Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/MdqTSfBNRKRNmNmbYIIgsmebEOQ.roa
File: MdqTSfBNRKRNmNmbYIIgsmebEOQ.roa (raw, json)
Hash identifier: k8AVPTe6LbIusIrNBoRVC100F20x/4cMQxw9pepNuZQ=
Subject key identifier: 31:DA:93:49:F0:4D:44:A4:4D:98:D9:9B:60:82:20:B2:67:9B:10:E4
Certificate issuer: /CN=ebdb225471f2d6e41060b34185725485481014b8
Certificate serial: 05755F20
Authority key identifier: EB:DB:22:54:71:F2:D6:E4:10:60:B3:41:85:72:54:85:48:10:14:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/69siVHHy1uQQYLNBhXJUhUgQFLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/MdqTSfBNRKRNmNmbYIIgsmebEOQ.roa
Signing time: Sat 01 Jan 2022 06:00:53 +0000
ROA not before: Sat 01 Jan 2022 06:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208045
IP address blocks: 151.249.126.0/24 maxlen: 24
2a01:5b40:ac3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91578144 (0x5755f20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebdb225471f2d6e41060b34185725485481014b8
Validity
Not Before: Jan 1 06:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31da9349f04d44a44d98d99b608220b2679b10e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:05:07:44:03:f3:54:86:f6:f0:ad:41:d1:90:
a4:0d:08:af:c4:f6:a0:9c:fa:b7:13:1f:3b:d3:dc:
14:39:87:7e:58:9a:fc:8f:1b:d9:b4:77:3f:dd:cd:
e7:10:61:de:c1:af:80:3e:0e:02:0f:16:91:d1:e6:
69:4e:d5:f4:89:16:c2:54:72:30:df:12:2b:c4:40:
24:e4:62:cc:28:5f:fd:28:b5:5d:12:38:1b:f6:64:
e9:74:1e:68:8f:72:8e:2d:12:23:62:97:59:25:4b:
b5:7d:f4:a0:f9:80:6d:af:dc:48:68:bd:4c:e6:d0:
c8:71:ef:0d:f9:b0:bb:34:bb:ed:8c:b7:c1:3b:1a:
92:47:be:12:4d:fe:d8:13:86:75:87:20:78:1d:d9:
30:80:74:7d:70:21:5e:f9:04:9e:3b:12:1d:99:c6:
67:0d:1a:0d:fd:f9:a8:a7:59:5a:43:f1:26:87:36:
43:cd:30:4f:b2:c5:48:86:bb:6a:ab:74:2d:6a:68:
e7:43:b4:da:53:4f:fa:cb:81:91:e3:85:a5:9e:32:
48:ae:dd:54:28:dd:f7:b3:91:12:5c:ee:b6:b5:f6:
ca:b1:11:db:b1:98:34:ca:c5:c8:01:9c:74:2f:4e:
c2:69:0d:76:a4:ea:35:d2:1c:16:57:35:69:8b:22:
6a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DA:93:49:F0:4D:44:A4:4D:98:D9:9B:60:82:20:B2:67:9B:10:E4
X509v3 Authority Key Identifier:
keyid:EB:DB:22:54:71:F2:D6:E4:10:60:B3:41:85:72:54:85:48:10:14:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/69siVHHy1uQQYLNBhXJUhUgQFLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/MdqTSfBNRKRNmNmbYIIgsmebEOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/376853-2abf-4232-91ff-09a5e8d960dd/1/69siVHHy1uQQYLNBhXJUhUgQFLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.249.126.0/24
IPv6:
2a01:5b40:ac3::/48
Signature Algorithm: sha256WithRSAEncryption
9c:06:33:0c:ee:94:9a:51:9f:c3:28:d4:57:af:83:bd:68:8e:
28:8a:43:d0:1d:d5:2d:b5:45:e7:9e:0d:8e:c1:b5:73:2b:07:
6c:c8:87:17:c5:62:71:11:e9:17:92:8e:25:8d:76:08:2f:0c:
33:e6:c1:b2:40:75:6e:01:6b:b9:ac:4f:23:92:87:8a:82:81:
c2:47:e5:9f:5f:e9:b8:90:e3:1a:49:93:a8:8e:26:f3:d7:ef:
14:bf:98:12:35:4a:2e:c9:21:00:44:b8:8d:3b:69:e9:c0:30:
be:ba:01:09:39:53:51:0b:c4:fe:fa:27:48:38:c2:c7:0d:7e:
51:43:d6:87:3c:2c:d8:45:7b:7f:69:dd:0b:d5:59:c2:8a:42:
db:e7:dc:49:8c:22:60:58:b4:fa:8b:58:cf:26:b6:f1:2f:93:
5a:44:90:e7:42:96:15:38:60:bb:69:db:eb:09:27:a7:56:c9:
26:d1:56:0d:da:b4:68:75:53:99:ee:48:ec:8b:6b:32:6c:5b:
dc:f7:19:f0:8e:14:d7:99:82:d4:5f:f3:78:6e:57:e0:11:d6:
e5:3e:77:86:58:22:52:a4:d2:dd:06:23:b9:c3:65:b3:e6:5a:
77:39:2c:9b:f8:64:46:08:87:a6:75:96:aa:c6:50:62:ef:5b:
b0:eb:a7:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:58 2023 by rpki-client on console-fra.rpki-client.org