Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mlSeErOm1Hs7HTIo1tp6w5vk7Eo.roa
File: mlSeErOm1Hs7HTIo1tp6w5vk7Eo.roa (raw, json)
Hash identifier: 5tCG0egSQAVi7gL/K5mhbXIKxDcKJZcjqfFEbmvLtKA=
Subject key identifier: 9A:54:9E:12:B3:A6:D4:7B:3B:1D:32:28:D6:DA:7A:C3:9B:E4:EC:4A
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 010EB517
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mlSeErOm1Hs7HTIo1tp6w5vk7Eo.roa
Signing time: Wed 22 Jun 2022 06:56:44 +0000
ROA not before: Wed 22 Jun 2022 06:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 188.215.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17741079 (0x10eb517)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jun 22 06:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a549e12b3a6d47b3b1d3228d6da7ac39be4ec4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:dd:59:8f:73:13:8b:2d:fb:83:15:ba:13:5b:
d6:41:b6:a0:90:a8:29:43:3d:30:f4:9e:5d:48:7e:
be:d0:a5:20:d8:ac:87:2e:b2:51:d3:74:71:52:4e:
78:d4:c3:0c:39:86:a5:91:c8:03:c2:b0:43:34:39:
e4:11:31:4f:8e:44:e2:aa:89:29:f1:5b:4d:c9:e7:
37:06:da:92:77:11:72:e4:58:f1:d2:09:ae:83:77:
a2:a2:2c:2e:4f:41:f0:8a:a8:66:fe:1b:a1:fd:c1:
84:3d:12:74:1a:b2:71:93:bf:3d:bf:14:51:25:06:
28:18:b5:b4:ad:f8:5a:3d:66:b4:f0:4e:09:ab:4d:
28:a9:1a:1d:90:2c:97:71:79:d6:b0:b7:cf:18:e6:
7a:f2:06:6b:2a:a5:7d:4d:e7:bd:25:10:96:b7:d9:
b9:92:b6:0b:8e:77:01:f1:f9:1c:ea:ef:7b:8d:a7:
0b:cb:0e:1b:d2:a1:65:c6:51:89:c2:f0:58:8d:ef:
07:44:32:fa:08:0d:37:85:f3:20:d9:5f:42:05:b2:
48:e7:18:6e:18:47:b3:3e:c2:a8:13:7a:95:b3:93:
17:22:02:2a:2d:f8:b0:21:a5:bf:01:b1:14:15:11:
68:88:d2:5c:eb:29:d3:74:84:b8:9c:62:6f:4a:c0:
08:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:54:9E:12:B3:A6:D4:7B:3B:1D:32:28:D6:DA:7A:C3:9B:E4:EC:4A
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mlSeErOm1Hs7HTIo1tp6w5vk7Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.124.0/22
Signature Algorithm: sha256WithRSAEncryption
66:09:4b:f3:33:e5:a0:af:0d:bf:5b:2c:06:be:e0:ec:b3:ca:
ee:db:06:ce:9d:6b:74:6a:3b:63:6a:d2:81:33:58:72:f6:37:
6f:3c:b6:13:91:41:d8:a9:70:9f:68:a1:95:61:ce:e3:5c:39:
8b:cd:4a:8d:e7:b3:a8:25:7f:ad:60:80:64:03:1d:4d:e5:2a:
8a:47:17:48:3f:f3:56:43:0a:f6:e9:af:56:ab:19:d7:8c:04:
ea:1e:c1:ab:d3:f5:f9:f8:7a:72:2b:94:fe:45:98:45:c3:e0:
a7:6a:be:01:a1:b4:67:69:6f:ee:90:87:24:ae:4e:02:78:9e:
ab:31:a1:79:3b:ed:85:1b:04:ca:81:ea:bb:18:4d:3e:4c:d7:
04:21:01:2d:77:a6:a7:07:f7:b7:b2:1d:73:94:ab:b9:85:b2:
cc:8b:c7:db:f8:33:8d:27:f0:6f:b9:95:55:21:7a:0a:05:a2:
54:87:d0:07:ee:18:36:23:93:5f:84:eb:af:d7:ad:47:c2:3f:
d4:8f:dd:49:9f:19:25:6d:3b:9e:e9:46:20:0d:50:7c:8a:a4:
f5:77:80:43:9c:06:b8:4b:ca:95:20:ab:bf:10:0e:16:5f:3d:
33:3b:7f:be:f5:8a:5a:d4:cc:1e:af:96:db:d3:b6:70:f9:0e:
71:bb:3b:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org