Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/mxOqF9ngX0qzszPh7VDJeYYEAe8.roa
File: mxOqF9ngX0qzszPh7VDJeYYEAe8.roa (raw, json)
Hash identifier: kI12Jjp/+QJJzq4i0f62sJNYw45mt4QpIT2sCmL/ias=
Subject key identifier: 9B:13:AA:17:D9:E0:5F:4A:B3:B3:33:E1:ED:50:C9:79:86:04:01:EF
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 0430CFB2
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/mxOqF9ngX0qzszPh7VDJeYYEAe8.roa
Signing time: Mon 23 May 2022 12:51:22 +0000
ROA not before: Mon 23 May 2022 12:51:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25227
IP address blocks: 92.63.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70307762 (0x430cfb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: May 23 12:51:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b13aa17d9e05f4ab3b333e1ed50c979860401ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d7:34:2e:03:5c:e9:a0:96:3c:a1:65:5f:ed:
61:a1:83:9e:c3:81:f7:58:36:88:01:2d:d1:dc:dc:
26:0f:59:0f:5c:56:34:4d:45:eb:8f:1a:5c:5f:0e:
b6:bc:81:fd:5f:47:c6:95:ed:a0:54:1e:02:d6:f0:
5d:50:32:20:45:c8:9a:74:c2:fa:03:87:c9:18:ba:
9c:5e:c2:e3:54:21:f9:9a:67:61:13:55:ca:be:ab:
ae:f5:8a:62:4f:65:09:93:44:cc:9c:b0:bf:cd:e7:
e2:e7:42:08:02:bb:31:c1:af:6e:5e:b5:1a:41:b9:
2e:c1:bd:cd:75:2f:0b:14:e2:b5:db:e7:e6:fd:b6:
ec:fb:5d:8d:04:de:35:f5:bb:8e:1a:9e:ba:c6:81:
b0:3a:60:15:5b:9b:2a:e6:27:89:3a:4d:63:00:05:
c5:90:fe:c4:b8:7a:73:b1:a5:65:6d:21:3a:d7:ad:
c5:46:9a:e8:2a:31:f9:e7:dd:17:7f:ec:89:0e:f4:
53:e9:84:94:5c:95:fe:d2:99:f4:c0:85:57:66:42:
f6:8b:3a:7f:c4:5b:19:b1:1d:f1:27:4b:c1:86:0c:
8b:0a:38:31:a5:4f:14:70:22:d5:d2:a0:25:7a:16:
12:07:cf:23:30:8f:61:d0:5b:0e:f6:21:d7:04:35:
6a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:13:AA:17:D9:E0:5F:4A:B3:B3:33:E1:ED:50:C9:79:86:04:01:EF
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/mxOqF9ngX0qzszPh7VDJeYYEAe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.201.0/24
Signature Algorithm: sha256WithRSAEncryption
03:10:a1:6a:7d:52:ee:f3:25:8c:1b:73:fd:81:05:21:bb:1a:
ba:57:7c:1f:18:24:6c:55:14:e5:5a:b6:76:94:e6:a7:de:a9:
a1:14:cc:dc:63:78:08:eb:8e:ce:53:1b:63:1e:d4:5c:e4:6d:
5a:d2:8f:97:72:91:aa:15:98:9e:10:87:f9:5c:28:53:91:86:
fc:b9:b0:b4:ba:25:32:bd:7e:23:77:b9:d9:8e:38:03:c0:8d:
24:00:8d:28:9d:39:93:65:45:a6:c2:5d:a6:9f:23:83:28:2d:
d9:a9:00:6c:9b:f4:89:a9:eb:0f:43:53:0a:6a:88:08:c1:92:
85:1c:2b:ca:76:a5:8e:cd:14:e4:36:1a:9a:8d:f9:a7:6f:b7:
62:e4:50:09:d0:f6:18:02:2b:1b:64:5d:60:99:48:92:e6:58:
66:6b:6b:bd:58:3f:ad:31:2f:92:a7:f1:fa:45:f7:c0:a3:21:
3d:42:f5:ac:01:fd:05:33:27:97:2e:d2:bc:82:75:da:06:4f:
ed:c5:3a:54:b1:b3:19:34:01:d0:ab:68:d4:a3:ef:5f:32:55:
1f:9f:b7:b5:9e:c7:4e:95:a8:7f:89:da:a4:bb:2c:a4:5d:c4:
94:a8:30:0f:c4:94:ef:6d:5e:ff:f6:b9:36:4b:57:3e:83:45:
83:33:c8:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:29 2024 by rpki-client on console-ams.rpki-client.org