Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/mHk6L6H-jWyaMbVTI3FjaDHipGk.roa
File: mHk6L6H-jWyaMbVTI3FjaDHipGk.roa (raw, json)
Hash identifier: tNK2kkwUAJwrYI1wuz8QeWAUVaexc8zjKHTZZDzJI1M=
Subject key identifier: 98:79:3A:2F:A1:FE:8D:6C:9A:31:B5:53:23:71:63:68:31:E2:A4:69
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B5E7D9D
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/mHk6L6H-jWyaMbVTI3FjaDHipGk.roa
Signing time: Sat 01 Jan 2022 10:02:33 +0000
ROA not before: Sat 01 Jan 2022 10:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24690
IP address blocks: 91.120.58.0/24 maxlen: 24
194.88.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459177373 (0x1b5e7d9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98793a2fa1fe8d6c9a31b5532371636831e2a469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:22:9f:c7:a9:e2:52:3f:90:2a:43:ee:25:c2:
2c:50:dc:e8:e3:b9:7e:44:27:94:7d:bb:0f:e4:58:
fc:db:45:56:b2:52:76:32:2c:59:61:61:f6:52:32:
0a:a2:6c:ae:40:57:1f:d6:6f:0f:a3:85:c1:e3:ce:
1d:8e:8b:c4:50:e6:e6:5e:0a:8e:82:f3:f5:7e:fd:
c5:e1:15:83:95:19:85:da:50:04:28:c9:13:e9:c0:
1e:f3:23:21:f9:50:6e:47:44:37:a1:b7:63:71:ce:
f1:c5:13:0e:17:c0:ea:49:1d:a0:d2:d6:6b:3c:0b:
0f:08:9b:d9:d4:6a:d0:bb:92:09:2e:4a:23:bd:73:
a1:96:16:bf:e4:a3:cb:3d:43:1d:1b:ff:2e:f1:3b:
e8:22:5b:5d:e8:0c:8e:62:f4:a1:b5:a5:ff:cf:36:
0e:5c:dc:e6:aa:9a:f2:07:f1:84:9d:e0:d9:a6:67:
7b:35:1a:26:85:00:7a:63:a1:ab:6f:5b:23:d4:16:
2b:8d:7c:bc:47:c1:6e:0a:92:c3:2a:db:02:05:40:
46:b2:17:63:88:05:45:92:6c:73:0e:b9:44:d0:a5:
00:d3:eb:66:bd:4f:3e:ab:d5:91:23:ce:00:53:70:
a0:52:b9:7f:d3:68:3a:59:33:9b:bd:e4:f2:fe:92:
81:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:79:3A:2F:A1:FE:8D:6C:9A:31:B5:53:23:71:63:68:31:E2:A4:69
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/mHk6L6H-jWyaMbVTI3FjaDHipGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.120.58.0/24
194.88.40.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:07:b3:d7:fa:a0:9c:75:37:74:34:4a:40:c7:bf:94:ca:71:
2e:41:fc:01:f7:d0:ea:8a:36:28:a9:1d:50:d1:fa:3c:c0:9a:
52:83:54:5d:9f:59:20:b8:78:3f:f7:3a:dd:64:96:9f:7f:64:
a8:a0:90:3d:a9:37:24:1c:0c:81:5a:20:7d:4d:4d:bb:8a:b6:
dc:5f:d9:29:63:c8:1a:46:cc:80:54:8e:c1:b6:d2:71:78:7f:
f9:cd:02:7f:70:b4:1c:f4:b6:c5:26:8e:08:ab:6b:c4:79:73:
fc:e7:7a:99:be:a6:df:53:a5:71:ce:46:56:bd:21:b8:ab:bc:
ea:4b:c5:0a:c9:14:82:1b:23:07:cf:ab:7c:67:e0:e2:67:9e:
34:9d:2b:44:b4:a6:5d:1e:18:73:82:3c:c8:63:ca:5c:89:42:
18:8b:c7:00:99:95:09:d6:d0:3c:40:9f:8d:af:1b:89:ec:df:
7e:a3:f2:92:bd:51:65:d8:a2:39:a2:f9:cb:03:ab:4b:1f:19:
61:5f:a0:23:b9:f4:ad:2c:26:05:1b:5d:6f:56:33:a5:f8:ef:
4e:7e:c3:2a:24:2e:ab:79:88:fe:bf:c9:0b:3a:8e:fd:1a:a3:
79:f6:b5:3f:6c:83:48:7d:bd:1d:6e:1c:18:fe:20:18:c4:34:
87:1d:0c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:17 2023 by rpki-client on console-fra.rpki-client.org