Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/mrdg_TjzfumsSNCYyJtD3ugbDeU.roa
File: mrdg_TjzfumsSNCYyJtD3ugbDeU.roa (raw, json)
Hash identifier: 1+IZcqbRcE98oveF88Vwl4mZ45NSgkflXIS+h4fKKNk=
Subject key identifier: 9A:B7:60:FD:38:F3:7E:E9:AC:48:D0:98:C8:9B:43:DE:E8:1B:0D:E5
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 08581AC1
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/mrdg_TjzfumsSNCYyJtD3ugbDeU.roa
Signing time: Wed 09 Feb 2022 13:54:30 +0000
ROA not before: Wed 09 Feb 2022 13:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 194.31.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139991745 (0x8581ac1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Feb 9 13:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ab760fd38f37ee9ac48d098c89b43dee81b0de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1e:01:8f:05:da:2a:54:12:f0:95:0b:fe:11:
43:d6:fa:5f:a9:20:99:e9:dc:af:37:ae:23:57:46:
c2:d6:57:03:47:74:cd:d3:9a:7f:53:2b:10:62:45:
b6:ad:cc:b3:2a:b0:3d:25:53:06:18:80:58:f9:43:
6e:14:7e:2e:57:c3:88:15:f3:e3:7b:1c:e2:ed:1b:
e4:ff:5b:db:1b:9d:23:a1:f9:0c:1e:d4:99:82:b4:
a4:e6:fd:a4:93:d0:5f:f2:86:12:e8:61:05:4c:16:
cb:bd:ef:66:36:53:59:71:b2:0a:93:e5:ec:81:4b:
81:3f:10:6b:79:01:dc:c5:87:a7:25:69:d0:5e:ac:
b2:bb:cb:3e:2f:5a:82:70:2c:8f:46:b6:0a:4b:29:
91:6f:64:ff:85:2f:77:a1:53:6d:4f:32:fd:12:29:
fe:98:e0:fd:16:77:43:1a:74:3f:9c:d6:d0:e5:2f:
e0:94:ed:be:8d:5e:35:5c:bb:97:84:07:0a:a1:e9:
30:8a:7f:79:fb:b4:64:bf:14:f7:8b:d0:b8:22:9d:
a4:6c:5d:31:09:cf:f1:33:07:36:ad:ee:6d:d6:a5:
68:40:4f:2d:33:5e:e5:82:63:25:3e:b0:d8:08:8c:
28:8a:39:cd:43:78:d8:4c:cb:85:04:e7:37:e1:36:
40:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B7:60:FD:38:F3:7E:E9:AC:48:D0:98:C8:9B:43:DE:E8:1B:0D:E5
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/mrdg_TjzfumsSNCYyJtD3ugbDeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.180.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:14:8e:79:2a:e6:9f:fc:a7:76:2d:d9:90:60:96:32:bc:b3:
2c:2f:ed:77:fc:50:c5:94:2b:13:a6:c1:a5:c6:bd:83:98:69:
f7:dc:b9:2f:42:98:db:ac:42:6f:41:b7:0d:06:ab:9b:d9:ea:
92:a1:05:b2:7e:21:aa:b5:54:e4:e4:aa:0f:fb:05:e1:b6:1e:
0e:75:3e:ac:89:f4:85:4d:c0:0a:1e:e0:ec:88:2b:8a:58:86:
a6:07:63:fd:74:04:8e:1e:d5:40:21:c8:b2:df:36:ac:7f:66:
89:5c:df:1c:ea:87:ac:8e:da:85:92:9f:3a:17:0c:71:43:b5:
8c:a1:51:07:51:21:ad:47:e7:93:36:99:3e:dc:0d:5f:b2:3f:
19:eb:97:69:94:e8:a0:92:5b:5b:78:ef:4d:14:0e:78:22:38:
cd:bc:c2:8a:01:ac:24:ab:87:97:75:70:33:43:67:cd:65:40:
9e:cc:e6:54:8f:f4:f4:82:22:8e:6a:f0:b6:c4:df:8c:26:b5:
2f:78:91:3d:91:11:3e:ae:db:87:59:60:cf:43:1e:c5:ca:26:
a3:c5:29:ee:f2:6b:27:4f:c2:4e:3a:2e:de:8d:7a:6f:00:01:
e7:6f:b1:2e:90:25:28:e5:bd:ba:a4:78:b9:c0:00:9b:d6:82:
fa:36:48:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:14 2025 by rpki-client