Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c4f80c-7b69-4fec-aa54-e5f98ddafc98/1/MnaXRz4HyxKBZ3EdWMUky32Dde0.roa
File: MnaXRz4HyxKBZ3EdWMUky32Dde0.roa (raw, json)
Hash identifier: /6+ly+witUQD/moNGe3WEaIXYh7tH1dfA5NUsQRky4E=
Subject key identifier: 32:76:97:47:3E:07:CB:12:81:67:71:1D:58:C5:24:CB:7D:83:75:ED
Certificate issuer: /CN=1517d4f58af84f50ce42f13293ede4aff12d173f
Certificate serial: 0183C25CABABCE0DC54AAF3AEB5A9739EB11
Authority key identifier: 15:17:D4:F5:8A:F8:4F:50:CE:42:F1:32:93:ED:E4:AF:F1:2D:17:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FRfU9Yr4T1DOQvEyk-3kr_EtFz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c4f80c-7b69-4fec-aa54-e5f98ddafc98/1/MnaXRz4HyxKBZ3EdWMUky32Dde0.roa
Signing time: Mon 10 Oct 2022 14:46:36 +0000
ROA not before: Mon 10 Oct 2022 14:46:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210595
IP address blocks: 37.8.160.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c2:5c:ab:ab:ce:0d:c5:4a:af:3a:eb:5a:97:39:eb:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1517d4f58af84f50ce42f13293ede4aff12d173f
Validity
Not Before: Oct 10 14:46:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=327697473e07cb128167711d58c524cb7d8375ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:72:80:18:f6:8d:e5:e4:0c:81:75:a1:c2:f9:
1b:e6:b1:84:39:f4:49:ef:a2:b4:fb:3c:e2:67:c7:
19:ba:57:a6:67:c5:b4:f6:24:ea:1e:0d:7d:fa:20:
57:c9:c1:c1:ea:65:cc:c5:13:7c:85:4d:bd:1e:32:
56:29:f8:fa:50:75:da:d4:ab:51:44:27:0a:e8:59:
43:a1:47:18:c6:01:57:a4:c6:b7:88:c8:f3:2e:21:
c6:60:14:d9:2e:29:1c:76:9a:fe:e2:4f:21:c0:16:
80:13:b9:ad:d9:2b:89:29:f6:02:4f:b9:6e:1b:20:
e7:18:3b:5f:37:40:0e:6b:5b:a1:a7:b5:8f:c0:57:
b8:24:7c:d4:11:5c:8c:96:b3:99:eb:a5:44:fa:b4:
e4:38:6f:ea:bf:24:3f:a4:39:39:96:9a:e4:26:16:
80:84:2d:dc:b6:a6:02:4e:6b:c5:b6:a2:18:b3:c4:
a8:ec:07:4a:43:14:9b:cd:9c:9b:ba:2d:d3:f0:03:
90:7e:c5:7c:5c:e4:b0:0b:7f:5f:1c:75:ac:0a:d2:
5f:90:e7:93:1d:bf:35:3e:0f:aa:6a:e7:e6:68:d0:
f9:1f:3e:6b:29:9f:45:21:5f:17:cc:a7:58:d7:f6:
4a:30:6e:d9:60:83:b2:5e:32:c5:08:e6:e8:14:51:
c7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:76:97:47:3E:07:CB:12:81:67:71:1D:58:C5:24:CB:7D:83:75:ED
X509v3 Authority Key Identifier:
keyid:15:17:D4:F5:8A:F8:4F:50:CE:42:F1:32:93:ED:E4:AF:F1:2D:17:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FRfU9Yr4T1DOQvEyk-3kr_EtFz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c4f80c-7b69-4fec-aa54-e5f98ddafc98/1/MnaXRz4HyxKBZ3EdWMUky32Dde0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c4f80c-7b69-4fec-aa54-e5f98ddafc98/1/FRfU9Yr4T1DOQvEyk-3kr_EtFz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.8.160.0/20
Signature Algorithm: sha256WithRSAEncryption
51:68:8c:96:1d:26:cd:28:44:4d:ce:bf:80:8e:40:3f:74:de:
f4:90:c9:d6:29:e0:ea:f0:0e:31:a5:67:d3:5f:29:76:0d:97:
37:b6:fa:05:c7:da:43:3a:33:33:5d:db:7e:5d:6d:cf:4b:ac:
e7:10:fe:28:be:87:a9:44:ed:58:d7:5a:68:61:01:d7:2d:24:
0f:e9:15:a6:b9:66:b5:fb:d7:6c:7e:10:02:d6:49:65:91:96:
22:68:c0:96:a9:71:92:3f:5a:a2:fd:76:11:c2:35:09:9f:02:
d6:2e:c5:f0:0d:ec:aa:e4:55:c6:59:15:f0:45:5b:51:7f:f8:
da:1b:d7:69:2e:49:fd:fc:bf:e0:22:26:83:e0:96:f1:e3:0c:
a2:a2:61:d0:00:66:f9:01:d1:e9:b6:98:99:bd:be:93:0c:f5:
db:a1:89:dd:94:34:f3:cd:8b:95:bc:d2:ae:fb:ad:20:c5:e8:
e3:1e:65:b9:3d:d0:df:3d:20:06:69:34:75:26:b1:3d:4d:a9:
62:f8:48:03:5d:98:18:88:83:91:7b:2a:3a:89:88:2e:4e:0f:
8f:19:08:3d:00:b4:aa:49:83:80:24:fa:60:6f:fb:76:10:2a:
dd:c7:a5:dd:c1:df:f0:6c:5f:2f:a1:46:de:e6:12:d5:76:85:
84:15:56:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org