Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/mr3ey5cs-7Xd4tifkusoKMBpXUY.roa
File: mr3ey5cs-7Xd4tifkusoKMBpXUY.roa (raw, json)
Hash identifier: 2EznPz7/L22BtQx6Gmqlr1hxdWE6EoC09MgM4XRG0tw=
Subject key identifier: 9A:BD:DE:CB:97:2C:FB:B5:DD:E2:D8:9F:92:EB:28:28:C0:69:5D:46
Certificate issuer: /CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d
Certificate serial: 02FD6EE1
Authority key identifier: 1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/mr3ey5cs-7Xd4tifkusoKMBpXUY.roa
Signing time: Tue 05 Apr 2022 14:06:03 +0000
ROA not before: Tue 05 Apr 2022 14:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211270
IP address blocks: 194.61.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50163425 (0x2fd6ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d
Validity
Not Before: Apr 5 14:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9abddecb972cfbb5dde2d89f92eb2828c0695d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:45:6f:d4:dd:a0:3c:3a:f0:31:81:05:d4:
78:f3:81:31:e9:84:4a:fe:ae:ec:f2:aa:5a:5a:80:
32:67:26:aa:57:48:4f:aa:62:79:a4:9e:dd:f3:1d:
7e:d2:9c:33:0a:a1:4a:21:47:35:c9:03:f2:4b:8b:
ff:40:7f:02:da:8a:29:30:0c:08:35:15:da:fb:03:
fc:ad:bb:51:72:34:f1:75:cc:a4:8d:99:bc:e7:2a:
1d:ed:ad:af:74:52:a0:7c:13:32:54:2a:50:e2:08:
a1:d0:1f:9e:ad:ba:09:42:02:ca:61:f8:7a:35:df:
13:79:56:ca:32:7d:28:b2:03:9e:8c:18:a3:6d:f0:
44:e3:f9:dc:b0:1f:bb:61:c1:14:71:10:1a:89:88:
1c:53:6a:7f:37:1c:34:c8:86:44:8f:c9:cb:a3:a0:
c2:26:0b:84:56:86:4d:d5:e6:d3:0a:d7:56:b8:47:
77:74:c5:1b:2b:7a:6f:1b:d4:19:4e:a2:57:60:79:
66:28:95:7c:ca:57:59:f8:de:47:d4:5b:57:dd:0d:
1e:9e:cd:b5:ef:8a:c5:1d:60:b4:57:7f:9b:bf:3b:
8e:17:72:35:02:2e:8b:15:41:17:e9:4e:d1:50:7e:
0b:b9:f6:33:26:69:ad:20:cb:75:4d:3e:10:a9:a0:
30:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BD:DE:CB:97:2C:FB:B5:DD:E2:D8:9F:92:EB:28:28:C0:69:5D:46
X509v3 Authority Key Identifier:
keyid:1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/mr3ey5cs-7Xd4tifkusoKMBpXUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/G9LUY64VNG1e3Xk3uL-o4JsUN20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.34.0/24
Signature Algorithm: sha256WithRSAEncryption
89:a9:bf:ff:08:9f:3b:c5:54:d5:8a:06:8d:03:9b:86:12:bb:
71:b0:b3:d9:dc:0f:60:c4:20:b8:3b:0d:24:4f:d7:1e:e0:8f:
de:d8:e1:f4:26:f7:82:22:da:6f:36:6f:3c:c8:22:e1:54:31:
cc:f4:5d:44:81:e8:84:e3:c6:90:56:76:fb:05:9b:5d:e2:f8:
14:8b:48:f2:77:2c:d5:76:67:85:8d:21:fb:64:23:3b:8b:85:
aa:74:d8:67:de:f7:c0:d4:94:1a:90:56:22:e4:52:d8:73:a9:
cd:41:69:07:54:3c:27:6b:fa:98:74:01:7c:d5:8e:1c:db:e2:
81:67:7e:59:6a:1c:20:e1:ae:f7:29:9e:9c:c4:74:cc:8f:3e:
93:fc:11:b9:bb:da:80:3b:aa:6a:bf:56:ac:0e:40:46:72:fb:
a1:9f:e5:ab:c0:cd:c9:2c:22:04:01:42:ac:0e:bc:b0:c8:c2:
02:1f:fb:f3:b8:bf:bc:4b:1e:63:c5:2c:bc:48:aa:99:14:f3:
f6:ad:32:60:2f:ee:94:c0:2e:a5:f1:11:d3:8a:4d:5b:9e:c0:
42:78:aa:c7:c0:bb:e3:21:93:7c:33:da:89:80:4f:1e:47:a6:
f7:aa:b7:91:1d:47:19:c6:70:5a:73:9c:74:32:ae:f0:7f:50:
8c:3d:65:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-ams.rpki-client.org