Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/af5078-2243-4fdb-ab2b-2d847a3f7d2f/1/mrCwgImQkW-aHRn2udo_Op0vBio.roa
File: mrCwgImQkW-aHRn2udo_Op0vBio.roa (raw, json)
Hash identifier: NFmBjl1AkJz7UfdkRS2Kg6uwnq8jARzj1rqz9vbuFiA=
Subject key identifier: 9A:B0:B0:80:89:90:91:6F:9A:1D:19:F6:B9:DA:3F:3A:9D:2F:06:2A
Certificate issuer: /CN=0f47dc7ff485b8413be38f5bee80917330b31738
Certificate serial: 0743FA1F
Authority key identifier: 0F:47:DC:7F:F4:85:B8:41:3B:E3:8F:5B:EE:80:91:73:30:B3:17:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D0fcf_SFuEE7449b7oCRczCzFzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/af5078-2243-4fdb-ab2b-2d847a3f7d2f/1/mrCwgImQkW-aHRn2udo_Op0vBio.roa
Signing time: Sat 01 Jan 2022 14:08:47 +0000
ROA not before: Sat 01 Jan 2022 14:08:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44858
IP address blocks: 93.95.0.0/21 maxlen: 24
2a03:5d80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121895455 (0x743fa1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f47dc7ff485b8413be38f5bee80917330b31738
Validity
Not Before: Jan 1 14:08:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ab0b0808990916f9a1d19f6b9da3f3a9d2f062a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:76:eb:64:56:8a:57:67:13:d1:30:8e:6f:73:
80:79:6b:c2:2f:77:ac:c4:89:1c:c1:b4:eb:64:0c:
a4:2c:7e:4c:25:2d:81:6f:1a:02:52:da:04:25:88:
97:b8:84:81:e7:a8:70:92:60:d6:cb:ac:a8:18:53:
15:7f:9c:22:1b:22:bb:54:e3:82:06:ea:20:c3:95:
bc:3a:c3:56:fb:a3:57:bd:3c:46:4e:88:6f:3d:24:
fe:3b:8a:d9:85:93:4b:40:7a:75:48:1c:45:2e:ef:
85:8f:37:89:2d:96:5d:c3:a3:38:4c:3c:70:75:b5:
18:a3:4a:ff:99:da:2f:6c:ac:40:a9:20:88:08:c6:
aa:ee:89:14:93:df:fb:56:81:f7:c3:f0:2a:2e:d1:
3c:d1:3f:b7:fb:77:f7:70:dd:e7:11:90:e3:72:f6:
c6:54:1d:bf:97:55:c8:99:38:65:22:08:d8:fc:7b:
ce:f2:32:c7:50:1e:a2:6d:23:f5:2d:cd:35:30:2f:
c9:9c:36:87:7d:03:fb:41:74:35:c9:97:a2:cd:8d:
48:e7:1b:6f:7f:d1:0e:33:74:b6:c7:75:06:5e:fb:
1b:73:29:f5:18:5f:57:11:46:41:40:95:8d:cc:36:
7c:71:25:c3:b9:9b:75:3e:08:c4:83:de:6d:e1:6d:
8e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B0:B0:80:89:90:91:6F:9A:1D:19:F6:B9:DA:3F:3A:9D:2F:06:2A
X509v3 Authority Key Identifier:
keyid:0F:47:DC:7F:F4:85:B8:41:3B:E3:8F:5B:EE:80:91:73:30:B3:17:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0fcf_SFuEE7449b7oCRczCzFzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/af5078-2243-4fdb-ab2b-2d847a3f7d2f/1/mrCwgImQkW-aHRn2udo_Op0vBio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/af5078-2243-4fdb-ab2b-2d847a3f7d2f/1/D0fcf_SFuEE7449b7oCRczCzFzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.0.0/21
IPv6:
2a03:5d80::/32
Signature Algorithm: sha256WithRSAEncryption
79:da:1f:01:d8:3a:9f:af:4e:d5:0c:70:b4:80:44:3a:9c:16:
0e:b0:4a:e2:e1:a9:b3:45:f4:f6:be:dd:52:d2:7e:3e:69:28:
c7:40:d7:b2:af:5d:51:5b:0b:a3:37:77:78:17:fc:a2:e8:1a:
c0:be:f7:9f:81:5d:e1:b6:d5:4f:b7:3c:fe:05:8e:df:14:2b:
13:94:62:e5:25:e4:67:5d:11:75:a8:90:7c:85:df:b7:32:e8:
41:0e:e0:27:e9:d9:31:2e:61:67:5a:5e:e1:f0:6e:09:16:3e:
a5:83:cd:eb:07:3a:0e:fd:11:73:14:5b:1e:c2:0c:d7:fb:42:
ab:e5:ee:7c:0b:ea:5d:79:89:94:19:36:ec:1b:1c:59:32:9e:
77:b4:70:32:15:84:d7:27:55:3e:92:e3:9f:db:87:ec:15:f1:
77:7b:c2:52:17:cf:a7:73:c7:54:d3:5e:c8:fe:6b:ce:c7:0c:
ff:72:01:39:ee:5c:97:74:51:0e:8b:c9:1d:2f:6d:fa:e1:90:
a0:f9:f0:f3:fa:89:ce:8f:30:25:ee:34:20:bd:bf:42:b8:0d:
80:7a:fa:29:e0:b7:c0:d9:83:df:c9:33:e5:d8:71:d7:1a:ed:
26:1d:57:2a:9d:29:fe:c8:46:be:35:9a:bc:76:5e:ff:1f:d5:
d9:93:b8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:55 2023 by rpki-client on console-fra.rpki-client.org