Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/MkJv4WSX5pU4RPdjhnEjYFpR8TI.roa
File: MkJv4WSX5pU4RPdjhnEjYFpR8TI.roa (raw, json)
Hash identifier: AWXBKlMnJ6fHUPXgDDvWiTfg2BUGQbWDlSMultdRE8I=
Subject key identifier: 32:42:6F:E1:64:97:E6:95:38:44:F7:63:86:71:23:60:5A:51:F1:32
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 0181FC66E3BAD9EDA37F0D3DCF815B120055
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/MkJv4WSX5pU4RPdjhnEjYFpR8TI.roa
Signing time: Thu 14 Jul 2022 11:10:10 +0000
ROA not before: Thu 14 Jul 2022 11:10:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50265
IP address blocks: 91.233.88.0/24 maxlen: 24
193.106.68.0/22 maxlen: 24
2a00:46e0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:66:e3:ba:d9:ed:a3:7f:0d:3d:cf:81:5b:12:00:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Jul 14 11:10:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32426fe16497e6953844f763867123605a51f132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8e:b5:ef:ea:32:8d:d3:ef:2b:18:5c:55:9b:
fe:f6:2c:99:be:4d:fb:cb:9a:36:3f:f1:17:8e:db:
8d:62:ab:13:2f:85:eb:0f:b7:60:85:69:bd:bb:c3:
38:18:95:12:16:81:d4:63:aa:dd:49:7b:4e:75:12:
af:7e:c5:44:dc:56:f0:30:82:35:b6:f3:8e:23:ae:
6c:f8:2b:a0:e1:1c:6d:2e:bd:98:d0:92:9c:cb:93:
66:00:7b:6d:1c:16:19:d7:21:b4:03:18:f8:cb:7f:
2a:d2:9f:96:12:f7:2c:4c:a9:71:08:16:2c:57:60:
66:92:a9:e9:a3:dd:f9:86:e4:b8:6a:7d:4a:71:98:
f1:8f:c0:5e:ea:a8:20:6e:84:aa:62:86:5a:27:b9:
6c:e3:0a:63:c2:c8:3f:5f:72:8a:0f:02:fb:7f:b3:
ff:ee:15:8f:13:10:95:9c:0a:38:04:72:48:ef:48:
1a:d3:46:72:b4:e7:41:f7:a9:ab:79:de:95:ad:79:
c4:40:6b:51:a9:03:34:43:db:fa:20:e4:27:48:e4:
76:22:90:95:da:e2:4b:95:ab:b2:b0:9f:22:74:f4:
00:49:bc:e3:ed:9f:ff:76:0d:21:4a:73:70:36:73:
f2:0e:9d:8e:21:56:08:cb:97:bf:4d:59:a2:8d:85:
07:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:42:6F:E1:64:97:E6:95:38:44:F7:63:86:71:23:60:5A:51:F1:32
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/MkJv4WSX5pU4RPdjhnEjYFpR8TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.88.0/24
193.106.68.0/22
IPv6:
2a00:46e0::/32
Signature Algorithm: sha256WithRSAEncryption
43:5c:2f:83:86:7e:7e:8a:72:b9:e0:58:56:16:2d:51:a0:57:
c4:a5:b6:ee:e8:cd:5f:bf:c3:ce:dd:36:b2:30:ad:af:cb:0b:
e3:67:af:88:6f:d0:bb:34:a5:2a:24:d3:4d:0e:74:03:22:7c:
7b:21:a2:7d:40:f2:fa:85:9d:ed:cb:0b:a5:81:dc:43:64:6e:
05:7b:9f:d8:93:39:64:33:f7:e0:f6:50:90:3b:e1:8b:82:59:
ec:2c:f9:3b:e9:03:31:e7:4e:ab:3e:55:c3:7e:82:09:f4:54:
bc:6f:ea:d9:11:ca:6b:9e:98:68:b4:30:7e:94:0a:34:3c:bf:
00:23:b3:9e:bd:7a:5a:84:43:85:24:76:50:2c:ad:d1:88:ca:
a5:4d:29:f1:ab:aa:7d:07:96:8a:5a:78:f6:ca:b3:98:9e:b8:
16:9c:af:35:41:61:8e:8a:53:be:b9:bd:f8:9d:9c:0d:a2:df:
6a:43:0f:f8:db:4d:77:95:19:02:7e:42:fd:ec:18:b9:48:6e:
10:7f:af:38:98:53:c6:5d:96:96:98:70:0f:36:44:7e:ef:d0:
9b:c7:95:22:41:c8:0e:3d:c2:b1:1d:2d:e7:c9:14:f7:a6:00:
8a:b1:01:aa:ff:c8:d1:79:25:de:a7:c7:be:f9:04:2e:1d:68:
0d:df:a4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:44 2024 by rpki-client on console-ams.rpki-client.org