Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/mkghX6iCxQ_Ei96x3dXUFjg-Lb0.roa
File: mkghX6iCxQ_Ei96x3dXUFjg-Lb0.roa (raw, json)
Hash identifier: DLarIht1KI83Lf/c//i2FqyDUPHtZAQHWCm7K3nyfLg=
Subject key identifier: 9A:48:21:5F:A8:82:C5:0F:C4:8B:DE:B1:DD:D5:D4:16:38:3E:2D:BD
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0184F07AF2E65C4493C1EA346DD3051BC536
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/mkghX6iCxQ_Ei96x3dXUFjg-Lb0.roa
Signing time: Thu 08 Dec 2022 06:45:00 +0000
ROA not before: Thu 08 Dec 2022 06:45:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 217.113.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f0:7a:f2:e6:5c:44:93:c1:ea:34:6d:d3:05:1b:c5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Dec 8 06:45:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a48215fa882c50fc48bdeb1ddd5d416383e2dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:2a:e0:cc:e0:8d:54:86:32:db:af:6e:c1:2e:
04:70:dd:0d:76:76:6a:56:13:4f:be:c4:e9:06:6c:
d1:2d:a4:e0:0d:21:b1:4d:5b:d0:b8:ab:1a:a6:01:
60:19:93:0d:17:26:39:bd:43:0d:d0:e1:3b:f2:20:
dd:c7:14:7b:c1:97:3b:56:a2:19:8e:24:e3:e5:69:
d0:f0:cf:20:a8:95:68:fd:06:72:12:4d:9c:2e:8c:
f4:c2:3d:02:74:9c:16:f9:9a:e8:a4:27:53:e6:19:
c0:54:9c:54:ea:32:9e:ee:a5:62:41:97:ad:6a:8d:
cd:dd:e7:f2:e6:08:67:a0:09:74:04:68:a9:20:77:
e2:55:18:ef:8a:a3:27:b3:88:13:34:76:05:2f:03:
76:1b:e2:ec:9f:42:fb:d2:35:a1:c4:a9:f2:e5:fe:
69:a3:ec:8f:31:4c:e1:99:f5:02:00:d1:1a:52:34:
8e:a0:38:c0:f1:f0:61:7f:e4:d6:f9:6e:bb:5c:4c:
ce:c8:4a:1e:06:f5:90:ae:10:59:63:50:b6:cd:b5:
98:0e:99:b0:5e:a5:92:eb:0d:1e:75:5d:b0:61:62:
45:d8:5b:fc:7e:76:57:ef:23:1e:66:0f:27:b2:9e:
ba:e3:9e:ba:db:31:1c:e7:35:f5:56:d6:8d:b7:76:
9c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:48:21:5F:A8:82:C5:0F:C4:8B:DE:B1:DD:D5:D4:16:38:3E:2D:BD
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/mkghX6iCxQ_Ei96x3dXUFjg-Lb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.24.0/21
Signature Algorithm: sha256WithRSAEncryption
7b:75:53:1f:c5:ea:ce:1a:f2:e3:46:11:26:60:7a:d6:6b:97:
1e:65:68:39:c2:d9:2f:33:fd:5a:92:1b:4f:4a:5c:63:20:45:
42:4c:8a:59:c4:49:50:91:03:ed:e5:24:c9:e0:ba:29:a0:7c:
90:3a:9d:3a:2d:5c:ab:6e:59:b4:39:06:7d:3d:9e:cd:9e:97:
87:38:8f:d2:48:80:7c:6f:75:92:a1:2c:f2:ee:0a:9e:91:ac:
30:a9:fb:36:91:8c:31:de:85:0c:43:4d:bd:4e:b7:cb:9b:93:
03:0a:fd:78:49:56:c5:93:f7:e6:71:21:a0:c0:06:dc:92:17:
f6:ff:4e:82:76:2b:e4:84:50:90:36:68:cf:52:0e:7a:c3:d3:
56:83:84:2e:fd:10:07:10:d4:af:3a:87:a2:0d:36:63:c9:37:
5d:ea:72:43:52:3b:02:ec:0a:20:e9:5c:d0:f8:e4:ec:c0:14:
9a:be:84:2c:a8:cb:49:af:b8:91:29:0d:8d:40:ce:18:95:c9:
7a:54:dd:8c:9a:d8:14:6d:1c:0f:18:05:26:f2:af:31:83:ad:
ae:0a:1b:fc:67:19:9c:73:c0:a3:23:53:e8:ff:03:bd:c4:fc:
35:db:e8:bf:1d:51:6c:a9:16:00:66:b9:e9:d1:69:2e:3f:c6:
dd:02:d1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org