Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/M0FiWuNxzd1OKoKq3FxS_Kvor7U.roa
File: M0FiWuNxzd1OKoKq3FxS_Kvor7U.roa (raw, json)
Hash identifier: uMAokS7EzbyBp9JjyvTIo4fki9vl89X90moMyCdwLKk=
Subject key identifier: 33:41:62:5A:E3:71:CD:DD:4E:2A:82:AA:DC:5C:52:FC:AB:E8:AF:B5
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0483DCEF
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/M0FiWuNxzd1OKoKq3FxS_Kvor7U.roa
Signing time: Fri 18 Mar 2022 10:20:05 +0000
ROA not before: Fri 18 Mar 2022 10:20:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 62.216.64.0/21 maxlen: 21
146.66.220.0/22 maxlen: 22
188.74.136.0/22 maxlen: 22
178.157.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75750639 (0x483dcef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Mar 18 10:20:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3341625ae371cddd4e2a82aadc5c52fcabe8afb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ea:71:e0:37:bd:4f:e7:bc:a8:2a:67:8e:08:
cf:d8:c0:cb:01:93:8e:15:c8:13:9a:81:e4:4f:56:
69:c8:a7:7c:70:50:70:ba:4a:aa:c2:79:8e:93:85:
25:a3:81:0c:55:b1:fa:6c:3a:33:ae:49:aa:37:2c:
ad:6f:93:a7:72:fb:ea:bb:5f:83:68:5e:a4:1c:64:
bf:db:65:a5:14:32:9b:ce:e0:9d:96:73:cc:1f:d6:
26:a9:70:5a:67:b5:76:28:c2:8b:2f:72:c0:87:71:
8b:65:29:04:a3:50:ad:ac:99:4b:f6:4d:a8:1d:25:
e9:f6:44:77:ac:52:0d:57:e4:e8:f2:3d:43:8e:e7:
80:29:7f:b4:0e:24:e6:e9:6c:9c:e1:bb:f5:be:ad:
f0:d3:a7:0c:f9:b0:4c:e7:0f:dc:c9:36:4e:56:0f:
9c:2b:29:83:a1:d5:1c:b0:01:d8:6e:1c:dc:89:86:
72:29:e1:07:2e:85:ea:5c:da:97:2c:f2:d1:66:09:
b0:5f:8a:d8:c5:c7:e3:2e:bf:d2:73:c3:4a:2c:36:
92:ad:bd:66:19:45:de:73:ea:67:03:f9:5c:97:6b:
06:66:f8:06:e2:98:95:2a:3c:4c:42:7b:c9:05:71:
6d:23:a9:1c:d0:44:91:5b:8b:56:1c:ab:46:b5:85:
90:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:41:62:5A:E3:71:CD:DD:4E:2A:82:AA:DC:5C:52:FC:AB:E8:AF:B5
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/M0FiWuNxzd1OKoKq3FxS_Kvor7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.216.64.0/21
146.66.220.0/22
178.157.64.0/22
188.74.136.0/22
Signature Algorithm: sha256WithRSAEncryption
26:f3:33:2a:ef:03:cb:6a:3f:6e:1a:72:1a:03:a5:a1:2a:05:
01:70:1a:43:8d:b0:91:7e:46:68:b8:86:8a:04:bf:c3:6c:3f:
35:85:4e:58:b5:27:b3:f1:f4:05:c7:8f:76:9d:fb:f3:b8:4a:
8e:48:27:6b:8a:bb:80:42:67:07:95:30:6e:b5:9a:50:c7:b6:
60:ba:b5:07:53:9b:a6:9e:fe:d1:69:2b:f8:8e:a8:5f:55:e0:
60:85:6a:f6:3e:c6:9b:95:54:f0:9a:11:97:05:57:d5:0e:b9:
f5:23:78:51:a1:3d:4a:e3:22:91:ec:22:b9:73:55:9d:c7:ad:
3a:29:e2:1a:4e:eb:79:e7:cf:2c:f5:78:99:fb:19:a8:e0:9b:
c9:f6:d2:fa:35:8e:28:2f:ae:3e:29:1a:62:30:a7:46:bd:45:
a5:17:4c:82:c7:91:99:06:83:3b:78:6c:e5:78:34:06:9b:17:
1d:2f:25:35:d1:d4:cc:8a:c7:92:cd:34:75:f0:d0:08:df:26:
21:bf:e0:f3:6d:1f:6e:e2:0c:65:53:a1:d4:c8:fb:0e:5d:55:
14:f3:ad:46:32:fc:0d:04:0c:8f:36:24:fc:b9:eb:33:46:a0:
c3:b3:8b:b0:ee:03:b3:fb:fc:91:1a:5a:d1:8e:19:82:6e:91:
75:e7:1f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:25 2023 by rpki-client on console-fra.rpki-client.org