Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/e4f2db-6f46-4761-adfe-7327df6bdd10/1/MQMDFhM4YChcfthrt2JE1ynHPps.roa
File: MQMDFhM4YChcfthrt2JE1ynHPps.roa (raw, json)
Hash identifier: +GV1cOsdkxhI0HwgCd7hcUuHdkJQ16C8LzEOh3KKyjc=
Subject key identifier: 31:03:03:16:13:38:60:28:5C:7E:D8:6B:B7:62:44:D7:29:C7:3E:9B
Certificate issuer: /CN=6e3ee2b8400208a7eea45060f4b7a83c43e8de7c
Certificate serial: 01D765
Authority key identifier: 6E:3E:E2:B8:40:02:08:A7:EE:A4:50:60:F4:B7:A8:3C:43:E8:DE:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bj7iuEACCKfupFBg9LeoPEPo3nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/e4f2db-6f46-4761-adfe-7327df6bdd10/1/MQMDFhM4YChcfthrt2JE1ynHPps.roa
Signing time: Mon 28 Mar 2022 13:29:26 +0000
ROA not before: Mon 28 Mar 2022 13:29:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205234
IP address blocks: 91.201.34.0/24 maxlen: 24
91.201.35.0/24 maxlen: 24
91.201.32.0/24 maxlen: 24
91.201.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120677 (0x1d765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e3ee2b8400208a7eea45060f4b7a83c43e8de7c
Validity
Not Before: Mar 28 13:29:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31030316133860285c7ed86bb76244d729c73e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:6d:33:af:60:7c:ce:48:67:a5:06:2e:b7:2b:
8d:03:14:19:3c:78:db:c4:78:c8:fb:fd:96:2f:e2:
ff:a9:59:4c:89:b0:68:96:27:ae:57:7f:f7:e7:37:
d0:66:dd:93:35:55:4f:4e:e3:f1:60:1b:88:a4:52:
5b:b7:d0:55:af:af:db:13:e2:c6:9c:5e:1b:2e:fc:
a4:1b:43:b9:6b:6d:a8:b4:38:c9:26:5d:a9:2e:e7:
4d:85:af:b5:d9:f4:3a:86:14:9a:01:da:2a:b6:97:
cd:a9:2e:be:3e:88:37:0e:4e:ab:c2:df:65:8c:6a:
7d:27:e1:9f:a0:6c:34:2f:1c:84:1a:51:35:78:e3:
4d:28:75:81:18:96:71:0a:16:4a:e6:16:28:71:87:
de:03:1c:2e:77:2c:44:c5:0a:46:1d:89:87:a2:43:
29:39:8e:d8:3c:fe:a7:b9:6b:0d:80:4b:f8:50:f7:
3b:34:d5:d5:74:90:15:d8:ea:08:8d:cd:63:56:67:
ee:e9:a3:8f:c5:64:ff:2b:93:9d:61:21:0b:f6:d3:
8e:01:48:b3:80:a2:9c:b1:93:1e:89:14:33:d0:25:
e6:4f:56:0b:0f:5c:de:06:d2:6a:96:ce:9a:dd:d6:
26:f0:7a:75:b9:c9:33:c5:dc:00:58:ca:4b:43:e4:
53:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:03:03:16:13:38:60:28:5C:7E:D8:6B:B7:62:44:D7:29:C7:3E:9B
X509v3 Authority Key Identifier:
keyid:6E:3E:E2:B8:40:02:08:A7:EE:A4:50:60:F4:B7:A8:3C:43:E8:DE:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bj7iuEACCKfupFBg9LeoPEPo3nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/e4f2db-6f46-4761-adfe-7327df6bdd10/1/MQMDFhM4YChcfthrt2JE1ynHPps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/e4f2db-6f46-4761-adfe-7327df6bdd10/1/bj7iuEACCKfupFBg9LeoPEPo3nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.32.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:ff:6f:47:52:5c:46:8b:12:ed:ca:25:8d:87:2e:72:28:d2:
00:fc:e1:a2:b4:bf:98:4d:63:4b:4e:84:aa:da:2f:87:5a:ce:
45:5f:be:f5:31:ba:69:cd:ae:55:15:7b:04:90:8f:68:9b:f7:
09:eb:a3:40:c0:d3:05:29:be:74:30:c9:a4:44:60:8b:53:8b:
e0:62:cd:f6:15:41:52:96:de:1f:5d:e1:e9:8e:7e:66:d3:fe:
66:b8:cb:c3:b3:02:c6:66:aa:57:6d:8b:60:c5:a1:3e:40:d5:
34:ae:97:3e:67:7e:b3:d3:24:5a:2e:85:6e:95:98:1d:4d:f5:
4b:c0:d1:1f:c4:9c:e7:36:11:fb:d8:55:b8:b1:48:5e:3d:49:
de:47:e9:4f:7b:1f:86:b9:e9:6c:c0:27:52:91:4c:d6:9d:9e:
68:b2:4a:13:a8:11:e0:14:35:aa:76:07:3e:f5:d1:cb:b4:98:
a6:00:74:c8:df:02:1c:25:f3:14:7d:c8:f0:20:f7:d5:66:f8:
b7:02:b5:c5:df:df:7e:81:a5:d4:a5:1c:f6:83:bf:44:85:87:
ef:5c:e5:c9:e9:c3:4b:99:d9:be:bc:b7:46:56:30:66:68:fe:
da:33:39:32:73:2e:af:53:ca:84:e6:6c:8f:62:52:b3:68:63:
5e:02:4d:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org