Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/Mgf0VAcdv0WE4FMW52eQgsoKejU.roa
File: Mgf0VAcdv0WE4FMW52eQgsoKejU.roa (raw, json)
Hash identifier: bNAykFkPDbAqC2eXcyjp00SqwHiqoUltNNI0HalZQ5I=
Subject key identifier: 32:07:F4:54:07:1D:BF:45:84:E0:53:16:E7:67:90:82:CA:0A:7A:35
Certificate issuer: /CN=327519fc8684d3a9442df69619142228279a4f57
Certificate serial: BB03E0
Authority key identifier: 32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/Mgf0VAcdv0WE4FMW52eQgsoKejU.roa
Signing time: Fri 28 Jan 2022 14:13:36 +0000
ROA not before: Fri 28 Jan 2022 14:13:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.19.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12256224 (0xbb03e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327519fc8684d3a9442df69619142228279a4f57
Validity
Not Before: Jan 28 14:13:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3207f454071dbf4584e05316e7679082ca0a7a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:8c:cc:08:cf:8d:03:40:01:70:02:76:d2:
e6:d4:1c:6c:d8:e8:eb:36:df:ac:23:31:1c:77:71:
8e:3e:5b:50:9a:f8:3c:39:01:9d:3b:ad:ce:25:85:
42:6e:6d:74:94:ce:a9:60:ec:60:e3:88:e6:96:2a:
fc:e4:d1:70:98:61:67:48:36:fc:b6:4f:d8:08:3a:
05:24:d7:7f:e7:3e:50:40:60:fc:ff:09:50:b9:f3:
eb:43:f2:82:a2:61:ad:96:c8:72:60:16:55:0f:b8:
60:06:aa:94:b2:8d:2a:b1:63:59:da:23:66:1d:95:
3b:fe:57:a5:e4:1f:d1:1b:d0:b2:03:39:b0:63:f3:
fc:24:29:da:cc:aa:63:ed:9f:d5:3d:f3:13:95:78:
9b:6d:8d:2f:0f:d5:c8:db:5f:ab:96:d5:61:d8:0c:
fd:8d:18:36:8e:df:ed:d9:54:eb:c6:18:31:5d:6f:
d3:12:81:55:f6:35:7c:95:9d:5f:f3:26:9b:7d:30:
af:2a:99:7d:dc:03:7c:fe:17:15:3a:d0:44:1f:ae:
ff:25:20:53:ef:5c:99:1d:3a:9b:20:bf:13:16:75:
1a:dc:55:5f:c7:60:40:ba:1a:19:14:12:e8:3e:fc:
c2:61:03:cb:3e:6b:e1:4e:27:2f:ff:bb:a9:e5:9d:
48:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:07:F4:54:07:1D:BF:45:84:E0:53:16:E7:67:90:82:CA:0A:7A:35
X509v3 Authority Key Identifier:
keyid:32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/Mgf0VAcdv0WE4FMW52eQgsoKejU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/MnUZ_IaE06lELfaWGRQiKCeaT1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:40:0e:9c:b6:48:44:e3:03:06:d5:e2:d8:e0:56:5d:27:66:
27:c9:a8:4d:1b:09:43:86:2d:88:22:ec:36:ab:96:5f:40:95:
c2:cc:3a:5c:8f:09:c2:da:29:f6:60:92:2d:0e:02:7e:6d:b1:
da:54:14:a7:8f:7c:7c:e1:37:f8:58:e0:10:9d:01:54:fd:b4:
5b:65:1d:4d:02:9b:c1:68:a4:a1:4d:9a:8b:09:d7:f8:89:50:
ac:65:ee:71:38:bc:46:0c:be:da:d8:1a:02:66:7a:51:f1:2a:
fd:9a:08:8d:fd:1b:b8:65:d4:a1:e9:43:0d:83:a4:95:8b:e8:
24:9b:1e:da:67:62:c5:66:e7:f2:d6:97:1a:24:f7:e3:d5:67:
6b:79:5e:97:03:85:53:ca:c8:f6:2e:2d:8f:db:2d:26:05:ed:
de:07:fe:1a:4f:9d:60:1d:f7:c7:dd:1f:ae:a4:2c:2b:aa:b8:
7b:10:45:89:3b:78:88:d4:0d:8c:55:b5:bc:61:25:f6:83:08:
ed:ab:89:77:9a:b9:b4:75:d6:e1:91:19:eb:54:43:b6:8e:08:
f5:e4:93:f3:47:fd:61:80:4e:f4:af:39:6c:c4:7f:35:2a:43:
67:ca:1d:88:ed:d6:2f:8c:5f:e4:25:1a:99:f3:85:25:69:7b:
af:38:27:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:26 2023 by rpki-client on console-fra.rpki-client.org