Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/3c2efb-2292-4c6a-914b-55eb820fd596/1/0MXP-6IklqOrfLS7x6ShMTWo7GU.roa
File: 0MXP-6IklqOrfLS7x6ShMTWo7GU.roa (raw, json)
Hash identifier: enjsSHnly39dN5L6a49tBgrWfwvBQZHamnSqiZcjgb0=
Subject key identifier: D0:C5:CF:FB:A2:24:96:A3:AB:7C:B4:BB:C7:A4:A1:31:35:A8:EC:65
Certificate issuer: /CN=669f5c8b9b63ae5e28786eba10a1f6572a60e3fc
Certificate serial: 05CCFDDA
Authority key identifier: 66:9F:5C:8B:9B:63:AE:5E:28:78:6E:BA:10:A1:F6:57:2A:60:E3:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zp9ci5tjrl4oeG66EKH2Vypg4_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/3c2efb-2292-4c6a-914b-55eb820fd596/1/0MXP-6IklqOrfLS7x6ShMTWo7GU.roa
Signing time: Sat 01 Jan 2022 03:57:21 +0000
ROA not before: Sat 01 Jan 2022 03:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49875
IP address blocks: 193.104.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97320410 (0x5ccfdda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=669f5c8b9b63ae5e28786eba10a1f6572a60e3fc
Validity
Not Before: Jan 1 03:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0c5cffba22496a3ab7cb4bbc7a4a13135a8ec65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:55:91:cc:8f:a3:6f:b0:59:66:9f:8b:4a:
43:76:c7:ce:04:ce:e4:4c:db:8f:86:50:e7:91:54:
7a:f9:08:00:df:4c:b9:0f:32:b3:dd:be:a5:55:5b:
40:3c:65:e1:bf:6f:e5:ce:39:cd:92:69:fa:f5:d2:
33:d4:06:35:3a:32:b9:38:ab:92:ca:90:9e:ea:94:
8c:4f:0e:03:e2:f9:bc:0e:fc:20:a6:5b:97:47:30:
97:2d:16:94:47:88:7d:76:d8:d0:79:6f:66:5a:6f:
6d:aa:27:c7:f0:f7:74:45:db:ec:6e:7a:c7:e4:57:
b3:e9:50:d5:ef:32:4b:88:8f:92:3d:73:da:bc:4e:
66:78:31:a2:4f:28:1f:42:4a:5a:00:7c:ef:50:eb:
22:06:b1:26:e3:42:28:32:65:6a:64:b9:87:58:77:
25:7d:ff:ec:e4:48:f3:5e:27:35:9c:6e:bc:60:02:
13:c6:b9:7c:f4:3b:e8:0a:b5:47:4f:93:8c:c3:82:
74:f4:30:ff:5f:0a:2c:5b:c5:3c:11:a1:b1:99:54:
61:7c:dd:3f:98:82:ec:90:89:0e:be:51:96:84:23:
75:fe:3f:41:f3:c9:09:05:e9:3a:41:c0:17:8b:15:
a0:e3:0c:38:47:e1:5c:14:77:d1:bc:8e:3b:d0:62:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C5:CF:FB:A2:24:96:A3:AB:7C:B4:BB:C7:A4:A1:31:35:A8:EC:65
X509v3 Authority Key Identifier:
keyid:66:9F:5C:8B:9B:63:AE:5E:28:78:6E:BA:10:A1:F6:57:2A:60:E3:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zp9ci5tjrl4oeG66EKH2Vypg4_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/3c2efb-2292-4c6a-914b-55eb820fd596/1/0MXP-6IklqOrfLS7x6ShMTWo7GU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/3c2efb-2292-4c6a-914b-55eb820fd596/1/Zp9ci5tjrl4oeG66EKH2Vypg4_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.13.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e0:f2:82:a2:6a:55:df:f0:20:ff:ba:08:4a:6f:9c:6b:a1:
07:d9:c6:69:7f:49:9e:87:d3:bb:31:a7:e7:2c:06:44:16:e6:
57:31:53:9a:42:d3:5f:34:5d:28:b8:88:73:5e:ad:89:6f:39:
a2:e7:5e:16:1f:14:5a:18:77:ec:67:91:44:e4:24:aa:6c:73:
63:f6:38:cc:c1:ae:31:f5:db:ca:9f:f7:d5:15:77:e1:f0:50:
e5:4e:f5:fe:c9:af:6e:a3:51:cb:8d:4e:a1:c9:79:45:12:b0:
3f:9b:2f:ca:97:a9:86:88:f5:cd:22:02:8d:0e:73:d8:59:75:
6d:b1:1c:ec:cd:8b:5b:be:90:c1:89:02:b4:a0:c7:48:d8:d3:
9c:3a:b4:79:0b:86:42:0a:29:76:7d:64:66:f5:b9:0e:2d:9a:
a3:59:03:e1:1d:c9:74:d9:cd:65:0f:f9:83:43:96:0c:cf:19:
95:2e:70:d4:f0:44:92:cf:4f:6f:ba:d5:b0:a6:0e:fd:30:1e:
e5:d1:5c:e1:25:11:a5:f9:ed:d4:ac:6d:b4:7d:dc:e5:81:a9:
bd:33:8f:06:12:6d:52:e4:7b:d1:01:2c:fa:6d:7d:a0:ed:c2:
11:26:db:fe:26:00:30:8c:d4:87:32:2d:31:66:db:19:c1:25:
b2:f2:d8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:46 2024 by rpki-client on console-ams.rpki-client.org