:a8:39:d0:0c:
3e:1e:52:de:5c:6e:94:16:79:98:f4:4d:98:9e:2f:36:c4:67:
e1:14:99:df:5a:e9:69:ef:08:ac:0d:d0:d5:4b:f5:2d:e0:c2:
0a:03:b4:4f:0c:c7:05:62:7b:cf:89:36:12:a4:35:ce:69:d6:
ae:93:08:00:49:c9:97:1f:30:bd:43:10:fb:22:84:db:a5:2f:
06:1a:23:ac:86:21:72:db:26:0b:b3:ee:f1:19:79:f5:ff:b5:
cf:d3:73:83:87:16:53:96:1d:7f:20:ce:5f:d2:f6:22:c1:2f:
73:83:fd:d5:b8:d3:f6:92:6f:c9:93:21:a9:e1:b9:6c:d4:6a:
2a:fc:8c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org