Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/1aff10-dd29-439f-8d23-bc9a5f6605fc/1/mhJn7yW9JBnfTRZuxs20XTRQdss.roa
File: mhJn7yW9JBnfTRZuxs20XTRQdss.roa (raw, json)
Hash identifier: oX6aVN5OulaizStCHpOEnMd4q/gDhfU9GkIxAdLPy1w=
Subject key identifier: 9A:12:67:EF:25:BD:24:19:DF:4D:16:6E:C6:CD:B4:5D:34:50:76:CB
Certificate issuer: /CN=7373c1ff55403d4792346493f769f8d033bef02c
Certificate serial: 17F0768F
Authority key identifier: 73:73:C1:FF:55:40:3D:47:92:34:64:93:F7:69:F8:D0:33:BE:F0:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c3PB_1VAPUeSNGST92n40DO-8Cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/1aff10-dd29-439f-8d23-bc9a5f6605fc/1/mhJn7yW9JBnfTRZuxs20XTRQdss.roa
Signing time: Sat 01 Jan 2022 03:55:02 +0000
ROA not before: Sat 01 Jan 2022 03:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57161
IP address blocks: 213.108.244.0/23 maxlen: 24
2a0d:16c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401634959 (0x17f0768f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7373c1ff55403d4792346493f769f8d033bef02c
Validity
Not Before: Jan 1 03:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a1267ef25bd2419df4d166ec6cdb45d345076cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:68:06:4a:14:38:26:e3:01:94:48:66:84:2a:
ab:45:6e:2d:d4:c3:a2:69:b9:be:a1:ef:2a:f9:e7:
0d:d7:b5:cc:6c:31:62:ba:af:24:ff:1c:c4:fb:19:
c1:55:55:ee:2c:2f:86:de:17:02:74:58:07:4a:da:
6c:d1:ca:2c:b2:28:07:bf:0f:43:11:da:d6:76:55:
e1:7e:e8:f9:b7:61:44:ce:97:b5:c7:90:b8:2d:8f:
fd:46:4d:d0:18:35:40:2d:05:74:65:c7:5e:f7:18:
57:77:c2:80:37:1c:47:a4:06:3f:33:46:0a:00:3f:
7a:29:8d:52:33:cd:00:6c:f8:90:69:b4:cc:cf:38:
9b:38:51:eb:20:09:02:fc:f0:d5:a9:ed:99:6c:72:
03:05:42:16:2b:0c:43:c9:7d:85:1a:ae:b2:43:b5:
f3:77:02:26:b4:b5:94:ea:bb:09:ff:a8:d6:d2:11:
c4:55:87:d2:d8:33:11:e7:31:b7:4c:49:99:f1:a6:
41:9f:9f:7f:3a:a1:9b:1e:8f:65:39:84:75:67:19:
3b:9a:38:f3:02:d6:43:5b:46:fa:99:78:dd:51:89:
ac:aa:be:93:56:3e:5a:6c:ff:9e:66:5a:f8:f4:b3:
c7:49:c8:2a:1e:05:38:df:7f:6e:46:00:77:ba:ae:
82:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:12:67:EF:25:BD:24:19:DF:4D:16:6E:C6:CD:B4:5D:34:50:76:CB
X509v3 Authority Key Identifier:
keyid:73:73:C1:FF:55:40:3D:47:92:34:64:93:F7:69:F8:D0:33:BE:F0:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3PB_1VAPUeSNGST92n40DO-8Cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/1aff10-dd29-439f-8d23-bc9a5f6605fc/1/mhJn7yW9JBnfTRZuxs20XTRQdss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/1aff10-dd29-439f-8d23-bc9a5f6605fc/1/c3PB_1VAPUeSNGST92n40DO-8Cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.244.0/23
IPv6:
2a0d:16c0::/32
Signature Algorithm: sha256WithRSAEncryption
81:54:eb:9f:03:22:df:02:8d:10:69:c0:eb:f9:9c:2e:02:39:
1c:dd:33:9d:e5:1e:11:ff:55:08:46:d9:19:c0:b5:a9:20:20:
83:3d:85:8e:71:7d:ca:6e:d3:ea:e5:88:26:12:20:b8:f4:21:
77:6b:a2:4d:ac:0a:1c:9e:6d:0a:53:6b:84:d6:19:d1:31:05:
e7:db:4b:93:3c:91:7a:e6:15:dc:80:93:94:a5:59:69:4b:77:
25:24:03:ec:21:2a:df:30:eb:4e:2f:60:ef:a8:88:ac:e9:ba:
74:bf:20:74:18:4c:bd:80:b8:87:ad:3e:79:a8:3a:64:0d:18:
b4:d0:b4:a2:ef:5e:22:57:78:da:c8:80:6f:71:1b:2a:c2:a0:
36:61:a6:d8:8b:0d:a5:ba:c3:3a:06:d1:36:66:38:6f:33:1c:
ad:c5:05:9f:3a:57:8f:40:0b:18:9e:51:cf:31:7a:f9:bd:ed:
1c:aa:10:2a:2a:cb:d6:c4:4e:2d:16:62:36:43:a9:01:a7:92:
e4:5e:a3:c1:d2:62:b0:c7:11:a1:46:58:1c:95:f7:16:b8:82:
aa:68:03:db:06:fe:10:ba:fb:34:89:22:c5:eb:b1:b8:6f:b1:
d9:15:31:20:69:c6:0a:e8:9a:9d:c5:ab:11:7d:7d:e9:99:3c:
48:6d:35:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:10 2023 by rpki-client on console-ams.rpki-client.org