Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/MPpyFInof_85wBIl90OI-zXKfKQ.roa
File: MPpyFInof_85wBIl90OI-zXKfKQ.roa (raw, json)
Hash identifier: yICzA1/KNOVfqCcWaBWmdTjiZjoR/JQ9dbo4TvY37rw=
Subject key identifier: 30:FA:72:14:89:E8:7F:FF:39:C0:12:25:F7:43:88:FB:35:CA:7C:A4
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 05C41202
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/MPpyFInof_85wBIl90OI-zXKfKQ.roa
Signing time: Sat 01 Jan 2022 10:02:23 +0000
ROA not before: Sat 01 Jan 2022 10:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33965
IP address blocks: 193.72.56.0/25 maxlen: 25
193.72.52.0/24 maxlen: 24
193.72.64.0/24 maxlen: 28
193.72.60.0/24 maxlen: 24
193.72.36.0/24 maxlen: 24
193.72.32.0/24 maxlen: 24
193.72.40.0/24 maxlen: 24
193.72.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96735746 (0x5c41202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: Jan 1 10:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30fa721489e87fff39c01225f74388fb35ca7ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:97:a8:9a:f1:9b:cd:77:45:ba:bf:66:26:1c:
38:f8:1f:fb:ab:cd:92:01:54:e6:66:e2:f6:1f:ec:
f6:e9:7f:b9:d6:a9:f8:6a:1e:62:1a:31:59:16:42:
54:b4:0d:28:18:b6:c0:55:cd:f4:c3:82:7b:1d:2a:
e4:9a:1b:5c:a4:35:66:6b:da:31:31:a3:09:1e:6c:
45:cc:de:fa:06:1c:5c:e9:0f:86:92:3e:03:7c:5d:
8d:d3:87:ed:da:da:54:d8:51:67:d7:53:42:0a:6f:
e7:db:19:07:d2:3c:51:b1:7c:f5:97:fd:88:71:0e:
40:77:d7:66:0f:f0:c2:8b:c2:5c:05:9e:20:36:15:
f9:9a:25:f0:a7:e1:7e:e2:2c:01:bd:16:7e:37:be:
f9:ff:e5:45:a9:23:41:a4:20:bf:2e:b2:2c:4b:c7:
14:06:eb:28:18:f7:66:e7:b0:b2:9f:5a:e0:8e:43:
06:b8:76:d3:b4:cc:aa:37:b3:5c:8f:1b:8b:8c:ab:
7b:97:3f:28:3f:b6:32:94:09:b8:59:c9:7d:ac:ed:
52:8a:a8:a8:25:ec:56:b2:97:11:da:76:f4:e5:5b:
8a:03:33:28:11:45:1c:ae:fd:1f:46:9d:ea:fd:34:
0d:f7:ae:fe:13:f1:da:47:f8:fe:df:78:32:b3:bd:
57:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FA:72:14:89:E8:7F:FF:39:C0:12:25:F7:43:88:FB:35:CA:7C:A4
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/MPpyFInof_85wBIl90OI-zXKfKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.72.32.0/24
193.72.36.0/24
193.72.40.0/24
193.72.48.0/24
193.72.52.0/24
193.72.56.0/25
193.72.60.0/24
193.72.64.0/24
Signature Algorithm: sha256WithRSAEncryption
db:9d:15:a0:ca:3a:c7:d2:ed:c9:5a:37:86:f8:c7:b3:5f:d3:
1f:d5:2d:33:10:a9:2b:30:4c:7f:d1:c4:38:9c:8c:f4:bc:fe:
14:7f:98:d6:f8:de:d6:d8:ac:e8:9c:c6:c5:84:36:c6:fb:17:
09:aa:d0:96:fe:1f:23:2e:21:76:03:b4:1b:f8:34:2f:66:0a:
b9:07:4e:9c:8c:87:f4:58:91:4b:8c:63:f5:c5:41:d9:40:bf:
35:5f:42:ec:e7:12:b0:20:29:8a:9f:00:f9:26:bf:4a:54:33:
93:ec:2b:fa:2c:78:f2:74:d3:5d:2b:15:ef:8e:c0:fb:30:66:
f2:87:df:f3:7b:4f:d6:e2:59:26:8b:08:0f:e7:66:66:14:39:
87:f5:1e:70:cd:a2:f6:90:41:56:1c:68:8c:2a:72:7f:e7:95:
30:e0:d8:3a:f8:28:0b:79:f3:a3:30:b6:a7:a9:bf:d6:7e:3e:
15:ec:85:e1:d9:bd:d6:5b:8c:33:a4:1b:81:c0:a5:2d:53:31:
ba:94:d1:4e:aa:42:03:d7:9f:72:13:6e:17:a8:82:ca:1f:18:
f6:10:06:19:8c:91:59:af:cb:c7:e2:12:ce:41:7a:4f:25:d8:
bd:bd:29:2c:c0:e2:a5:aa:3b:9f:60:73:08:ea:ff:e0:dd:bc:
e4:a0:d6:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:03 2024 by rpki-client on console-fra.rpki-client.org