Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/mWbuGPeiURkEu3WAxyYm1ILeZsk.roa
File: mWbuGPeiURkEu3WAxyYm1ILeZsk.roa (raw, json)
Hash identifier: pOprx+dt7pVHtF+SdJjzYiGn9y16uQ+yfbTJfdFnWMw=
Subject key identifier: 99:66:EE:18:F7:A2:51:19:04:BB:75:80:C7:26:26:D4:82:DE:66:C9
Certificate issuer: /CN=12c889964b35b51ba8e5e679a15b19a31f133578
Certificate serial: 0A774ABF
Authority key identifier: 12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/mWbuGPeiURkEu3WAxyYm1ILeZsk.roa
Signing time: Mon 11 Apr 2022 13:45:36 +0000
ROA not before: Mon 11 Apr 2022 13:45:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24634
IP address blocks: 91.245.248.0/22 maxlen: 24
82.146.160.0/19 maxlen: 24
2a0d:b3c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175590079 (0xa774abf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c889964b35b51ba8e5e679a15b19a31f133578
Validity
Not Before: Apr 11 13:45:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9966ee18f7a2511904bb7580c72626d482de66c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7a:b4:71:33:4e:55:c9:0f:76:a2:03:f4:b1:
0b:d6:78:a5:66:57:88:b2:ef:64:9d:b9:00:57:7b:
58:1e:94:60:01:ad:b2:02:61:cf:fe:bd:47:64:26:
e5:84:c1:95:69:5a:b3:a3:03:0e:a1:3f:10:42:a0:
00:1e:b5:ea:43:45:b2:74:ae:3c:09:00:49:cf:55:
6b:2c:d3:b3:82:d7:a9:e1:99:ff:64:55:52:d1:68:
cd:4a:32:e0:0f:89:d1:43:86:45:fc:c4:14:b8:42:
3e:8e:da:52:73:ff:7a:2f:69:62:90:20:6c:40:c0:
bf:c4:ac:ab:e5:28:89:6d:69:61:6b:28:5e:11:05:
8d:68:cc:cc:ad:bc:02:f1:31:7c:f5:61:90:0d:6f:
93:95:21:a9:3a:72:53:92:57:62:86:d9:0a:02:4b:
f7:6a:67:39:43:61:b5:36:7c:ad:11:8d:d2:fb:01:
f3:99:d6:72:50:a9:eb:61:d3:3b:4a:21:fa:30:45:
8c:80:ed:29:f9:8f:a5:2b:ec:f9:f3:a7:99:89:cb:
e2:05:3a:74:a3:cc:b5:45:3d:77:ac:d8:b7:e7:c7:
77:85:d3:f8:12:05:2b:5d:62:55:6b:0f:d7:d3:8f:
b7:26:d4:04:18:80:8a:b0:53:bc:0f:a7:ed:37:42:
e1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:66:EE:18:F7:A2:51:19:04:BB:75:80:C7:26:26:D4:82:DE:66:C9
X509v3 Authority Key Identifier:
keyid:12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/mWbuGPeiURkEu3WAxyYm1ILeZsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/EsiJlks1tRuo5eZ5oVsZox8TNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.160.0/19
91.245.248.0/22
IPv6:
2a0d:b3c0::/29
Signature Algorithm: sha256WithRSAEncryption
38:5c:c9:10:83:ea:7e:ac:c3:bf:87:d6:aa:71:14:64:21:81:
7e:17:09:a0:65:5a:e7:cf:82:2b:8e:13:3f:7d:37:81:9f:b1:
6f:9d:c0:f2:57:16:25:6d:5a:38:84:1f:23:a9:19:7f:9e:f0:
bc:b0:d5:3b:4a:ff:df:0b:70:e0:45:ef:74:18:b5:0b:91:00:
b2:a7:97:7c:ee:f8:6b:d5:68:02:be:f9:68:05:26:ec:e0:9d:
ee:ef:8e:7f:e7:70:0d:be:8a:00:52:9f:47:24:cb:68:e2:d2:
b0:86:37:37:43:d2:d1:8d:d3:21:91:0b:9f:60:e5:64:3f:70:
41:88:b3:51:9a:2a:ad:0b:58:8a:84:27:87:33:7e:8f:ba:ea:
7b:d8:f4:47:25:50:6d:c9:57:fa:e1:d8:2d:5a:e2:11:a2:9d:
c2:4f:53:b0:35:a1:c2:2c:19:08:eb:28:ec:d5:4c:27:61:05:
45:a3:22:94:0e:fa:c5:e8:98:de:21:b3:b4:1c:31:40:5e:9b:
56:3f:67:2b:94:0f:4b:45:aa:ff:b4:4e:a9:cf:f7:95:87:69:
d0:c5:a6:07:d5:66:a9:6e:24:f3:0d:94:42:95:1b:df:ae:c0:
30:4d:89:72:3d:11:31:69:0a:a3:c9:5e:d8:74:44:42:28:d2:
7b:0d:83:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-ams.rpki-client.org