Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mwX83zXFWgu3ilK3vUQU2iBCL2s.roa
File: mwX83zXFWgu3ilK3vUQU2iBCL2s.roa (raw, json)
Hash identifier: rZiL1qM+keRZICjw7IjWtTbgT2hNnlgsuy30JsKpVcc=
Subject key identifier: 9B:05:FC:DF:35:C5:5A:0B:B7:8A:52:B7:BD:44:14:DA:20:42:2F:6B
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2862030F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mwX83zXFWgu3ilK3vUQU2iBCL2s.roa
Signing time: Sat 01 Jan 2022 16:10:22 +0000
ROA not before: Sat 01 Jan 2022 16:10:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212463
IP address blocks: 31.148.149.0/24 maxlen: 24
95.47.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 677511951 (0x2862030f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b05fcdf35c55a0bb78a52b7bd4414da20422f6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:0c:81:91:ea:b7:04:c6:09:c1:3b:90:e5:
1f:62:ab:f6:3f:9c:40:21:3b:56:e2:f0:13:78:3c:
7e:ce:42:f9:c0:cd:45:7a:49:bf:65:5e:cd:57:d1:
7d:80:0f:dd:33:1a:e6:93:b8:fd:4e:ad:45:06:68:
0d:28:85:3d:e4:0c:ca:d9:2b:ed:a0:2a:d8:32:9c:
11:b1:e0:af:52:38:4c:71:bc:07:fa:c7:71:14:75:
84:4e:33:73:f7:42:f1:5f:e8:1d:ff:15:f6:9c:99:
55:85:05:ac:99:e4:93:47:b9:b2:19:b2:4c:c7:9c:
58:78:e9:77:55:03:5d:f2:20:d3:8a:75:e5:46:2a:
d1:71:26:4c:d2:55:ac:bf:3a:ba:fb:40:1e:72:5f:
78:f0:1e:85:7b:e4:91:61:fa:33:5b:e5:8c:8a:15:
c9:1b:af:e5:83:9f:5c:09:8f:f6:74:fc:97:7c:95:
17:29:9a:38:56:41:3c:01:b9:32:7a:c1:9e:88:be:
63:5f:02:12:68:95:f6:82:47:48:ff:b6:b5:63:0c:
69:62:f4:28:4e:b0:82:df:85:07:55:ae:c1:a0:0e:
f1:81:f7:93:1e:e2:57:08:aa:ca:08:fa:93:a2:68:
1c:cc:cd:61:ef:1c:dd:ec:78:8d:5b:eb:ac:0e:4b:
39:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:05:FC:DF:35:C5:5A:0B:B7:8A:52:B7:BD:44:14:DA:20:42:2F:6B
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mwX83zXFWgu3ilK3vUQU2iBCL2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.149.0/24
95.47.59.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:4b:47:40:b1:95:ce:bc:26:62:f2:4a:9f:eb:12:91:72:6f:
f9:0f:f9:7d:0d:65:c0:4e:d6:cf:65:13:8d:3b:61:23:6e:c0:
1f:89:bd:f2:1a:ae:73:4a:3f:04:af:30:34:79:6b:88:a2:de:
78:77:77:3e:38:27:95:eb:50:ee:1b:30:f3:c8:58:cc:fb:19:
29:32:36:8b:81:c2:18:7f:63:20:eb:3a:ca:44:f2:b5:fe:62:
6c:6d:1d:76:19:62:12:b6:5b:32:07:1b:1e:6c:e6:f2:8d:69:
51:9a:bb:30:a1:f1:92:69:9b:cf:12:a5:77:ae:0d:fd:4c:49:
98:0c:dd:40:be:77:10:b3:3a:6a:26:71:08:bb:60:1a:ed:62:
aa:66:34:18:77:53:f5:0e:d1:01:3a:6a:bb:0a:63:55:6d:c9:
13:76:00:23:9f:7f:61:bc:42:bf:70:e3:1e:d3:2e:4b:9c:55:
1c:8a:45:56:76:7e:c7:70:5a:35:7c:16:e3:9b:17:54:ac:17:
8a:0c:ef:f9:6f:ef:81:53:ba:7b:3b:29:d5:25:17:55:73:4a:
57:e5:5e:5f:41:3e:b4:eb:be:f4:2f:32:8d:27:27:d5:ca:f3:
a2:4a:c0:38:b2:50:5f:78:33:39:10:5a:bf:3c:07:3d:4d:85:
ea:68:54:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:51 2024 by rpki-client on console-ams.rpki-client.org