Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/mc-YLjMX7pVIi1Y3-2eRXGKQzmM.roa
File: mc-YLjMX7pVIi1Y3-2eRXGKQzmM.roa (raw, json)
Hash identifier: 8nQow792YXtXm0Q/vEA++Q1G45G4EdvvizUz65b4Tic=
Subject key identifier: 99:CF:98:2E:33:17:EE:95:48:8B:56:37:FB:67:91:5C:62:90:CE:63
Certificate issuer: /CN=d0d6e65505b4f4e4f4f31d90b8b21a3a7cfb0ebf
Certificate serial: 0182EE8F6DA360E49683CBA86ADAE8072268
Authority key identifier: D0:D6:E6:55:05:B4:F4:E4:F4:F3:1D:90:B8:B2:1A:3A:7C:FB:0E:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0NbmVQW09OT08x2QuLIaOnz7Dr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/mc-YLjMX7pVIi1Y3-2eRXGKQzmM.roa
Signing time: Tue 30 Aug 2022 11:42:33 +0000
ROA not before: Tue 30 Aug 2022 11:42:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197511
IP address blocks: 195.20.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:8f:6d:a3:60:e4:96:83:cb:a8:6a:da:e8:07:22:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0d6e65505b4f4e4f4f31d90b8b21a3a7cfb0ebf
Validity
Not Before: Aug 30 11:42:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99cf982e3317ee95488b5637fb67915c6290ce63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:21:79:4f:79:6c:8d:e7:6d:d4:21:54:74:48:
29:fc:f1:3a:6a:05:16:55:27:f3:f5:ee:fd:d3:bf:
cd:1b:cb:24:0e:d7:19:f6:bf:cc:4d:80:b3:ab:ca:
a1:cc:8c:bc:54:b5:58:0c:e4:42:e6:b4:4f:ff:64:
6e:ed:5b:96:19:46:6d:91:26:b9:4e:37:cc:e5:9a:
95:23:12:2b:fc:ca:0b:1d:11:d1:e9:63:cc:12:61:
be:d3:1f:ed:6a:da:d9:1b:e8:c0:0e:87:5b:48:21:
c5:49:0b:34:e8:82:7f:91:31:43:3f:87:5f:f2:c8:
3f:59:ff:7e:58:35:6e:a1:f3:53:8a:19:27:3e:bd:
8e:cf:cf:d7:76:09:65:4e:df:01:6d:cc:38:1e:29:
65:8e:8b:d8:91:db:22:fe:ae:6f:d5:1e:90:7d:89:
b2:98:01:ea:14:ca:92:ba:60:62:4a:42:a3:ed:77:
2c:2e:2b:5e:a8:49:b8:27:8a:d9:91:fb:e5:bd:ce:
48:a8:42:96:28:33:69:c0:7f:5e:af:af:b3:b8:8d:
3a:80:c7:8e:b4:e8:cd:8b:c1:74:12:b3:08:df:8a:
e0:d2:33:db:11:c3:51:bf:a3:cf:fa:7f:84:59:df:
92:30:3d:8b:ed:0a:35:35:37:91:61:d6:57:37:84:
10:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CF:98:2E:33:17:EE:95:48:8B:56:37:FB:67:91:5C:62:90:CE:63
X509v3 Authority Key Identifier:
keyid:D0:D6:E6:55:05:B4:F4:E4:F4:F3:1D:90:B8:B2:1A:3A:7C:FB:0E:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0NbmVQW09OT08x2QuLIaOnz7Dr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/mc-YLjMX7pVIi1Y3-2eRXGKQzmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/0NbmVQW09OT08x2QuLIaOnz7Dr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.142.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:12:10:d9:5f:f8:53:3a:c1:63:a3:f5:e4:7b:de:66:4f:43:
40:c8:5e:c6:79:1f:7d:45:bc:b8:6e:f7:9c:91:38:93:61:d9:
88:cb:07:dc:9b:d7:58:e6:6e:d3:55:e4:4e:90:7b:f7:17:3a:
e5:37:71:7b:71:f6:bb:f5:38:36:2f:f5:58:d8:d6:50:58:55:
10:e4:d1:8e:46:cb:d7:c2:9c:2b:87:b7:8a:5c:d9:b3:b4:1b:
26:c0:bd:7c:c4:43:70:95:e2:da:c0:b6:f7:45:1d:48:2d:9c:
2d:f2:fe:11:2e:b3:db:e8:47:cc:9e:ec:f2:e0:57:94:d9:0f:
e9:94:da:fc:25:5e:e1:b7:df:68:be:d1:d2:c4:36:57:02:ef:
d3:b5:fe:5d:37:bb:97:3e:18:c1:e6:63:6a:c5:e0:84:11:29:
34:b0:e2:bc:cb:0e:92:87:72:5a:67:4a:04:7d:e9:a3:cc:ad:
df:8d:37:15:80:eb:3e:74:99:d7:b8:d4:32:b1:2f:99:7a:87:
19:c3:7e:b5:51:9b:3e:1f:e9:4f:b9:f2:13:0b:26:cc:dc:d4:
aa:56:a6:ed:e6:59:1e:ab:30:cb:d6:c4:de:8a:f0:8f:25:ab:
87:c7:e4:a5:fa:e3:52:a0:7e:db:1e:a3:f9:30:0c:9e:2f:8d:
01:01:f3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:11 2024 by rpki-client on console-ams.rpki-client.org