Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mv-Ry5h5H2GC0wFTQLVP4jULVtQ.roa
File: mv-Ry5h5H2GC0wFTQLVP4jULVtQ.roa (raw, json)
Hash identifier: 7otGqP5wyuus6xhspbnrtQDNqqdv49Zos7+Q2/qkHJs=
Subject key identifier: 9A:FF:91:CB:98:79:1F:61:82:D3:01:53:40:B5:4F:E2:35:0B:56:D4
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 10BBC397
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mv-Ry5h5H2GC0wFTQLVP4jULVtQ.roa
Signing time: Wed 11 May 2022 04:37:59 +0000
ROA not before: Wed 11 May 2022 04:37:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207676
IP address blocks: 193.232.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280740759 (0x10bbc397)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: May 11 04:37:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9aff91cb98791f6182d3015340b54fe2350b56d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fd:e2:23:a3:cc:67:09:d6:2e:f2:01:cf:38:
fa:a5:8a:9a:82:37:54:f6:19:76:f0:3c:db:f6:3e:
43:2d:21:c6:2f:15:d6:f0:63:4d:fd:bb:1d:dd:92:
8d:6d:15:13:13:e0:d1:00:23:98:74:df:6a:f4:20:
7a:47:c8:53:6b:8e:b0:c6:09:6b:e8:51:69:59:dd:
47:85:62:14:bd:8e:17:e8:7d:68:18:ed:53:c5:bc:
44:c2:5d:46:70:e8:50:b8:75:8e:e6:5d:20:9e:8b:
0e:a5:18:10:67:14:99:de:9c:21:18:aa:4a:7a:2a:
fb:1c:85:90:58:33:66:e7:57:8c:99:f2:91:7d:ba:
22:a3:30:de:f6:99:a1:be:34:37:1d:c3:54:23:a6:
82:d8:34:1f:20:48:60:fe:20:34:26:a3:93:1b:e6:
46:0c:b3:53:ce:4f:23:4c:7f:5d:6a:a6:82:d5:4a:
c2:13:7d:b6:83:b4:25:12:cf:66:28:0b:6d:98:f0:
b1:3f:e1:76:cd:fc:19:cb:5b:92:70:89:bc:c6:27:
11:b2:86:be:63:8d:27:32:fc:8c:fb:ec:dd:5d:00:
6d:ec:24:f2:e3:56:4f:5b:f1:99:99:b6:30:18:cb:
95:bc:2c:f6:0f:0d:0c:43:5c:52:65:e3:c4:7c:4d:
fe:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:FF:91:CB:98:79:1F:61:82:D3:01:53:40:B5:4F:E2:35:0B:56:D4
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mv-Ry5h5H2GC0wFTQLVP4jULVtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.65.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c4:5c:5d:52:3b:4b:7b:b6:15:fa:34:6d:46:cb:c0:ed:f1:
6f:1f:80:e1:9a:14:42:4c:21:d6:41:a9:fb:ff:97:62:c4:32:
77:ab:39:17:d9:76:13:eb:e2:87:df:35:31:75:3d:18:e7:d1:
f1:bc:94:1f:9c:f3:f3:d0:90:29:31:09:4a:c0:89:80:e2:1d:
87:a7:21:d6:e9:7c:0c:b3:b4:33:40:44:88:95:77:19:6e:a9:
6d:7a:9c:80:e5:d6:45:d0:a1:b0:29:2b:ec:b8:9f:5d:a0:a9:
63:a2:e3:ee:9b:82:cb:11:6e:38:f9:14:d8:85:d5:ac:5b:2f:
d2:3a:ec:6e:01:91:77:bb:9a:4e:e0:31:d5:4f:86:97:a0:3b:
c0:43:d0:2a:82:bb:6e:f0:27:f5:fa:85:8b:5b:08:72:fe:72:
57:5a:f0:da:f8:c0:e0:a2:0b:54:4c:98:85:c6:13:72:0a:07:
fd:c0:f5:f6:f1:bb:ee:60:60:fe:80:09:07:b4:48:3b:3f:e8:
af:48:6c:03:c4:a7:a4:01:48:09:64:f1:d3:fa:ad:fb:3f:94:
38:c5:5d:fd:87:c3:f9:80:ca:b3:fa:21:52:1d:c0:1c:2a:68:
27:4a:2d:58:b5:f9:ec:ca:fb:7e:3f:03:ca:ef:e9:26:d2:7a:
60:e3:dc:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org