Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MGtC6XxtTK2ehPJQwLrkRL9qIoo.roa
File: MGtC6XxtTK2ehPJQwLrkRL9qIoo.roa (raw, json)
Hash identifier: vUJzjWjnJsrXSo6YTtqK2jz1dATqJS4dUH4xwhRpKwA=
Subject key identifier: 30:6B:42:E9:7C:6D:4C:AD:9E:84:F2:50:C0:BA:E4:44:BF:6A:22:8A
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0183CBD8A5EA4F1B8CF686DAE9B29C955720
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MGtC6XxtTK2ehPJQwLrkRL9qIoo.roa
Signing time: Wed 12 Oct 2022 10:58:36 +0000
ROA not before: Wed 12 Oct 2022 10:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 91.186.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:d8:a5:ea:4f:1b:8c:f6:86:da:e9:b2:9c:95:57:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 12 10:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=306b42e97c6d4cad9e84f250c0bae444bf6a228a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c5:c9:91:61:61:82:ce:c8:77:5d:17:30:78:
a2:ea:b2:6d:22:57:4e:05:fe:df:1d:f2:1f:3f:49:
7a:ab:b1:12:46:31:f4:9d:bd:65:ee:f3:03:b7:28:
84:cd:fd:86:ea:ad:ba:3e:0b:d0:95:46:15:93:15:
b0:71:7f:07:3f:6d:5e:c7:c6:5e:f6:5f:e3:08:f0:
d4:5a:97:04:2f:cf:f8:9a:dd:b3:95:d4:0c:a0:fd:
c1:03:d0:f8:34:4f:04:85:48:12:14:1e:eb:83:39:
8c:38:3d:37:81:ec:2e:33:e7:ca:df:d9:b0:8a:9d:
55:ad:69:91:b7:ca:9d:95:3a:60:46:e2:d1:0c:5a:
04:20:e1:3b:d4:fd:a4:77:5f:e1:90:ac:aa:12:40:
86:8f:c9:05:60:11:ef:32:46:10:17:b7:a9:ed:e6:
c0:cf:42:1e:bc:ca:09:de:83:a1:be:6b:9b:56:8c:
ea:c0:cc:69:1a:84:dd:9b:13:29:61:96:b4:67:65:
d0:89:fd:3c:a4:31:3e:d5:a1:94:d5:ac:28:b2:26:
37:bb:f2:a5:63:8f:92:4e:e5:ca:25:b9:ee:14:84:
b6:07:4a:84:8f:fa:bc:3b:78:8a:1e:2b:c5:06:00:
2b:73:18:84:af:b6:f8:76:52:ee:5d:46:40:31:b6:
ed:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:6B:42:E9:7C:6D:4C:AD:9E:84:F2:50:C0:BA:E4:44:BF:6A:22:8A
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MGtC6XxtTK2ehPJQwLrkRL9qIoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.208.0/22
Signature Algorithm: sha256WithRSAEncryption
62:57:30:1e:de:77:06:86:5d:80:6a:aa:05:d6:1d:50:91:bd:
9c:6e:cc:35:5f:b2:e2:02:4c:0e:c7:7c:a7:6a:9d:a3:08:8a:
d4:cc:20:9e:17:e3:df:c5:ec:78:cb:d6:c9:a4:4d:95:74:aa:
45:2d:83:20:8e:28:fa:41:1a:f8:89:25:0f:d9:90:3b:58:8d:
a8:2d:7d:38:ac:af:94:0c:7f:25:bb:cc:42:ca:db:01:e4:b4:
14:ed:cb:4e:bd:ae:23:be:56:2a:00:50:88:0f:c9:e9:62:f0:
82:7e:cc:0f:1d:df:eb:56:3d:7e:f2:9e:5f:50:0d:b0:89:c7:
8c:55:2b:f0:99:2c:4b:1c:43:95:f6:06:84:c7:1a:7a:77:67:
10:be:4f:2f:1a:81:40:01:87:ed:17:4a:cc:89:b2:0d:ee:37:
d6:10:23:af:1d:54:d9:87:40:f8:a3:27:46:50:17:06:8b:df:
5f:a1:7e:91:e9:0f:74:c2:e9:3e:ae:93:21:c7:40:ee:49:c8:
1b:45:9a:3b:a3:58:7d:b1:51:b7:60:89:53:55:0f:77:dd:c9:
b8:df:8d:93:a9:64:a5:19:ab:d5:a8:17:eb:f2:f2:bf:4f:fb:
1f:7c:53:f5:ca:23:e3:38:ce:70:7a:cc:34:3a:68:b2:70:11:
0d:77:af:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org