Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/mhnd-PJ56hBcaLJsk859nui7vOw.roa
File: mhnd-PJ56hBcaLJsk859nui7vOw.roa (raw, json)
Hash identifier: cTphdpUKhwDHftGE4dEoLgC8bruJBS4hal7+851d9fQ=
Subject key identifier: 9A:19:DD:F8:F2:79:EA:10:5C:68:B2:6C:93:CE:7D:9E:E8:BB:BC:EC
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 07D81AA8
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/mhnd-PJ56hBcaLJsk859nui7vOw.roa
Signing time: Sat 01 Jan 2022 10:57:00 +0000
ROA not before: Sat 01 Jan 2022 10:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203125
IP address blocks: 2a05:4741:9::/48 maxlen: 48
2a05:4741:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131603112 (0x7d81aa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 1 10:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a19ddf8f279ea105c68b26c93ce7d9ee8bbbcec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:61:2f:b7:05:4e:74:24:be:3f:13:88:37:0c:
a5:d9:62:13:f5:87:57:1c:81:28:14:f6:fd:f4:94:
3c:45:9a:e3:26:ff:c0:2f:3e:9e:c7:e5:26:39:4e:
49:5a:d7:20:c6:3e:00:21:05:2a:fd:7e:67:d1:06:
3b:4b:a9:03:dd:88:6b:53:cb:0c:60:32:45:4d:10:
12:f5:a0:79:de:b0:ed:34:ed:c2:78:6b:1c:ae:3b:
20:53:2b:dc:ef:9f:53:4c:7b:f1:b5:63:f2:5f:82:
b6:72:c6:87:6b:bd:1c:8a:c4:1d:01:97:77:24:bf:
8e:69:c6:0a:3f:2d:24:fe:06:cd:95:bd:14:16:9d:
e3:d4:4c:c4:2e:42:c1:2f:ff:76:c6:09:3f:59:b4:
fe:65:30:15:7c:5b:ac:e4:6f:2d:eb:4a:8c:ed:a0:
9e:49:9d:30:69:09:a1:1c:6c:7f:02:3a:47:de:98:
1f:15:15:a9:fc:34:da:22:15:60:3b:bf:60:e0:51:
1b:e0:33:c2:54:5b:de:14:02:67:43:4b:91:ff:d7:
95:5d:60:60:af:fd:84:5a:a9:c8:fd:28:77:41:a5:
f5:72:4b:b3:4b:f6:a6:2a:4d:0b:0b:92:10:67:7d:
4b:c6:b6:13:96:12:76:a4:6c:b5:da:bf:ff:07:fe:
74:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:19:DD:F8:F2:79:EA:10:5C:68:B2:6C:93:CE:7D:9E:E8:BB:BC:EC
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/mhnd-PJ56hBcaLJsk859nui7vOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4741:1::/48
2a05:4741:9::/48
Signature Algorithm: sha256WithRSAEncryption
c0:c1:15:90:c9:87:f0:b7:1b:eb:46:68:21:46:4d:46:ab:c6:
f6:ba:a0:73:16:35:04:d1:ef:1d:4d:d2:0b:25:ca:5f:71:85:
2d:4e:7e:fe:53:b5:96:5f:1f:c6:a2:05:74:36:0d:04:91:d0:
c1:4c:11:07:95:ee:e6:6c:d1:67:7f:cf:ee:2d:37:ee:6f:29:
04:d4:b4:43:c9:71:e8:a7:66:f6:a2:eb:41:9a:c5:fd:c4:ac:
72:5a:96:e8:31:27:33:8c:ef:a8:43:a0:45:4e:5b:b8:39:c4:
7a:d6:3b:78:02:e9:fa:77:9c:b5:fd:4b:dd:2f:12:a3:df:52:
22:4e:fe:40:dd:79:be:a4:f6:bf:94:34:00:ab:88:4e:70:4f:
bd:7b:b2:7c:c4:67:81:1c:30:ef:5c:95:c4:50:64:8e:8a:10:
f4:c0:a8:76:dc:f0:4b:af:bc:a8:4e:5d:ea:5e:ec:28:d2:f7:
9a:3b:3b:ac:76:62:ea:30:c3:04:e7:4e:e6:55:87:3a:22:c3:
0d:b7:09:c7:8b:53:0b:2a:b4:f6:85:d3:e3:1b:e6:49:d7:a9:
d6:f5:d2:0b:1a:58:cd:76:d3:2b:8e:56:7a:b5:87:dc:af:cf:
48:40:ca:24:b4:43:2b:a2:83:13:31:3b:5a:18:66:8d:e9:4c:
93:ff:21:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:53 2024 by rpki-client on console-fra.rpki-client.org