Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/MddR476O9GDluEF7Ru3CX6t8Hq4.roa
File: MddR476O9GDluEF7Ru3CX6t8Hq4.roa (raw, json)
Hash identifier: trhZa4frWSDBDdIN+sEjPr3Fwu0JYX6CzJ68Si1TICo=
Subject key identifier: 31:D7:51:E3:BE:8E:F4:60:E5:B8:41:7B:46:ED:C2:5F:AB:7C:1E:AE
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0A8049C8
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/MddR476O9GDluEF7Ru3CX6t8Hq4.roa
Signing time: Sat 01 Jan 2022 08:02:22 +0000
ROA not before: Sat 01 Jan 2022 08:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 147.161.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176179656 (0xa8049c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jan 1 08:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31d751e3be8ef460e5b8417b46edc25fab7c1eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d4:b6:4b:8c:20:6e:35:50:3f:ec:57:69:4e:
87:eb:36:18:ed:eb:32:c2:f7:17:4d:9a:52:2e:59:
ee:b0:c0:e6:b0:9f:60:22:c0:3b:cd:76:79:8e:44:
b8:b1:66:c6:fd:85:2c:4b:9f:a6:c2:16:67:4f:b5:
e3:46:fd:4d:34:2a:36:e3:8c:ab:37:9e:0b:c0:1e:
65:88:00:b3:b8:ca:41:1c:3a:99:7e:b9:44:f4:05:
99:25:3f:bc:16:27:e0:d7:6a:b8:90:48:f5:3a:29:
e1:3b:7d:89:90:86:dc:21:ee:3d:4e:2e:e2:96:29:
d1:37:2d:a0:5a:eb:37:c5:d0:07:04:78:24:a5:77:
4b:b7:a2:56:07:73:0c:b2:6d:ef:3e:d3:bb:d9:7f:
b1:d8:42:cc:6b:d7:2d:1e:5a:2c:f4:7d:6f:96:cf:
02:d6:29:bb:f8:f2:3b:4d:2e:88:8e:78:48:93:b2:
2e:2e:fc:c7:0b:26:fb:3e:52:6b:18:84:1e:c3:df:
c1:dc:42:f6:66:1f:75:a3:d0:7f:cd:6b:72:28:3a:
e2:6b:4d:d8:1d:74:1e:34:62:d8:4b:e8:6f:02:5b:
36:cd:2d:27:f9:32:7f:1a:ab:a9:1e:b7:98:e7:78:
a9:0d:4b:ab:bb:1e:b9:43:66:84:a0:c4:a2:93:45:
17:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:D7:51:E3:BE:8E:F4:60:E5:B8:41:7B:46:ED:C2:5F:AB:7C:1E:AE
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/MddR476O9GDluEF7Ru3CX6t8Hq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.2.0/23
Signature Algorithm: sha256WithRSAEncryption
36:ae:d9:af:7c:18:97:c5:c4:9a:90:0e:36:61:0e:3d:ab:3e:
c8:99:d1:9f:bc:4b:e3:ac:fd:b9:d0:75:91:d2:40:35:6e:8e:
01:85:0c:04:9b:9a:2a:a6:5a:18:76:e5:7a:f8:11:4c:3b:a0:
2f:c8:1e:c6:c4:d0:fc:8f:11:54:a2:46:49:ec:00:48:1d:b2:
a6:fc:59:32:b3:91:40:55:7f:18:23:c3:3c:83:bc:61:f1:42:
e7:d1:03:5e:0a:1f:f3:47:4b:9d:b8:fa:0c:01:6f:26:64:63:
1b:7a:1c:a1:20:2a:58:42:ff:7d:f0:86:89:5c:35:52:88:0c:
1a:7c:fa:ad:34:e1:76:95:e0:cc:4a:98:1d:34:51:1a:8b:c0:
2e:cc:9c:36:75:28:97:d4:c2:2c:28:0d:e9:b6:c6:87:60:8d:
14:6c:ca:e3:20:ab:fe:56:f0:d7:47:ef:ef:a4:8d:aa:ad:93:
5a:ad:43:47:98:13:20:d4:3c:2a:f0:59:c4:3d:e7:55:b0:7e:
5b:15:ac:f9:ae:34:d3:c2:6f:3e:fa:ab:4d:86:55:a2:3c:8a:
3d:46:c4:11:fa:35:bb:65:22:96:01:4b:38:de:01:42:cf:ff:
76:18:e5:6e:38:9e:ab:87:21:94:a4:aa:92:d2:c4:3f:1a:24:
ce:70:a9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org