Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/MzeNSkhlfSJl2yQR3LfCJrWYbBs.roa
File: MzeNSkhlfSJl2yQR3LfCJrWYbBs.roa (raw, json)
Hash identifier: I0LfkRr6oljgWOtJ8Oq+4BDQqR3EK9O4CdPUCEGXDIs=
Subject key identifier: 33:37:8D:4A:48:65:7D:22:65:DB:24:11:DC:B7:C2:26:B5:98:6C:1B
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 0182106D75FA2B1059545DECB97E36381444
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/MzeNSkhlfSJl2yQR3LfCJrWYbBs.roa
Signing time: Mon 18 Jul 2022 08:29:45 +0000
ROA not before: Mon 18 Jul 2022 08:29:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 194.107.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:10:6d:75:fa:2b:10:59:54:5d:ec:b9:7e:36:38:14:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Jul 18 08:29:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33378d4a48657d2265db2411dcb7c226b5986c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1e:07:85:f8:51:57:b3:7d:00:99:86:b1:ff:
c1:73:ed:9b:77:62:9b:c1:5b:21:14:89:64:11:87:
47:be:60:c6:dd:ec:c9:b3:a4:a3:c3:2e:10:19:90:
bc:43:75:05:96:c1:61:80:8a:71:49:26:c7:f0:98:
3c:16:69:b0:74:69:02:98:7d:5c:42:ee:21:57:7b:
60:96:1e:a4:5f:6c:12:4a:56:51:9c:88:ea:11:64:
37:27:56:3d:eb:bb:33:ca:e7:97:8e:2a:34:b1:20:
28:da:26:8b:94:87:cd:87:f3:c1:e4:5d:42:5c:b0:
ff:18:fd:6f:9b:90:04:37:6a:d4:33:89:c7:45:0a:
43:b4:f3:e6:27:e9:e3:48:71:ba:29:fe:71:e7:2c:
30:17:a8:26:20:16:09:db:21:25:7c:7a:9e:ec:6d:
1a:a7:67:a8:cc:35:73:22:fb:1f:34:40:04:ce:7e:
50:55:67:2d:ff:11:6c:4a:64:46:19:fa:75:2c:6a:
fd:bc:f5:13:24:67:52:14:95:3a:67:bd:ed:ef:41:
01:4c:d9:0e:e5:da:09:18:99:29:11:1f:0b:9c:96:
64:d7:05:f4:21:25:07:b5:24:0c:00:c3:45:e9:51:
e9:76:f0:b1:de:42:2e:84:9e:4b:c3:73:67:dc:d4:
67:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:37:8D:4A:48:65:7D:22:65:DB:24:11:DC:B7:C2:26:B5:98:6C:1B
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/MzeNSkhlfSJl2yQR3LfCJrWYbBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.160.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:10:4f:1a:00:fd:90:4e:f5:e4:a0:78:4c:13:70:b6:9c:b1:
fb:d9:e0:9c:37:99:ee:26:3e:78:f4:99:b0:76:2c:30:12:5b:
fd:85:4b:79:39:a8:a4:ba:58:07:13:12:cb:07:2e:8a:7c:0e:
27:a0:81:43:ce:a8:02:83:13:04:0e:fc:e5:0e:35:bd:70:07:
0f:de:8f:36:48:63:bc:b8:8f:f5:7f:68:c9:aa:90:5d:30:1f:
54:d3:12:5f:0f:44:c2:d1:d3:e1:b2:30:d6:5b:1d:8b:71:af:
4e:0e:de:c2:86:c0:ab:01:13:8a:33:e9:ec:58:7e:1b:4d:a0:
cb:e4:80:02:11:7a:e6:c9:3f:b5:1b:ca:89:54:06:3e:cd:e3:
ef:0f:45:a9:a3:86:f5:10:f1:a8:de:43:0d:20:35:aa:b1:50:
16:2e:aa:7c:2a:9c:70:f3:1a:55:7b:57:71:e1:59:20:9e:08:
95:f7:20:27:24:c6:74:f9:6c:83:ac:fa:ee:db:5c:a7:6a:74:
0f:ff:32:ed:d1:3c:fc:94:76:71:9b:25:b0:19:16:86:80:e6:
26:b9:82:37:c3:72:94:ad:d6:99:3d:a5:e7:aa:13:43:f8:90:
9d:e9:e7:c7:30:94:94:60:46:90:bc:16:88:1b:dc:10:a3:28:
08:0a:3d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:38 2024 by rpki-client on console-ams.rpki-client.org