Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/0mnhbZhuadF72W_lJVSMI8klRGc.roa
File: 0mnhbZhuadF72W_lJVSMI8klRGc.roa (raw, json)
Hash identifier: ThK/3mSg8mWoI8ejblczAtJk71ACS+WN8g93D5wdaNk=
Subject key identifier: D2:69:E1:6D:98:6E:69:D1:7B:D9:6F:E5:25:54:8C:23:C9:25:44:67
Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Certificate serial: 2963ED69
Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/0mnhbZhuadF72W_lJVSMI8klRGc.roa
Signing time: Sat 01 Jan 2022 10:04:01 +0000
ROA not before: Sat 01 Jan 2022 10:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61079
IP address blocks: 93.113.40.0/22 maxlen: 24
89.46.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 694414697 (0x2963ed69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Validity
Not Before: Jan 1 10:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d269e16d986e69d17bd96fe525548c23c9254467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8a:13:06:34:95:16:0c:3f:27:e2:03:fd:27:
80:aa:09:e8:ad:8c:74:82:c4:48:30:39:dd:d2:76:
63:19:6c:3a:8c:93:2c:f6:73:30:87:7c:74:d5:d3:
54:22:4b:50:4b:9b:60:44:32:28:eb:eb:19:01:d3:
09:3d:bc:dd:e6:48:0a:ec:db:34:03:88:ba:2c:0d:
65:29:03:ed:31:55:cb:68:4c:8a:4e:8d:29:21:2f:
84:88:5c:50:fe:76:a5:f1:67:4c:b5:45:18:19:1c:
94:10:f9:f0:40:b6:3a:da:f1:57:9a:e6:2b:9c:a5:
18:88:d0:95:8d:49:05:79:81:ac:f0:a9:82:b1:54:
65:dd:be:27:99:aa:3a:a3:6c:6c:be:32:5c:b2:33:
13:4a:80:a5:e7:cf:8b:3a:ea:f2:93:18:1c:bc:15:
78:53:1f:c1:84:7e:6b:97:6e:e7:7f:94:ff:5b:e1:
e3:a3:a2:1f:ee:c2:96:69:22:47:55:49:58:40:42:
1d:35:fa:01:91:ba:fc:a4:df:f6:20:62:57:3b:a0:
cb:ba:6e:3b:77:74:35:3d:16:d3:14:5e:e1:5a:67:
0d:70:c2:65:3f:78:47:1d:34:d3:9f:d1:4e:4d:11:
46:09:4d:69:91:f3:f4:7b:23:9a:71:c8:4d:04:e6:
b7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:69:E1:6D:98:6E:69:D1:7B:D9:6F:E5:25:54:8C:23:C9:25:44:67
X509v3 Authority Key Identifier:
keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/0mnhbZhuadF72W_lJVSMI8klRGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.12.0/22
93.113.40.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:fe:11:5a:4d:2c:c1:84:4f:fc:71:e8:bb:d6:f8:67:8f:05:
a8:64:a1:c9:06:b6:59:11:a0:40:e4:7e:16:2b:23:e0:2a:64:
32:b3:66:80:ec:7d:3f:2f:02:d2:a0:bb:88:9b:0a:a9:d7:a0:
ed:61:96:01:7c:79:f7:5c:97:3d:0b:ad:19:bf:f1:4c:85:82:
9e:e5:32:00:28:a4:0f:b5:ba:6b:f2:c5:c1:79:4f:1d:78:5f:
4c:28:3f:6c:4d:fc:21:31:6b:0b:33:db:a2:fd:5a:28:d0:01:
2f:ec:fe:62:d4:b3:ad:13:54:77:cc:01:7a:a3:58:9c:3c:03:
80:0c:30:e7:90:a5:2f:a3:c3:0e:9d:ff:39:60:6a:a2:ad:a4:
39:f0:7b:68:e2:ee:8c:92:f2:25:3c:0b:f9:0f:29:75:22:e6:
64:b8:42:90:92:68:60:04:14:f4:2a:c7:c6:da:1a:42:3f:ca:
62:10:5a:2a:43:06:a3:22:00:14:fe:21:81:ed:96:7f:70:3d:
60:55:e9:63:97:cf:2b:41:00:e7:3c:fa:c1:0c:3b:29:32:72:
53:e1:ac:31:a9:a2:8c:8b:ae:a1:4f:2a:7f:f3:7e:1e:62:47:
88:e0:1b:6a:f1:1f:7e:d1:a3:05:7b:06:83:d0:19:bd:1c:b0:
b6:c3:cb:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:19 2023 by rpki-client on console-ams.rpki-client.org