Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/MzBcJYomlL9Ew5d3w68QVwaHNAo.roa
File: MzBcJYomlL9Ew5d3w68QVwaHNAo.roa (raw, json)
Hash identifier: l0/CZXIhAdqW4yZmUPdj+/AWzFX2/MRCxQS6XmCHweg=
Subject key identifier: 33:30:5C:25:8A:26:94:BF:44:C3:97:77:C3:AF:10:57:06:87:34:0A
Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799
Certificate serial: 05A4079B
Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/MzBcJYomlL9Ew5d3w68QVwaHNAo.roa
Signing time: Mon 06 Jun 2022 17:02:20 +0000
ROA not before: Mon 06 Jun 2022 17:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205330
IP address blocks: 193.239.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94635931 (0x5a4079b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799
Validity
Not Before: Jun 6 17:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33305c258a2694bf44c39777c3af10570687340a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:48:08:f8:c2:43:e9:35:b2:6c:fc:47:e3:f2:
14:a1:d0:7a:c7:1a:f5:d8:c3:fc:98:5d:8c:7f:f5:
e8:b2:71:0b:fa:8f:ca:a2:0d:15:3e:83:4c:d2:fd:
10:c3:4d:7f:46:3e:ce:3a:8e:05:c8:3e:3d:9d:1b:
1f:b1:9d:a3:33:00:ee:8c:25:fc:33:50:2b:b5:4c:
c1:7a:e2:f2:23:1f:c2:c3:9e:40:49:42:94:ce:c8:
3b:12:99:aa:bf:94:f8:ae:7a:41:3b:7f:ca:99:f9:
c2:eb:51:36:44:eb:57:b9:9f:90:bb:df:ef:bc:d1:
53:1d:d0:99:7c:02:07:4e:c3:43:35:d6:30:dd:58:
df:9d:06:cf:a4:6c:24:0b:90:9d:bf:00:43:8c:c5:
f4:e5:8d:47:b3:33:eb:47:c2:ae:00:f0:46:5b:62:
05:25:fc:39:d4:b7:da:83:82:87:f1:f6:1e:25:41:
a3:fb:49:41:fa:27:7c:fb:16:0a:6d:e1:c5:b4:2e:
b9:e0:63:24:f4:74:31:4d:5d:10:69:be:b4:e2:96:
0f:2b:11:58:5d:89:de:ff:0d:db:48:48:06:3c:27:
3b:3b:b0:89:c0:71:a5:10:fb:59:c1:ad:9b:e4:c9:
89:18:a5:78:00:2b:2c:7f:02:4b:7b:f0:f1:6f:c6:
ad:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:30:5C:25:8A:26:94:BF:44:C3:97:77:C3:AF:10:57:06:87:34:0A
X509v3 Authority Key Identifier:
keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/MzBcJYomlL9Ew5d3w68QVwaHNAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.203.0/24
Signature Algorithm: sha256WithRSAEncryption
89:c2:fa:67:a2:19:5f:67:99:e2:c0:0d:aa:75:04:29:6e:ef:
f4:ca:61:a7:84:f0:02:ac:d5:0a:cf:d8:73:75:7d:79:66:d2:
e1:96:be:b3:a9:b7:95:85:70:25:53:33:d9:93:f5:f2:a3:d6:
47:9d:a3:31:3b:06:3f:fb:f8:54:48:42:61:0e:2a:3e:f9:17:
fc:17:18:3a:99:44:ba:b4:2a:67:ea:33:2b:21:a0:dc:57:be:
62:4c:31:11:33:09:79:0e:76:3b:1e:4a:d8:93:9c:da:3d:c5:
ae:37:3c:b3:9c:57:cf:e5:df:fe:75:a1:d1:30:63:0c:ec:33:
ec:cf:5b:fd:5f:e9:14:97:64:4e:16:4d:30:57:40:00:5a:19:
be:46:45:a3:88:6b:8d:0c:00:81:43:bc:1f:54:a0:26:d4:45:
fe:d9:d2:65:98:1d:7c:19:11:44:36:ea:c8:21:53:94:72:e6:
7e:d7:c4:4e:b3:d4:0c:fe:aa:db:d8:04:fb:f1:74:74:77:bb:
b2:b2:55:5d:0c:32:33:6c:90:0e:a3:bb:62:6a:01:7f:a6:aa:
52:26:4d:d4:15:2f:c3:b4:b5:65:2c:ed:78:c7:ef:04:ee:44:
b0:55:a0:46:75:84:b5:97:d1:aa:f2:22:1c:06:99:a2:b6:8c:
34:b4:42:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:19 2024 by rpki-client on console-ams.rpki-client.org