Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/MyN0gkVIuRl4KaRoCKIinXseHpM.roa
File: MyN0gkVIuRl4KaRoCKIinXseHpM.roa (raw, json)
Hash identifier: 3mXb03MlpAqg3wku5CFEmIT4oPkl7gZzEGeso6L+s6c=
Subject key identifier: 33:23:74:82:45:48:B9:19:78:29:A4:68:08:A2:22:9D:7B:1E:1E:93
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 01838CA8DA8857C1557FAA42C811C8F67A88
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/MyN0gkVIuRl4KaRoCKIinXseHpM.roa
Signing time: Fri 30 Sep 2022 04:30:19 +0000
ROA not before: Fri 30 Sep 2022 04:30:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 141.226.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8c:a8:da:88:57:c1:55:7f:aa:42:c8:11:c8:f6:7a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Sep 30 04:30:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=332374824548b9197829a46808a2229d7b1e1e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:59:d0:09:a7:0d:e4:9b:0d:ad:2a:de:c3:c5:
6a:99:8a:0c:9d:98:bf:56:d9:a1:32:bb:9d:ac:8a:
27:57:11:4a:4c:57:8b:97:56:f3:1e:a4:18:0f:6e:
e9:0d:69:17:8e:73:8d:40:5d:62:48:3a:fe:62:86:
dc:86:fe:a2:19:1b:44:40:d3:0a:1d:5f:7c:f0:3f:
94:5a:ec:74:13:56:34:5a:bf:ae:41:d3:f9:26:f8:
d0:87:1b:5a:bf:4a:ff:07:dd:d0:a2:71:60:be:bd:
58:61:37:d4:ef:bb:03:af:4b:a1:67:fa:c8:b3:80:
eb:8d:90:44:d5:f6:01:d2:95:bf:2a:bf:15:77:60:
82:d7:8b:10:18:19:2f:b7:b7:72:7f:5a:a5:6f:72:
7a:18:ae:7f:99:fd:1b:ec:6b:31:56:1e:46:dd:ca:
0a:f8:d3:fc:ec:04:3d:1b:89:99:45:22:96:ae:7c:
18:2e:88:09:9a:52:36:65:82:c4:5c:d7:f3:85:47:
9c:8c:5a:ff:46:6f:c7:06:6e:c3:00:96:90:77:3c:
d2:b3:61:f8:01:ca:60:5a:61:40:a1:81:0d:e2:4f:
fe:6f:f2:fc:8b:8d:0c:88:47:66:c7:13:4d:c1:a8:
de:d2:93:0d:e2:e0:ba:44:f1:84:53:8a:d4:a4:83:
75:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:23:74:82:45:48:B9:19:78:29:A4:68:08:A2:22:9D:7B:1E:1E:93
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/MyN0gkVIuRl4KaRoCKIinXseHpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.246.0/24
Signature Algorithm: sha256WithRSAEncryption
04:60:b4:36:4c:e7:f7:b3:41:8f:46:00:9d:b5:f9:3b:5a:0f:
89:57:12:d6:21:b5:fa:75:d5:f3:a9:4c:6b:24:75:08:4b:90:
55:4a:0c:db:6b:fe:13:b3:75:de:e2:49:8b:01:a8:ca:78:e0:
df:1f:99:2d:33:2b:cf:9b:9f:fe:50:90:c0:b7:39:55:23:fe:
25:4d:5a:65:af:99:9e:ba:fc:a8:53:eb:c5:bb:30:21:3c:c2:
15:e4:ec:2b:99:64:c7:7d:55:99:70:d4:de:fb:7f:b1:41:1c:
c6:7b:08:f9:c1:20:dd:51:5d:be:bf:18:28:2e:9e:37:2e:48:
28:65:b5:54:bc:26:f5:75:21:53:62:76:8c:38:57:77:22:16:
c8:76:65:a4:59:6f:8a:70:41:f1:87:b0:16:ba:2f:8c:a3:71:
48:2e:fc:fd:fb:77:71:b2:8f:4d:6b:7a:53:7d:bb:3e:d9:29:
27:45:23:0b:29:78:1e:5d:39:a9:f6:4a:1a:65:8d:a3:f7:f4:
bd:51:6c:5d:e5:aa:92:51:f3:fe:0b:65:25:10:9a:a6:da:1f:
3a:4a:a5:f8:f5:6f:13:20:ec:1a:77:cb:f2:1f:9b:78:24:23:
38:e8:cf:1c:26:f0:28:82:03:c2:46:94:af:fe:13:57:69:fd:
30:84:5e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:06 2024 by rpki-client on console-fra.rpki-client.org