Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/mxkxnxBgNzeMdXF2hun5bz3qNtc.roa
File: mxkxnxBgNzeMdXF2hun5bz3qNtc.roa (raw, json)
Hash identifier: 8a03mcIOiujeFBRqeDPiSdPhDnIhkujFBbojHWChqM0=
Subject key identifier: 9B:19:31:9F:10:60:37:37:8C:75:71:76:86:E9:F9:6F:3D:EA:36:D7
Certificate issuer: /CN=054409a1d8b072f7db024528b9720339bdbbb106
Certificate serial: 06D83108
Authority key identifier: 05:44:09:A1:D8:B0:72:F7:DB:02:45:28:B9:72:03:39:BD:BB:B1:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUQJodiwcvfbAkUouXIDOb27sQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/mxkxnxBgNzeMdXF2hun5bz3qNtc.roa
Signing time: Sat 01 Jan 2022 05:02:45 +0000
ROA not before: Sat 01 Jan 2022 05:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3212
IP address blocks: 91.212.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114831624 (0x6d83108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=054409a1d8b072f7db024528b9720339bdbbb106
Validity
Not Before: Jan 1 05:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b19319f106037378c75717686e9f96f3dea36d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:18:06:50:f5:4a:18:e1:1a:31:3d:cc:0f:
58:2e:2c:4e:6a:8c:bb:8f:94:61:1b:39:b6:26:2b:
2a:32:fa:62:1b:f7:7f:d9:e5:54:2e:49:4a:f2:f8:
dc:ef:85:99:0b:5e:b9:e8:4d:87:30:75:4b:bc:6b:
5f:73:a3:64:4e:5a:5e:a1:43:34:75:b9:d0:82:92:
f0:e7:a4:41:93:fb:09:d8:97:bf:a5:a3:16:f2:eb:
85:91:60:47:f8:63:0a:25:7d:7f:94:f9:53:57:19:
6f:98:ad:da:c1:ce:a6:ea:18:6e:a2:e2:4d:43:a6:
51:e7:e4:13:24:34:29:75:43:8b:1a:39:ea:5a:22:
c6:92:da:2f:6c:90:26:1e:73:af:29:34:83:d6:bc:
5c:73:4b:40:c5:16:5f:cf:7e:43:fa:cd:2e:0f:ef:
ee:d0:d2:2d:a0:89:0e:ad:c9:67:d9:af:dd:64:7d:
ca:a1:51:5f:d3:b8:1b:ff:17:14:fc:16:0b:89:63:
dc:98:a0:f9:6b:46:67:91:20:f5:7c:d4:57:ce:f6:
87:51:dc:ce:59:08:0c:2e:1a:b5:e9:72:e0:02:f9:
55:d5:c1:3b:4e:e5:dc:76:2f:a7:7b:43:38:f1:90:
7c:05:12:b7:ac:0e:96:57:87:d6:ea:33:f7:c6:af:
76:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:19:31:9F:10:60:37:37:8C:75:71:76:86:E9:F9:6F:3D:EA:36:D7
X509v3 Authority Key Identifier:
keyid:05:44:09:A1:D8:B0:72:F7:DB:02:45:28:B9:72:03:39:BD:BB:B1:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUQJodiwcvfbAkUouXIDOb27sQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/mxkxnxBgNzeMdXF2hun5bz3qNtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/BUQJodiwcvfbAkUouXIDOb27sQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.251.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:d5:79:32:06:6e:59:91:e1:e9:12:37:cd:09:57:0a:e5:ef:
0c:1b:bd:4d:57:64:b7:0a:68:c6:b7:34:6e:9d:e0:d3:51:e3:
a3:68:23:e3:5b:bb:7c:4f:3e:44:7c:06:c3:f6:a3:5e:ce:95:
3d:6e:71:b5:cb:2d:dd:73:ea:0f:4f:84:5a:87:46:0c:c4:be:
6a:ef:86:05:02:75:6d:4e:91:78:45:08:ed:6c:cd:8f:3d:97:
47:df:b8:2c:fe:4e:bf:71:22:d0:6a:9f:34:6c:e0:7b:fc:ae:
e9:3b:12:af:a9:78:9a:fb:a7:71:47:bf:86:e3:63:ca:03:f1:
3c:fb:56:85:aa:22:5d:13:40:8b:14:0d:37:2d:39:20:55:fd:
d5:90:1c:20:05:44:b2:ac:ca:ca:c2:65:56:72:ba:66:f4:61:
2f:ab:c2:dd:46:99:45:9d:f1:ff:5e:88:68:32:6f:e5:3a:8e:
4e:de:eb:a4:39:b9:1e:23:12:68:92:1d:6d:2e:9a:66:86:51:
9f:f3:b1:79:64:32:26:fe:55:61:fa:60:eb:d9:d3:63:05:19:
13:e9:b0:fc:a8:28:86:09:11:86:56:02:8c:5c:6d:a4:17:86:
2e:c9:01:62:29:2d:ea:82:b6:a4:06:03:c1:31:bf:e5:eb:af:
78:64:9e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:08 2024 by rpki-client on console-ams.rpki-client.org