Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Mp-CsEBva7fiLg7wjaV8uZdlW-w.roa
File: Mp-CsEBva7fiLg7wjaV8uZdlW-w.roa (raw, json)
Hash identifier: EaZ8dT2nelUjlxyg9JtBl5AH37CejbtOXeEpcZ6ZE+s=
Subject key identifier: 32:9F:82:B0:40:6F:6B:B7:E2:2E:0E:F0:8D:A5:7C:B9:97:65:5B:EC
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 02522C31
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Mp-CsEBva7fiLg7wjaV8uZdlW-w.roa
Signing time: Sat 05 Mar 2022 11:07:36 +0000
ROA not before: Sat 05 Mar 2022 11:07:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 176.57.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38939697 (0x2522c31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Mar 5 11:07:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=329f82b0406f6bb7e22e0ef08da57cb997655bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c3:30:a5:00:16:11:12:31:a1:ca:ee:80:d9:
dd:ce:2a:b4:24:d7:c0:28:bb:bd:f9:d3:dd:af:e2:
14:c9:66:4c:92:55:57:d0:08:58:62:3d:a1:06:66:
c4:b8:66:57:08:79:72:7a:f5:33:a0:95:06:9c:cf:
34:4e:8f:f5:70:5e:e6:d5:7b:5d:6d:a2:24:bc:a0:
c3:3c:89:29:f7:c5:25:cf:ae:d3:a5:9b:b9:6f:7e:
29:d8:45:1f:b8:cf:b7:c4:b9:59:72:43:1b:f5:fe:
f0:6d:f6:9e:ba:a5:45:d2:c1:0d:44:c8:13:8f:b4:
0a:fc:aa:fc:f5:6f:d8:29:44:ab:29:5b:92:e5:e9:
6f:2c:ea:54:4a:12:62:f6:c5:07:c3:6d:6d:70:63:
0b:7d:12:d2:fe:a1:e6:0b:3c:02:44:3d:48:06:00:
c0:42:5e:f8:9e:1a:1d:82:3a:d5:62:8a:3c:3c:08:
4d:2c:bb:4f:5b:b3:84:1f:17:ab:e7:d7:4b:0d:c8:
ef:48:07:0e:2d:11:05:cf:9b:71:73:b3:12:d3:9f:
f6:a4:18:3f:67:71:12:dc:50:3d:6f:81:bd:3a:03:
53:b8:05:0a:c8:26:79:27:54:80:da:14:e5:fe:bf:
fe:48:ea:1c:b1:82:8c:58:de:cb:9f:b0:ac:9a:3c:
27:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9F:82:B0:40:6F:6B:B7:E2:2E:0E:F0:8D:A5:7C:B9:97:65:5B:EC
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Mp-CsEBva7fiLg7wjaV8uZdlW-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.56.0/21
Signature Algorithm: sha256WithRSAEncryption
c5:7d:a3:da:e3:a8:36:57:85:64:9f:42:4a:44:e0:0d:6f:95:
cf:f5:9b:e0:cd:5c:93:21:fb:b4:0d:33:0c:9a:30:90:27:1f:
fb:de:f1:ab:6d:f3:41:1b:fc:bb:c7:2c:7f:eb:08:d1:fc:be:
1a:56:62:30:47:b2:7d:fc:7b:41:4f:c9:9f:09:10:4c:93:13:
04:ae:12:24:f2:83:cb:5b:25:cf:f5:df:21:06:3a:61:3a:b3:
de:d8:df:cc:f2:2e:53:7d:34:d1:de:a2:49:66:53:21:5c:27:
d5:ab:4a:1f:bd:10:63:13:4d:e3:23:a1:ec:78:ad:0b:9a:9f:
21:1c:60:d4:9b:76:f6:8c:0b:f4:23:50:6a:c0:54:69:0b:03:
92:3b:e2:78:38:0c:76:e4:66:cb:34:51:0e:74:90:fe:8f:14:
24:07:97:e1:e2:ec:04:3b:2e:ae:bd:74:47:bf:1c:fa:17:15:
b8:b1:84:83:ed:4c:34:0f:15:a8:86:fb:d6:08:73:aa:ff:23:
be:80:ac:85:cc:1c:0d:ee:bf:03:45:34:4f:26:7c:70:df:d2:
a0:df:2a:7e:5d:ac:a2:31:f1:65:97:6c:3f:39:12:41:fa:fd:
fa:0a:94:b2:83:d0:9c:cd:f3:00:4f:b9:b9:76:71:70:12:0c:
d0:80:d7:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:50 2023 by rpki-client on console-ams.rpki-client.org