Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/mBT2HBzCMOT7bQU9LN3UmqIAEXI.roa
File: mBT2HBzCMOT7bQU9LN3UmqIAEXI.roa (raw, json)
Hash identifier: iQRv1B3FH1l87AaU6OAOhGwqgdZfG6uVyPDFoMbfQkc=
Subject key identifier: 98:14:F6:1C:1C:C2:30:E4:FB:6D:05:3D:2C:DD:D4:9A:A2:00:11:72
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 0597E730
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/mBT2HBzCMOT7bQU9LN3UmqIAEXI.roa
Signing time: Sat 01 Jan 2022 07:03:57 +0000
ROA not before: Sat 01 Jan 2022 07:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30885
IP address blocks: 86.105.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93841200 (0x597e730)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9814f61c1cc230e4fb6d053d2cddd49aa2001172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d0:e7:54:22:31:2f:13:6b:f1:14:24:43:33:
e4:04:f0:da:cd:ae:9a:16:8a:3f:2c:5a:3c:7c:50:
d2:bf:49:27:b7:09:ea:f2:28:78:74:71:c7:8a:78:
e3:fc:9e:1a:71:22:c5:54:3d:2d:b4:e4:54:bd:59:
15:5f:1d:a9:bf:99:23:ec:d3:35:c3:4d:f8:21:be:
e7:77:43:aa:08:3f:97:d1:93:2a:d1:c6:da:ef:74:
a5:b9:3c:5b:fb:fe:38:95:ce:76:a2:2f:65:c4:18:
a0:42:43:0c:37:b2:4c:28:fd:91:59:4d:40:3d:b3:
cf:fb:e1:bd:96:f2:4e:67:9c:9d:a2:27:8e:db:26:
c0:14:88:79:74:f4:b1:b4:f3:23:77:0f:26:95:21:
ff:91:07:4c:1f:ce:ec:74:ab:ab:ee:f4:8e:22:b0:
27:09:fe:43:45:fd:3b:57:51:6c:ae:e1:64:3e:3a:
5f:cd:c3:46:94:ef:ca:be:c5:03:8d:84:57:d8:b2:
a3:71:15:fb:13:00:b7:a6:4a:34:2f:f5:00:c7:57:
65:e4:24:ed:dc:a0:ae:72:2c:c4:7e:e2:af:d7:43:
15:c3:a2:3d:23:31:44:e7:71:7a:20:3c:f4:c1:ba:
7a:2e:f0:a0:ae:cc:a0:94:df:e2:b7:e9:17:1d:43:
3b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:14:F6:1C:1C:C2:30:E4:FB:6D:05:3D:2C:DD:D4:9A:A2:00:11:72
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/mBT2HBzCMOT7bQU9LN3UmqIAEXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:72:fa:54:6d:b8:e4:98:d5:58:18:80:55:2a:c4:7c:ff:82:
49:bb:89:5f:43:2e:6e:2c:4f:a0:4f:51:4e:33:a6:69:d4:8e:
bc:c3:dc:8c:ea:67:69:84:3d:1b:a2:de:9c:48:23:d4:6d:66:
c5:b7:9f:dd:fb:46:e2:d3:fc:a5:55:32:6b:0d:8a:f7:4d:45:
8d:f1:e1:ed:96:f8:35:95:dc:ed:eb:33:01:48:fc:3e:a8:1f:
f3:91:8e:b1:27:61:01:30:2b:2b:26:70:0c:7d:24:52:ac:6b:
5c:f2:bd:82:d1:81:34:2e:b0:73:9d:8d:bb:ab:b4:04:4f:9b:
c1:31:9a:44:7a:1c:08:ef:e1:90:44:5c:93:a4:52:ac:b2:4f:
66:74:9c:c1:6c:74:27:87:80:84:b9:d3:86:b9:d9:59:db:87:
83:ed:b7:a9:3b:50:90:f1:91:e3:bb:89:74:f1:d9:ff:23:8d:
98:e6:7a:16:c3:bf:bc:66:75:69:ac:55:92:78:dd:74:47:79:
9e:57:48:c6:96:a7:eb:fb:aa:10:fe:01:47:1d:d5:15:44:a5:
9f:6d:7f:39:89:d3:28:5e:a3:b8:ab:e8:b9:6f:60:33:f4:16:
57:6b:6d:08:4a:71:8f:87:eb:14:a2:9d:3b:07:d9:72:d6:38:
a0:86:8e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-fra.rpki-client.org