Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/ec0330-2ea8-4c4f-9c59-111453c99b63/1/mLs2m9e0Up40ezYyGSxVokzH71U.roa
File: mLs2m9e0Up40ezYyGSxVokzH71U.roa (raw, json)
Hash identifier: rTSyCSI6fWiWiyXzRTjPLTma3NJGwjPCYJX+IT9R20k=
Subject key identifier: 98:BB:36:9B:D7:B4:52:9E:34:7B:36:32:19:2C:55:A2:4C:C7:EF:55
Certificate issuer: /CN=19f726559adb811cef149b7204e2218ba7a8d5bb
Certificate serial: B9BBEE
Authority key identifier: 19:F7:26:55:9A:DB:81:1C:EF:14:9B:72:04:E2:21:8B:A7:A8:D5:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GfcmVZrbgRzvFJtyBOIhi6eo1bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/ec0330-2ea8-4c4f-9c59-111453c99b63/1/mLs2m9e0Up40ezYyGSxVokzH71U.roa
Signing time: Sat 01 Jan 2022 05:56:28 +0000
ROA not before: Sat 01 Jan 2022 05:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 217.119.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12172270 (0xb9bbee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19f726559adb811cef149b7204e2218ba7a8d5bb
Validity
Not Before: Jan 1 05:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98bb369bd7b4529e347b3632192c55a24cc7ef55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e3:50:49:54:eb:0e:bb:29:9a:bc:3d:56:5b:
0d:f8:62:bc:85:2b:7b:18:88:6c:91:c8:e4:2c:6a:
4a:77:90:fe:e6:ab:b3:70:3f:ba:ce:00:66:52:d2:
e7:5b:13:38:93:4b:e5:6e:de:e2:09:51:4f:a2:52:
81:08:9d:6c:f1:db:5b:eb:7d:82:9d:0d:2b:1c:f9:
38:f9:51:85:5e:6c:a7:05:c8:cf:bc:fc:28:4b:5e:
21:61:57:36:39:53:96:63:0b:5c:5e:c8:47:80:c4:
b3:79:ae:9c:2d:d1:e2:9d:ea:c6:d5:e3:a4:07:6a:
d8:b5:b5:4d:0d:9e:ff:16:f1:36:30:8f:f6:0e:36:
ca:5c:ae:2e:68:b9:b9:30:83:5f:25:bb:a5:6a:65:
88:a4:c3:b2:d9:ef:08:4a:8c:d2:3f:89:0a:90:12:
97:07:a9:6b:6e:14:e4:d0:4d:c0:94:e7:2c:3a:b9:
84:ee:c9:a9:68:f2:cf:69:c6:8f:e9:a0:82:9b:20:
a2:57:78:4c:77:8d:fc:7f:6b:c8:1a:72:77:2a:fc:
cb:4d:40:4f:bf:f4:ad:6e:71:20:e9:55:76:4b:48:
b9:08:17:45:d5:20:d8:5e:e3:88:ac:79:6f:1f:16:
9f:e4:25:e1:d0:f3:2b:cc:9c:57:40:1d:e9:43:9a:
78:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:BB:36:9B:D7:B4:52:9E:34:7B:36:32:19:2C:55:A2:4C:C7:EF:55
X509v3 Authority Key Identifier:
keyid:19:F7:26:55:9A:DB:81:1C:EF:14:9B:72:04:E2:21:8B:A7:A8:D5:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GfcmVZrbgRzvFJtyBOIhi6eo1bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ec0330-2ea8-4c4f-9c59-111453c99b63/1/mLs2m9e0Up40ezYyGSxVokzH71U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ec0330-2ea8-4c4f-9c59-111453c99b63/1/GfcmVZrbgRzvFJtyBOIhi6eo1bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.140.0/24
Signature Algorithm: sha256WithRSAEncryption
27:de:8e:5b:26:6b:72:d7:34:06:0c:21:83:83:03:12:c2:81:
12:8a:cf:df:5b:10:7b:bd:d8:fe:50:51:89:13:29:e6:0a:61:
82:db:8f:30:7c:69:7b:2c:15:02:85:42:9c:45:38:ee:e5:ed:
d4:d2:a1:06:e8:0f:4a:f9:c7:64:bb:9f:7c:9b:d5:ce:e4:86:
23:4e:3f:30:e8:03:0b:a4:7d:0f:7e:2e:e3:11:48:dd:5f:b6:
0c:97:76:a5:bd:c3:f0:64:85:8f:17:88:24:2d:f4:f2:89:18:
33:85:1c:bb:9a:29:af:cc:db:2d:b2:a5:6a:8e:e8:99:65:4f:
40:b6:f3:99:df:93:38:60:6f:c7:6d:24:ee:a2:6a:15:10:18:
2d:78:d6:e6:38:d0:2c:8b:1e:27:0a:bc:53:4e:50:1f:1a:db:
0c:9c:53:86:45:be:90:12:2e:2a:b5:29:52:30:aa:62:e2:2d:
e8:e5:77:00:2d:ce:31:a8:33:2f:14:b7:4b:10:ca:65:74:19:
f3:08:bc:3c:a0:09:b7:e8:16:44:bc:39:b6:6f:53:27:f7:b9:
46:9d:ea:52:bf:85:11:c7:6d:60:a5:c9:47:33:23:ff:76:d8:
cf:1a:07:66:fa:ef:21:df:a9:56:de:d7:fd:98:d2:8f:13:0f:
b0:44:ec:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:51 2023 by rpki-client on console-ams.rpki-client.org