Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/MzfSS5Bx7_bO5jltNYWSycgLhHE.roa
File: MzfSS5Bx7_bO5jltNYWSycgLhHE.roa (raw, json)
Hash identifier: XqE7esHngYnsWeCm2cvcf3Sz+umU0/kFOlvnxlK2kOQ=
Subject key identifier: 33:37:D2:4B:90:71:EF:F6:CE:E6:39:6D:35:85:92:C9:C8:0B:84:71
Certificate issuer: /CN=da16c6198d0dc1942fc11ea8fd046b8f8427e829
Certificate serial: 01D7A5D5
Authority key identifier: DA:16:C6:19:8D:0D:C1:94:2F:C1:1E:A8:FD:04:6B:8F:84:27:E8:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hbGGY0NwZQvwR6o_QRrj4Qn6Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/MzfSS5Bx7_bO5jltNYWSycgLhHE.roa
Signing time: Sat 01 Jan 2022 05:03:52 +0000
ROA not before: Sat 01 Jan 2022 05:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 193.5.44.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30909909 (0x1d7a5d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da16c6198d0dc1942fc11ea8fd046b8f8427e829
Validity
Not Before: Jan 1 05:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3337d24b9071eff6cee6396d358592c9c80b8471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9a:57:b0:ca:ff:2e:a2:e2:4c:02:c3:51:df:
2a:46:7f:ac:37:f6:de:40:77:fa:44:9e:cd:22:65:
4b:f5:d6:fc:3d:80:ff:7f:82:40:cf:7e:1f:d2:b7:
7c:dc:a8:8e:75:f0:8c:b0:0d:f9:c1:86:83:d6:1a:
23:67:a0:0e:fc:b7:6e:2d:4b:29:7c:47:bc:ed:a7:
57:07:8c:e7:f9:83:bc:aa:f6:bb:94:68:cb:ea:ca:
ed:34:c4:0e:bb:7d:d2:44:7d:92:35:eb:99:40:65:
aa:af:dd:8c:f6:64:59:76:b4:e9:fa:ae:85:91:91:
8b:62:9b:8f:f5:30:e7:4e:0b:97:34:76:8a:f6:f2:
25:9d:7a:bf:df:c4:ba:d2:2f:cd:a2:02:04:f4:45:
de:55:70:55:be:fd:25:da:4c:59:84:70:c3:26:2f:
98:77:ae:0d:2c:e8:eb:39:0f:78:b0:e7:37:3a:90:
cd:8c:41:46:8b:12:fb:36:3f:da:18:81:74:f2:cf:
51:33:40:a2:75:2e:49:86:ed:39:f4:22:3f:ba:19:
c2:e5:d6:45:bd:19:2d:3d:ce:af:ed:33:20:6f:2f:
e0:2e:ce:95:f7:73:81:da:9f:d6:4b:54:bb:14:a2:
71:a1:49:f9:81:ba:00:cc:01:cd:d2:2f:34:b0:1a:
97:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:37:D2:4B:90:71:EF:F6:CE:E6:39:6D:35:85:92:C9:C8:0B:84:71
X509v3 Authority Key Identifier:
keyid:DA:16:C6:19:8D:0D:C1:94:2F:C1:1E:A8:FD:04:6B:8F:84:27:E8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hbGGY0NwZQvwR6o_QRrj4Qn6Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/MzfSS5Bx7_bO5jltNYWSycgLhHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/2hbGGY0NwZQvwR6o_QRrj4Qn6Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.44.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:49:ad:24:2e:65:79:c5:79:41:d3:b8:76:79:fb:f2:86:0f:
3f:8a:04:84:16:15:ff:53:d9:ad:45:e2:40:ce:61:61:f2:ee:
9b:37:af:ef:ca:20:c2:c0:a0:04:27:3b:62:2c:95:cd:22:94:
bf:91:14:07:43:5c:55:8a:ff:23:c7:e5:52:27:eb:e4:87:5b:
bf:cf:81:e3:55:f7:3d:46:10:20:d2:b1:99:e9:b5:99:1d:2d:
10:3b:a7:3c:ee:8a:14:37:86:61:fb:d7:fb:95:02:c2:86:2a:
96:1f:ac:fc:01:86:63:db:20:9e:3b:c2:e2:77:fd:55:ec:bb:
0d:7b:94:4d:6f:42:58:24:dd:49:dc:ba:13:8e:40:a0:a5:48:
fb:8d:80:b7:2c:98:0e:97:da:9b:9f:1a:b0:f7:14:56:1c:49:
1b:62:d8:93:64:24:77:bd:0b:d0:5b:15:69:6c:fc:b6:f9:be:
57:af:25:f7:09:14:0f:e8:37:c1:37:90:21:69:d4:6f:0c:9c:
30:4f:c9:9e:74:68:9e:50:88:08:5e:8e:62:77:22:e8:62:71:
36:3a:7b:c7:c2:62:85:0c:cb:84:2f:8b:47:19:50:22:9c:79:
b8:51:e9:95:e0:c9:bb:c1:03:60:67:f9:f1:5d:3a:ef:6d:38:
3a:26:2c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:27 2023 by rpki-client on console-fra.rpki-client.org