Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/M4LB9-9FurHkPW-dALnEUnzUO_o.roa
File: M4LB9-9FurHkPW-dALnEUnzUO_o.roa (raw, json)
Hash identifier: T0TxZCH7kaoaDtpnZVaOpw6tX7OfZBlnQAo73kJhMak=
Subject key identifier: 33:82:C1:F7:EF:45:BA:B1:E4:3D:6F:9D:00:B9:C4:52:7C:D4:3B:FA
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35A99931
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/M4LB9-9FurHkPW-dALnEUnzUO_o.roa
Signing time: Sat 01 Jan 2022 08:55:00 +0000
ROA not before: Sat 01 Jan 2022 08:55:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209096
IP address blocks: 80.249.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900307249 (0x35a99931)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:55:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3382c1f7ef45bab1e43d6f9d00b9c4527cd43bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3c:78:89:64:fd:6d:13:e4:6f:76:75:e9:a2:
3a:8d:d0:03:3b:66:13:57:be:0c:be:cc:5b:fc:ec:
0b:79:30:1a:e7:c9:c2:5e:20:57:0e:47:a9:b7:c2:
fb:a7:1a:bf:20:a7:73:3f:55:c1:fe:60:6f:dd:c9:
66:31:80:66:f6:25:53:2f:87:2e:a1:d2:a5:ad:0e:
f1:75:fc:65:7f:c3:22:43:49:5c:a3:40:c4:29:e9:
1c:0e:f1:24:29:21:d6:02:e9:91:0d:f2:f5:9b:f0:
db:58:ce:b4:98:8a:52:e2:5e:5b:b8:d5:4e:68:c0:
be:7a:33:d3:8f:fc:f0:0b:7d:eb:10:36:7d:6a:9b:
9c:bf:e1:2d:87:28:93:3c:82:64:09:d8:12:39:65:
0e:ea:07:56:8a:e3:77:d3:44:7b:66:d7:bc:3b:16:
18:15:0e:0f:b5:35:c8:af:f4:d7:71:3f:86:c3:bb:
36:cc:a2:ff:75:ea:7b:26:b1:66:92:3d:4e:41:73:
1f:54:cb:84:76:36:de:8b:9b:5b:74:0b:a5:ce:2d:
2e:35:7b:79:5d:49:c2:70:2b:d6:db:8f:a8:17:df:
bd:45:a6:9a:99:bb:57:f0:a2:6b:c5:fb:e1:cc:f8:
7e:d7:b3:c3:06:81:4f:c4:27:6c:c4:2f:70:8c:0d:
84:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:82:C1:F7:EF:45:BA:B1:E4:3D:6F:9D:00:B9:C4:52:7C:D4:3B:FA
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/M4LB9-9FurHkPW-dALnEUnzUO_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.249.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:3b:04:a0:c1:81:6f:a8:34:da:30:95:11:84:76:a5:3c:3d:
67:33:e1:47:0e:23:8e:10:4e:bc:ae:ed:ab:a2:a1:8e:0a:c1:
8a:bc:48:31:2a:af:19:b0:9d:11:73:7c:69:ad:39:b9:75:7b:
a1:b9:2e:66:ff:25:bd:20:34:18:a8:b3:68:9e:7f:8b:06:dd:
da:17:68:e8:e7:4c:ae:53:f3:0b:4d:3c:0f:05:eb:e9:c0:fd:
08:86:09:6b:eb:8a:f3:9a:15:99:4a:b1:35:d5:5c:d9:17:98:
79:9a:92:d7:c1:38:7e:89:eb:94:59:b6:35:b6:09:c4:6e:24:
58:1c:c4:2c:32:67:15:3f:d8:88:46:b0:1b:c3:bf:10:cc:f1:
e3:b7:e7:0a:24:36:25:d4:f2:13:e8:ad:5f:81:29:03:2a:09:
e3:72:6c:23:26:a7:7c:60:ec:5a:5d:1a:b6:fb:69:43:3e:e4:
f8:30:5c:59:49:91:71:8e:85:b5:6e:4b:8a:30:1c:7b:c6:bc:
30:65:45:b4:26:eb:44:5f:c9:9a:0c:42:fa:95:44:9a:8f:6f:
29:96:72:fd:2d:0e:01:11:25:49:89:60:3c:53:44:ee:8f:7b:
e7:50:e0:6b:20:22:9d:61:18:bc:52:32:93:e1:fd:99:ac:7e:
fb:19:2f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:40 2024 by rpki-client on console-ams.rpki-client.org