Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/mZxMwhd0n5I_QC7MLe9X_9H5i14.roa
File: mZxMwhd0n5I_QC7MLe9X_9H5i14.roa (raw, json)
Hash identifier: C3eac09WZLyhlbhjCpSLsVoYLYc8G6dK4Zwq+YDNpPA=
Subject key identifier: 99:9C:4C:C2:17:74:9F:92:3F:40:2E:CC:2D:EF:57:FF:D1:F9:8B:5E
Certificate issuer: /CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Certificate serial: 0E2381BD
Authority key identifier: E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/mZxMwhd0n5I_QC7MLe9X_9H5i14.roa
Signing time: Sat 01 Jan 2022 03:02:58 +0000
ROA not before: Sat 01 Jan 2022 03:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201867
IP address blocks: 213.152.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237207997 (0xe2381bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Validity
Not Before: Jan 1 03:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=999c4cc217749f923f402ecc2def57ffd1f98b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:07:82:7b:98:46:85:8d:6d:3e:88:c6:93:a0:
f1:23:cf:61:32:bd:99:92:25:50:87:36:78:76:8b:
ea:43:01:93:70:99:40:4b:25:8e:61:6d:25:76:cc:
c7:a1:f6:c1:6f:38:6e:fc:88:3d:41:88:5c:b7:c3:
60:94:de:50:83:5d:01:36:c2:64:51:f7:d1:9a:e8:
9f:97:25:2e:8b:c9:f3:d9:18:8c:fd:94:dd:7c:3a:
d9:35:79:aa:f3:32:00:00:fd:f8:0b:ce:b3:5e:99:
66:2c:a3:c3:5a:24:26:93:03:d7:a0:68:83:65:b7:
3e:5e:76:79:85:33:6b:5d:a4:2b:b4:cb:bb:ae:a7:
e9:0d:f8:36:59:4a:2d:b3:b0:c8:34:d4:10:15:ce:
6a:c4:0f:eb:1d:25:e5:3f:f8:48:b4:a4:b4:67:09:
30:99:56:df:6f:4a:9c:29:f0:b1:34:b7:e3:ec:69:
ca:3b:f2:93:7f:7d:d3:59:be:5f:1b:bb:36:77:fe:
f2:cf:29:8a:f4:ee:c5:21:eb:12:ae:53:ab:02:ba:
fa:99:f5:e9:fd:90:86:4c:76:69:71:06:7e:95:c6:
af:32:17:3d:37:cf:1f:44:b9:b3:78:d0:14:bd:b3:
b9:b2:fa:2b:fa:9e:cb:0e:87:0e:6c:c2:15:e1:44:
c5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9C:4C:C2:17:74:9F:92:3F:40:2E:CC:2D:EF:57:FF:D1:F9:8B:5E
X509v3 Authority Key Identifier:
keyid:E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/mZxMwhd0n5I_QC7MLe9X_9H5i14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.152.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:20:96:e5:b4:39:dc:83:80:12:18:94:72:da:87:25:04:94:
a5:b5:ca:34:e9:ac:6c:9c:03:27:fb:e3:13:ca:f6:90:84:3a:
0c:8d:1a:e4:0a:2f:19:79:b5:e7:9d:41:22:5a:6e:45:dc:00:
3b:73:3f:7f:f9:76:42:7e:ed:d1:a9:d2:51:94:42:c8:1a:61:
2b:ac:2d:bf:d6:18:14:6a:01:d4:d8:c1:07:83:0b:4e:0a:55:
c0:1e:5d:6b:4d:62:4a:2a:ca:04:28:92:36:cc:11:8f:12:29:
df:5e:d7:8a:c2:ac:3a:7c:14:0d:cd:e0:52:1a:49:f1:c5:1c:
a2:71:ae:8f:5a:f1:7c:23:fa:05:21:4e:16:6e:7f:71:f8:bd:
bf:03:88:10:2e:43:18:91:ee:36:9a:01:29:f5:f3:dd:5c:f6:
1c:62:b9:15:29:ea:6d:49:d7:07:32:de:be:50:16:f5:eb:ce:
e7:07:08:75:fe:67:99:4a:e5:61:82:32:5b:30:5b:bb:5e:1b:
de:c5:f6:e2:1d:15:ad:34:7b:67:39:f9:fa:81:e9:90:cc:e4:
43:7e:64:68:3b:f0:63:48:e5:3d:82:d7:36:d2:7a:6a:15:9b:
a8:88:49:51:da:af:2a:ab:71:c2:75:c3:f5:98:7e:0c:f7:db:
fc:a3:85:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-fra.rpki-client.org