Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/mbJSV6lemmdRKR0_BkGEv5eIses.roa
File: mbJSV6lemmdRKR0_BkGEv5eIses.roa (raw, json)
Hash identifier: o9RmkXjIUVaZuKzy6xyYK5VEi0YhGC8MLTwyoG0vxBQ=
Subject key identifier: 99:B2:52:57:A9:5E:9A:67:51:29:1D:3F:06:41:84:BF:97:88:B1:EB
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 43AAF350
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/mbJSV6lemmdRKR0_BkGEv5eIses.roa
Signing time: Sat 01 Jan 2022 14:00:59 +0000
ROA not before: Sat 01 Jan 2022 14:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56486
IP address blocks: 176.65.255.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1135276880 (0x43aaf350)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jan 1 14:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99b25257a95e9a6751291d3f064184bf9788b1eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:23:e1:4b:02:5a:a1:84:9b:9a:3d:c7:ce:2e:
50:1c:d5:40:80:9d:10:35:1d:6c:a2:4e:28:69:7e:
04:8c:4d:7b:ee:87:22:70:32:f9:db:72:bf:5d:f6:
d8:0d:4e:63:8b:ca:db:ff:4c:48:ba:59:73:23:04:
93:70:86:1d:90:44:92:03:47:35:c7:95:4b:4d:25:
13:54:75:4b:4e:ca:e0:c2:53:52:f6:26:48:1b:3e:
e9:1a:c9:73:1a:0c:03:89:e9:c9:3b:1c:99:ca:63:
9e:48:6c:2c:84:02:65:86:41:4d:e4:30:4e:e9:93:
41:1f:4d:cf:76:f7:7e:c3:f2:4b:44:88:d3:2c:55:
ea:de:7c:33:e1:e2:4e:e1:44:3a:5a:24:22:7c:01:
b8:7a:1b:73:09:6c:1c:8e:3a:46:9b:a4:d6:9c:f5:
6c:85:6c:cc:63:ed:88:95:f9:0d:0d:d9:94:d2:b5:
67:98:12:64:bc:2b:52:a5:f1:62:da:cb:57:04:9f:
f7:45:4f:5d:a8:db:7d:f7:ab:95:ec:2d:3b:33:46:
f4:fc:aa:f2:e6:d2:a6:e3:ec:fe:29:ea:7a:f2:75:
6c:66:e9:9e:75:b2:ad:14:a2:87:15:76:d4:90:56:
61:75:5c:14:94:48:2a:d8:52:38:3c:35:e7:1f:91:
e3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B2:52:57:A9:5E:9A:67:51:29:1D:3F:06:41:84:BF:97:88:B1:EB
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/mbJSV6lemmdRKR0_BkGEv5eIses.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.65.255.0/24
Signature Algorithm: sha256WithRSAEncryption
19:3c:a5:74:b3:8e:ed:a3:45:34:47:09:bd:26:53:cc:8c:80:
20:33:7d:76:bd:b8:d2:07:6d:d2:f1:07:3c:c5:b3:ec:5d:64:
52:d3:dc:f6:a8:a0:66:ef:4e:9c:4e:90:f1:42:7b:4f:2f:75:
e7:e1:c7:8c:ac:9b:09:fa:0c:f3:10:71:c8:19:f8:52:bb:82:
16:a3:fe:5c:69:b0:1d:6f:39:10:fc:8c:98:7f:81:35:e6:86:
f3:54:d3:67:25:87:92:81:0b:d3:23:77:b4:7e:6f:c3:bf:68:
ac:5e:ee:fc:92:b4:d5:f8:a0:6e:a9:03:cb:1a:b3:37:5f:08:
ad:88:67:ee:27:66:21:bc:01:23:02:03:7a:c9:61:1f:3a:84:
c6:02:a9:bc:e7:2f:c5:3c:e3:27:bc:0c:a7:42:fd:fa:8d:bf:
e9:91:fc:50:2d:94:d8:b6:59:66:22:72:f0:6c:3a:7f:99:26:
48:9d:63:55:4e:e9:3b:f5:ba:d7:e8:fc:4a:b5:b2:77:da:5a:
b7:c0:e0:5b:9f:88:e6:45:6e:5a:59:45:bb:79:f6:87:2f:72:
61:d0:51:46:f4:52:28:25:23:2a:11:5e:9a:dd:e6:13:59:bc:
af:90:b8:82:77:28:f7:d5:6b:3f:2c:9e:d3:bc:6d:5e:0b:1e:
93:b4:ec:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:08 2024 by rpki-client on console-fra.rpki-client.org