Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/MQaf_ZiOvHJsu4-1B7wRFED1H_I.roa
File: MQaf_ZiOvHJsu4-1B7wRFED1H_I.roa (raw, json)
Hash identifier: 2SIbdvmVdzAp2daJYcu3hgGP+j7OiJb2n18Zdex1y6M=
Subject key identifier: 31:06:9F:FD:98:8E:BC:72:6C:BB:8F:B5:07:BC:11:14:40:F5:1F:F2
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03E6B7C1
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/MQaf_ZiOvHJsu4-1B7wRFED1H_I.roa
Signing time: Sat 01 Jan 2022 13:04:12 +0000
ROA not before: Sat 01 Jan 2022 13:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208888
IP address blocks: 181.41.144.0/22 maxlen: 24
181.41.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65451969 (0x3e6b7c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31069ffd988ebc726cbb8fb507bc111440f51ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f1:f6:80:7f:4e:48:de:b9:8a:0c:aa:65:b9:
54:32:5c:42:5c:1c:25:6c:d9:dc:66:e5:2d:f6:51:
a4:26:74:14:f1:a6:e8:02:7a:f9:71:8c:fa:97:7d:
85:43:cf:82:25:83:d3:d2:d8:db:76:5a:1c:4b:6b:
e1:7b:f2:2e:db:4d:39:d3:eb:84:65:ce:da:38:ee:
b6:ff:7e:8c:1e:65:f1:76:78:bb:92:f9:90:c9:97:
58:76:59:cd:01:aa:3b:86:03:cd:74:8d:e2:38:56:
ef:53:a9:31:24:86:b3:d8:9d:cd:36:02:6b:47:4b:
ad:57:22:9f:56:e0:74:84:12:a1:cd:2c:6e:49:38:
a7:62:07:19:a6:27:4b:88:e3:22:ef:19:ee:c2:36:
c0:5d:bf:71:52:19:b7:2c:5c:78:b7:4e:4e:be:c7:
2d:2d:5a:97:20:ab:a4:1e:97:76:46:e2:be:76:ac:
33:a8:15:8d:54:e4:dd:83:86:c6:c8:f2:aa:ad:b6:
b8:86:46:2e:c1:d5:cb:7e:f8:85:59:d5:02:21:6c:
e3:5e:a3:bc:47:e7:70:ca:f1:3b:b3:e9:a4:a6:fb:
bd:7a:2b:19:9d:76:73:cc:1e:2d:a8:5c:90:8f:fc:
35:f5:46:21:87:ef:fc:94:dc:79:4c:00:0b:5d:cd:
0f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:06:9F:FD:98:8E:BC:72:6C:BB:8F:B5:07:BC:11:14:40:F5:1F:F2
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/MQaf_ZiOvHJsu4-1B7wRFED1H_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.144.0/22
181.41.156.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:6f:bb:a9:00:80:87:8b:3b:1c:7c:3f:90:4e:40:e6:a2:96:
77:10:c1:4f:ad:1a:cf:66:db:0a:e4:b9:6e:68:32:e2:71:83:
3a:25:72:c4:ef:b5:01:bc:72:c3:67:0e:73:cd:ad:7d:60:23:
2a:a8:d5:fd:1b:96:b0:cd:c8:88:13:74:42:99:6c:63:34:d1:
8f:02:be:2b:ba:47:c6:ef:21:65:5c:60:99:78:0e:1b:61:e6:
4b:30:b9:61:fa:d7:7d:eb:e7:42:21:3e:e8:54:73:76:6d:db:
8e:e6:13:76:ec:82:9a:62:28:c3:4d:43:b3:59:57:f5:8d:b9:
4c:f6:99:68:b9:09:16:7e:8e:5b:af:37:38:85:d7:2d:34:84:
5a:c1:a1:0e:98:4a:6f:69:0d:b8:95:99:5c:aa:d2:bd:18:64:
25:77:75:af:4f:32:aa:06:b7:e0:8c:e3:9b:f1:a6:00:e7:dc:
2f:77:0f:d2:91:c2:ca:28:20:85:b5:cf:84:bb:31:36:c6:9d:
9a:e0:96:2a:f3:4b:c6:dc:60:63:61:e7:48:ac:77:c8:c1:04:
04:5f:0e:f7:fa:41:ff:24:64:e8:4a:b8:44:02:35:4b:3c:dc:
ae:aa:0c:19:a6:8a:35:e5:72:b7:0a:61:f4:c8:48:f5:91:15:
89:51:3c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org