Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/mpOwrXuk678CD9rKvAKC8hrp5iU.roa
File: mpOwrXuk678CD9rKvAKC8hrp5iU.roa (raw, json)
Hash identifier: TLLBvHg74rkz/gML/oTH6Z7ynffFiUjyy/8fU5EukGQ=
Subject key identifier: 9A:93:B0:AD:7B:A4:EB:BF:02:0F:DA:CA:BC:02:82:F2:1A:E9:E6:25
Certificate issuer: /CN=ed6da82dbc7d7e2818f96680b66efcedb1087947
Certificate serial: 0AC705B6
Authority key identifier: ED:6D:A8:2D:BC:7D:7E:28:18:F9:66:80:B6:6E:FC:ED:B1:08:79:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7W2oLbx9figY-WaAtm787bEIeUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/mpOwrXuk678CD9rKvAKC8hrp5iU.roa
Signing time: Sat 01 Jan 2022 14:55:42 +0000
ROA not before: Sat 01 Jan 2022 14:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35684
IP address blocks: 109.71.26.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180815286 (0xac705b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed6da82dbc7d7e2818f96680b66efcedb1087947
Validity
Not Before: Jan 1 14:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a93b0ad7ba4ebbf020fdacabc0282f21ae9e625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4a:f1:27:c1:11:91:77:86:86:ad:15:31:bc:
7a:46:af:6a:6a:a2:1d:fb:b9:42:9b:14:c5:4f:f0:
e6:5f:2b:8c:36:a9:ec:85:4b:ed:be:2f:28:b2:16:
74:de:37:b8:9a:cd:65:4a:34:06:4c:ee:16:57:12:
d1:63:23:ca:6e:aa:a4:b7:c3:33:38:c6:1e:21:d8:
c7:9c:71:aa:e8:9a:de:9d:94:04:91:6f:9e:b7:52:
42:28:e5:8f:32:77:98:6a:38:a8:f1:e6:5d:3c:ca:
ee:21:74:32:e4:20:cd:ba:5b:0c:b5:2d:2c:71:8e:
ea:83:b6:72:8d:60:32:2b:b9:84:1c:d1:d4:b8:66:
76:c7:d5:14:7f:5c:aa:44:3e:5e:29:74:5e:0c:46:
da:02:36:89:95:68:7d:88:14:e4:fe:44:a0:b8:56:
48:8d:ff:24:37:b9:83:6e:42:24:c4:95:3c:74:aa:
81:e8:7e:c5:33:ca:8a:45:a0:b0:81:90:11:b7:8a:
67:cd:36:25:db:37:31:3a:5f:4e:ea:58:bb:31:d8:
cb:48:a0:e3:f1:de:7c:e3:5f:05:0c:69:d3:7c:9f:
d3:f2:07:66:22:49:5e:c2:09:7a:1f:bd:93:34:7b:
b2:1b:23:11:89:5f:03:fd:03:73:f4:48:12:83:2c:
ba:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:93:B0:AD:7B:A4:EB:BF:02:0F:DA:CA:BC:02:82:F2:1A:E9:E6:25
X509v3 Authority Key Identifier:
keyid:ED:6D:A8:2D:BC:7D:7E:28:18:F9:66:80:B6:6E:FC:ED:B1:08:79:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7W2oLbx9figY-WaAtm787bEIeUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/mpOwrXuk678CD9rKvAKC8hrp5iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/7W2oLbx9figY-WaAtm787bEIeUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.26.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:b8:e4:68:47:f9:b9:e7:70:d8:b4:0c:9f:7b:d3:00:7c:85:
d5:e9:8f:27:e3:83:d6:d2:1a:85:1d:13:32:03:87:f7:0a:78:
c7:24:c8:7f:d7:9c:2f:b3:51:34:a1:a0:3b:6b:cd:0d:48:7e:
9b:b9:ef:cd:c6:af:fb:66:2d:ed:f1:0f:1f:1e:a8:b3:fd:cb:
07:2d:d5:d4:00:35:b3:53:ae:7a:6b:c9:7a:10:2f:f2:4b:be:
95:e3:f1:06:8b:d0:dc:17:b4:c3:83:e4:57:9e:e3:db:8e:70:
84:5e:0e:85:23:bb:a8:31:25:95:5e:72:2a:88:01:4a:7e:c5:
46:a1:b4:cf:71:c5:5b:c9:35:2c:5a:94:98:06:dc:07:94:f4:
ad:99:73:52:6d:dc:ae:a5:28:03:57:31:94:ce:52:c5:2b:de:
38:30:8d:65:90:70:2f:e4:ec:cc:28:39:a5:99:a2:2a:53:5a:
06:2e:9d:e6:a3:34:2e:89:0c:b1:3d:b6:33:56:82:12:ce:5e:
b3:55:cc:d0:9b:80:2e:fd:03:e9:fc:13:c1:0f:03:d3:ef:21:
ce:ac:9c:37:0a:96:18:8f:7d:f6:db:e0:20:50:9e:8f:81:e9:
8c:18:04:32:12:59:48:a4:3b:41:c5:20:58:c4:fc:0f:49:bd:
4e:54:ce:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:53 2023 by rpki-client on console-ams.rpki-client.org