Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/MQuF3Vq7H8teVTMY__0lqYJ6K1E.roa
File: MQuF3Vq7H8teVTMY__0lqYJ6K1E.roa (raw, json)
Hash identifier: v0uJxmI+XOpvlSifREfRbrEw6J6FGTV3LcuPMXIQxrw=
Subject key identifier: 31:0B:85:DD:5A:BB:1F:CB:5E:55:33:18:FF:FD:25:A9:82:7A:2B:51
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 07125BF8
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/MQuF3Vq7H8teVTMY__0lqYJ6K1E.roa
Signing time: Sat 01 Jan 2022 11:56:30 +0000
ROA not before: Sat 01 Jan 2022 11:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 91.227.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118643704 (0x7125bf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: Jan 1 11:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=310b85dd5abb1fcb5e553318fffd25a9827a2b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a9:80:02:6c:56:9f:c5:6a:24:4a:a7:5e:e4:
4d:83:22:85:6c:88:2c:ba:34:35:15:19:7e:08:67:
b3:e0:90:7c:ba:37:38:f0:75:70:9c:00:99:40:ee:
46:27:d4:33:d4:08:95:67:7f:14:f0:76:e5:36:b1:
27:6a:bd:9f:ff:0b:14:63:ad:04:a7:59:bd:89:f4:
dc:6a:05:b2:76:1c:c3:48:b6:6a:a4:9d:01:68:4d:
96:ee:3f:b9:07:05:6c:5d:ad:92:ce:5c:c4:de:d9:
3c:94:89:93:7d:50:5f:a9:59:a2:44:36:13:50:06:
f5:62:18:90:aa:25:59:b3:cc:3b:93:59:f0:7b:26:
64:58:d6:88:c9:2a:bb:9c:21:7e:e5:72:46:ba:40:
d3:05:bc:63:c8:d3:91:7b:f6:8b:34:f4:85:25:ef:
dc:9b:c8:89:18:cd:94:b3:0f:27:59:ef:e2:43:c9:
7f:16:24:05:60:7d:c4:79:48:da:49:66:2a:9d:af:
ee:8c:36:35:35:b8:ea:12:e5:93:13:39:e1:c9:de:
47:1a:db:4f:d4:c5:06:9a:2e:63:3c:ff:7c:c9:f3:
70:10:4b:44:24:d3:db:aa:bb:b9:95:de:dc:f7:a1:
13:dc:97:9d:b2:39:3f:79:4d:a8:d1:0c:2c:ea:ee:
83:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0B:85:DD:5A:BB:1F:CB:5E:55:33:18:FF:FD:25:A9:82:7A:2B:51
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/MQuF3Vq7H8teVTMY__0lqYJ6K1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.253.0/24
Signature Algorithm: sha256WithRSAEncryption
22:fa:71:4b:f4:02:f4:82:dc:37:ff:4b:8e:0b:6a:f1:a0:76:
db:69:47:fd:d2:bf:a3:28:be:09:14:48:0b:37:52:e1:3d:09:
ed:45:da:19:9f:3b:5b:e1:81:60:f2:c5:81:e8:b1:4d:89:d0:
cd:3a:15:0d:81:ca:bd:d8:29:72:be:aa:11:b9:86:40:ec:ad:
ef:6d:00:db:07:20:79:a7:50:18:8e:84:01:87:bc:d0:da:89:
08:10:47:ae:f8:dc:87:af:5a:46:59:0e:de:c1:15:97:ec:24:
2f:ac:95:54:30:e1:51:ad:98:00:3d:7a:18:10:68:07:d0:92:
e4:e8:f7:b8:a4:01:95:df:92:cc:4a:d0:ad:37:51:f6:eb:84:
1e:f4:bf:e1:e4:79:a1:c3:91:d2:74:c0:89:3f:e9:7e:ea:2b:
0a:c5:00:9c:72:1b:32:4a:8f:77:c5:3b:75:43:ad:f5:93:e9:
42:f2:fe:f2:a5:ef:0c:ad:05:ba:1e:75:74:9e:36:b9:cc:96:
80:6c:f7:00:9e:98:dd:f6:9e:a6:44:45:30:28:f1:4b:bf:81:
df:49:9d:f1:85:08:81:e3:aa:b5:4d:9d:62:27:34:e8:f9:08:
64:2c:6e:1e:41:d4:ba:d9:fd:b3:a6:e3:9c:9e:01:3f:21:b1:
d1:12:94:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:05 2023 by rpki-client on console-fra.rpki-client.org