Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/mLcOh_Bfa8wWaCu-dN0Mb-Lftnk.roa
File: mLcOh_Bfa8wWaCu-dN0Mb-Lftnk.roa (raw, json)
Hash identifier: ZsUSJaxvVdUZHgshwO7Wyhaoxiy0APeS/gV/kkMaeFQ=
Subject key identifier: 98:B7:0E:87:F0:5F:6B:CC:16:68:2B:BE:74:DD:0C:6F:E2:DF:B6:79
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183FAC006691ABD245D50944DE535EC7814
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/mLcOh_Bfa8wWaCu-dN0Mb-Lftnk.roa
Signing time: Fri 21 Oct 2022 13:33:52 +0000
ROA not before: Fri 21 Oct 2022 13:33:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62367
IP address blocks: 87.107.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:c0:06:69:1a:bd:24:5d:50:94:4d:e5:35:ec:78:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 13:33:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98b70e87f05f6bcc16682bbe74dd0c6fe2dfb679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:db:33:33:00:9f:9d:74:4a:d2:a7:74:f4:cd:
22:05:40:cc:e4:92:a9:ba:b5:88:83:dd:6d:43:94:
90:2e:f8:ff:87:01:8f:34:3d:2f:ad:5d:ef:3a:dd:
2b:51:0c:f6:5e:26:68:94:61:8e:d7:85:b3:41:1c:
e1:91:b3:6e:2f:ac:c6:d1:d9:64:40:fe:05:f2:67:
ef:14:33:cd:70:2d:86:d6:f4:b9:df:65:a5:05:35:
79:6c:19:47:18:f6:4d:89:d9:cd:fb:f3:14:8e:37:
3b:96:aa:60:70:ab:44:ab:98:aa:3b:15:49:ef:16:
b9:82:06:71:94:d8:1f:59:f5:77:3f:01:88:ae:ff:
e5:92:ff:da:3c:08:da:e4:39:4f:04:92:39:49:42:
49:9a:95:ad:d7:a4:4e:c4:c2:6f:1e:62:d4:09:33:
36:27:d2:83:78:a9:0e:25:a5:66:d5:17:20:ca:60:
fe:45:66:2b:6e:cb:10:ed:85:8a:14:25:60:df:9e:
0d:8e:01:12:b5:af:4e:f1:3b:41:0f:27:e3:93:d8:
46:40:9b:4d:ba:02:c2:a5:a1:fc:53:b2:4d:83:73:
73:a7:a3:5d:53:84:8f:e3:0a:c6:27:9e:f1:79:09:
37:27:42:c0:4f:5b:60:90:a9:9c:50:ca:88:38:46:
da:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B7:0E:87:F0:5F:6B:CC:16:68:2B:BE:74:DD:0C:6F:E2:DF:B6:79
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/mLcOh_Bfa8wWaCu-dN0Mb-Lftnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.134.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:41:e8:ad:d6:e2:4c:2a:da:c7:7d:c6:e8:fb:3a:c6:b7:35:
39:ec:9e:ba:af:6a:97:b7:c1:46:cb:20:bc:43:42:0e:eb:69:
45:9e:da:24:8d:49:32:d3:34:22:f9:ef:e0:c1:ac:34:6e:a5:
43:7b:57:13:6f:c4:44:84:30:fd:e0:ae:dd:5f:86:8a:2c:be:
62:d9:1e:89:ce:34:56:b2:38:30:0e:d2:10:17:f3:47:ba:2b:
15:04:d4:6d:fc:9f:d4:25:60:c4:fc:aa:3e:5e:30:4b:42:a5:
a2:1b:36:52:b0:e4:68:10:e4:62:34:68:0a:fb:b3:89:b6:72:
7d:34:9c:11:8c:4a:a1:be:34:6a:0d:12:00:9b:91:7d:cf:f2:
cc:2f:80:4a:8d:7a:d3:72:ed:a1:c4:1a:c8:f1:b7:3a:3e:a8:
0b:cb:da:de:89:e3:9e:14:e6:f0:97:21:f9:a9:91:c1:2f:f6:
28:31:cd:62:8b:29:ec:58:64:f9:4a:25:37:0b:37:4e:d3:d3:
7a:e5:70:55:a8:d3:b8:12:15:19:ce:95:5a:49:fa:79:61:2b:
ff:71:41:25:86:1a:4e:d9:b6:4a:9d:46:e8:fb:3b:62:33:8f:
32:80:db:64:1f:45:1b:de:13:80:cd:fa:cc:33:8e:f3:24:9c:
3a:c7:07:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org