Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/mtfMECDtU9e23hd2gQea3USTjV8.roa
File: mtfMECDtU9e23hd2gQea3USTjV8.roa (raw, json)
Hash identifier: eygmz5PaeiHvrBWksK6QsW8Z0r4qkrWncCUkHjlI5bk=
Subject key identifier: 9A:D7:CC:10:20:ED:53:D7:B6:DE:17:76:81:07:9A:DD:44:93:8D:5F
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 0184F1D7C50501F52B47B81F43516C53501F
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/mtfMECDtU9e23hd2gQea3USTjV8.roa
Signing time: Thu 08 Dec 2022 13:06:00 +0000
ROA not before: Thu 08 Dec 2022 13:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 37.19.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:d7:c5:05:01:f5:2b:47:b8:1f:43:51:6c:53:50:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Dec 8 13:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ad7cc1020ed53d7b6de177681079add44938d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fc:f9:8d:da:15:21:e6:fa:c9:b2:7d:da:d0:
45:4e:7f:f9:c6:56:ec:d9:a9:2b:97:68:32:47:a0:
c4:f6:7b:a8:78:27:a0:20:a8:ef:21:c3:97:98:57:
a0:de:1a:d4:c0:9c:d5:7a:8a:1c:8e:c5:1e:f2:d8:
05:70:9c:16:df:af:33:4d:97:c7:2a:49:cf:fc:83:
99:6c:20:0a:05:ae:80:d2:87:dd:31:7b:da:af:52:
d8:06:5a:ad:0b:ef:d5:79:af:27:e3:e6:ff:b4:a4:
75:9a:d2:90:b1:36:ad:c1:68:fa:66:4a:de:56:a0:
2f:b5:f6:46:59:70:be:80:cb:c2:49:27:e2:2c:af:
22:14:6d:d9:bc:40:33:f5:33:de:11:e1:de:4e:fb:
76:f5:fe:c7:d0:3d:18:9e:c5:b8:0c:a0:ed:5b:d3:
87:b9:d3:ef:b5:3c:d2:ff:07:98:69:7c:6f:1a:ab:
0c:0b:0c:19:82:ba:3d:17:e5:05:f1:73:a5:42:f7:
23:0e:bf:6f:53:f6:8b:a0:5f:9c:1f:e0:53:e2:ee:
51:3e:a8:75:03:d3:5d:09:67:85:73:ea:86:9e:8d:
dd:07:dc:9a:b0:a5:03:14:f1:89:d2:21:06:6f:32:
08:ec:82:85:fa:82:e8:2b:ee:4a:03:36:5f:df:68:
94:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D7:CC:10:20:ED:53:D7:B6:DE:17:76:81:07:9A:DD:44:93:8D:5F
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/mtfMECDtU9e23hd2gQea3USTjV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.68.0/22
Signature Algorithm: sha256WithRSAEncryption
65:61:a8:cd:3b:cc:f4:14:ba:45:10:7f:cf:b7:45:a0:d5:08:
34:31:dd:e9:56:54:7e:08:c8:03:8e:12:b8:50:18:12:f4:01:
0b:93:b5:0a:fa:62:f4:3d:86:37:11:59:cb:fd:25:2e:39:cb:
b1:89:a4:7c:d6:a0:0c:f5:5a:0a:06:2e:79:32:4c:27:73:b5:
18:b9:16:00:3e:db:fb:4c:b6:05:f0:e0:33:21:68:73:17:68:
dc:d1:41:38:4c:54:4b:53:fa:26:68:e1:35:66:ef:f1:e3:1c:
19:4c:2e:a0:8a:98:44:25:eb:fb:12:da:b3:69:32:60:59:47:
af:68:1a:2b:b2:c7:8d:18:75:9e:ac:eb:a4:da:31:83:d1:25:
c1:89:7e:f8:ff:19:21:b8:ab:c2:0f:ee:6b:e4:62:3f:e6:e2:
66:57:71:db:5b:66:55:e6:50:83:1a:ba:54:4f:26:7a:06:a7:
1c:8a:7a:8f:c0:da:67:42:37:63:6a:a4:fd:9d:f3:b8:d8:ca:
a1:45:7d:fa:2d:db:d5:8d:ae:8f:c7:99:0e:16:57:63:2a:35:
26:ea:e1:cf:85:7b:c4:8e:ba:47:b2:2b:ca:00:24:c6:ce:86:
e0:9a:b6:e6:88:06:71:60:23:20:9b:19:02:0b:61:29:71:fb:
ec:1f:8f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org