Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/Mt7NRe1nzXxPv6wyyYokDWLHGnA.roa
File: Mt7NRe1nzXxPv6wyyYokDWLHGnA.roa (raw, json)
Hash identifier: vFGLSTxcf8ea+tu64RmmHGMf9Ky2tA+KrCfbwZLJ0hA=
Subject key identifier: 32:DE:CD:45:ED:67:CD:7C:4F:BF:AC:32:C9:8A:24:0D:62:C7:1A:70
Certificate issuer: /CN=887e81ba84344598c61462833aadf3204eae087c
Certificate serial: 15730714
Authority key identifier: 88:7E:81:BA:84:34:45:98:C6:14:62:83:3A:AD:F3:20:4E:AE:08:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/Mt7NRe1nzXxPv6wyyYokDWLHGnA.roa
Signing time: Sat 01 Jan 2022 15:01:47 +0000
ROA not before: Sat 01 Jan 2022 15:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8542
IP address blocks: 85.200.0.0/16 maxlen: 16
62.97.192.0/18 maxlen: 18
82.134.0.0/17 maxlen: 17
213.153.0.0/19 maxlen: 19
2a00:14d8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359859988 (0x15730714)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887e81ba84344598c61462833aadf3204eae087c
Validity
Not Before: Jan 1 15:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32decd45ed67cd7c4fbfac32c98a240d62c71a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b9:9f:fa:6b:74:9b:02:14:aa:63:49:fc:dc:
52:af:ba:c2:79:09:b3:1c:e8:59:55:b4:8e:0a:e1:
a6:7e:74:2d:01:dd:e6:1a:75:f1:9e:d1:25:4a:a3:
60:49:d4:1d:e8:6b:40:f9:63:54:6f:e6:aa:6c:56:
b7:bd:1b:26:1e:9b:6e:eb:7f:91:52:7b:4a:b7:8c:
a8:7b:8f:af:ff:c2:22:2c:51:ae:16:a6:5c:7e:03:
25:46:b1:99:10:b1:95:70:87:02:c1:15:c5:19:96:
39:84:22:fc:06:3b:39:90:82:20:45:ee:70:11:df:
88:e2:39:17:ba:e7:20:49:2e:7e:85:41:1f:3c:02:
aa:23:26:6e:c1:f6:c1:7b:e0:2d:ac:c0:11:b6:c8:
01:38:df:d7:da:b9:2c:a1:97:8f:77:f8:b9:f2:0c:
e6:97:19:ae:6b:f7:b5:aa:0d:61:1b:76:f7:0d:d1:
29:1d:ed:d9:e2:a3:78:4c:41:22:27:29:86:b5:e3:
45:c2:17:4f:ea:25:3d:13:1b:ff:75:ac:d1:7d:99:
4a:fd:26:23:60:39:3b:da:02:63:4e:62:f6:a3:77:
af:7f:a2:a0:d7:24:de:86:40:38:44:e7:96:35:84:
4f:a4:97:7f:93:3a:e4:94:4e:fc:11:8c:4f:ad:4d:
83:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DE:CD:45:ED:67:CD:7C:4F:BF:AC:32:C9:8A:24:0D:62:C7:1A:70
X509v3 Authority Key Identifier:
keyid:88:7E:81:BA:84:34:45:98:C6:14:62:83:3A:AD:F3:20:4E:AE:08:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/Mt7NRe1nzXxPv6wyyYokDWLHGnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.97.192.0/18
82.134.0.0/17
85.200.0.0/16
213.153.0.0/19
IPv6:
2a00:14d8::/29
Signature Algorithm: sha256WithRSAEncryption
14:16:ff:dd:39:27:d4:ed:55:f3:65:ff:94:19:c7:21:8d:da:
14:2e:90:83:5c:ee:4c:f4:f8:b0:20:f4:f7:8a:e7:53:d0:e6:
7d:9b:77:2f:fa:68:9f:93:4c:f8:93:3d:51:4f:3c:5a:4f:22:
2a:61:6b:2c:14:52:d1:ae:a0:d7:4a:9b:a3:68:33:a6:5d:84:
ca:2b:9f:81:e3:fb:0e:1d:9d:d8:39:fd:85:19:f8:bd:f7:f6:
74:05:11:8f:2d:73:49:08:75:48:62:c6:ec:00:f2:ca:65:9c:
61:35:96:ab:01:5b:8b:6e:0f:08:aa:08:8d:dd:f9:a2:6d:6f:
50:c1:d3:d5:27:8d:72:6e:74:40:93:09:9b:d2:01:97:6a:df:
e0:60:96:c7:b0:c8:59:2e:cc:ee:eb:16:58:ad:67:e5:15:3e:
be:fb:d1:26:57:98:9b:f1:20:97:b0:dd:84:35:5e:9e:aa:50:
82:64:4f:2f:31:74:58:03:45:e4:f1:19:e6:4f:a4:2b:c8:d2:
8f:74:86:ca:ab:e7:fb:6d:65:af:ba:de:d0:51:94:80:0d:34:
b8:5a:a8:86:a1:0a:4c:c3:d5:5f:66:17:de:c2:1b:31:b0:6e:
65:61:55:a6:f3:ea:c9:77:76:b6:49:7b:79:e8:8c:95:f3:b5:
e2:17:a7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:02 2024 by rpki-client on console-ams.rpki-client.org