Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Mn9cv1WWr1FlKEegL4bUG9rq00g.roa
File: Mn9cv1WWr1FlKEegL4bUG9rq00g.roa (raw, json)
Hash identifier: CeUVH249rpUYXu3YE+Mhq6t6rKofLLkgBne7TBRxZAE=
Subject key identifier: 32:7F:5C:BF:55:96:AF:51:65:28:47:A0:2F:86:D4:1B:DA:EA:D3:48
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 144B7FF2
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Mn9cv1WWr1FlKEegL4bUG9rq00g.roa
Signing time: Wed 23 Mar 2022 12:21:17 +0000
ROA not before: Wed 23 Mar 2022 12:21:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212552
IP address blocks: 82.115.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340492274 (0x144b7ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 23 12:21:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=327f5cbf5596af51652847a02f86d41bdaead348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0e:53:b3:94:30:dd:4b:b7:dd:c6:e0:fd:20:
62:18:1f:b4:a5:61:bd:26:36:87:cf:d6:3e:1b:77:
db:ad:2e:52:61:df:10:90:fd:b0:a3:04:6b:5d:c6:
75:1d:de:49:be:c7:e0:a6:c6:31:f5:02:6b:8a:92:
66:e1:c8:fd:3c:79:c3:3a:c1:2b:22:b4:4a:a1:be:
22:11:ae:62:65:67:18:61:3f:a7:12:84:85:0c:ca:
ff:7b:3d:47:5d:3e:45:c9:0c:6a:7e:b8:61:d9:be:
fa:c4:fb:85:da:c5:75:84:22:15:c0:5e:2c:0c:98:
f3:bf:5b:5b:e1:94:ff:71:67:f8:9d:e8:d1:ed:ac:
2d:c0:8c:ab:f3:c3:e5:58:ec:13:d9:4a:ef:cd:21:
3a:fb:e6:6b:4e:58:9b:1f:2b:82:d6:d8:5a:b0:bc:
30:78:30:42:e5:9e:f1:6a:91:dd:fa:0a:12:ae:b0:
59:ca:53:4c:41:28:32:d9:14:58:72:7d:89:d6:98:
9d:c3:ff:f3:91:7e:b2:39:5d:49:97:65:d2:bb:9f:
f1:8b:b3:bd:20:43:a7:2e:13:35:cb:c9:93:5b:f5:
c5:c5:1b:c5:88:2b:ab:78:65:04:20:d4:88:4d:58:
e8:f8:c4:96:e4:6f:85:f8:fd:b2:a7:74:be:b6:22:
02:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7F:5C:BF:55:96:AF:51:65:28:47:A0:2F:86:D4:1B:DA:EA:D3:48
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Mn9cv1WWr1FlKEegL4bUG9rq00g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.16.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:25:8e:74:f7:31:58:fc:0a:43:9d:25:16:ad:61:ce:32:7f:
6e:be:4b:5d:66:d1:7d:69:bb:5b:ed:2f:27:2d:68:d8:17:f0:
95:20:3b:7d:8c:75:28:f7:86:e2:8c:0d:5d:c2:b6:ff:2a:3c:
1f:e1:d5:eb:18:ae:2f:fc:62:9b:81:28:8a:59:3c:6c:9a:84:
7c:63:5b:da:d5:bf:9c:06:1c:24:30:10:29:56:30:2f:24:5c:
c4:b5:3e:ee:dc:71:8e:66:aa:20:55:75:07:4f:82:96:30:65:
b7:2f:39:e6:7c:1b:70:4c:e5:3c:7c:c4:be:66:01:75:09:f8:
c4:01:2e:95:25:85:39:ea:2d:b3:28:5b:32:18:f8:8a:c6:b0:
a9:6e:db:e0:79:ff:b6:0c:b4:9d:c5:f1:42:87:56:67:68:7c:
c5:1b:07:fc:72:7a:8c:12:84:b6:74:92:53:1e:f2:34:3c:3a:
a3:bb:dd:a9:fe:cd:21:d6:30:87:06:eb:a7:38:ed:49:9b:62:
0e:a2:4e:3e:d9:62:cb:e7:89:1a:de:59:45:f7:be:f0:69:ca:
08:e9:67:75:13:da:7b:fd:09:c4:4c:20:39:35:e0:f8:65:dd:
20:ab:85:b4:e8:25:5b:5c:a3:d1:44:ff:12:f6:c2:b1:79:39:
1e:2b:75:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org