Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/MB4Ax27c8rUPZXHOC3lcnsLF5n8.roa
File: MB4Ax27c8rUPZXHOC3lcnsLF5n8.roa (raw, json)
Hash identifier: k19OfrFjy+19S0g2xSgmD5nb/wNiyXlxnROtoZBDDvM=
Subject key identifier: 30:1E:00:C7:6E:DC:F2:B5:0F:65:71:CE:0B:79:5C:9E:C2:C5:E6:7F
Certificate issuer: /CN=b4852ffba7d57c5a8afbb6ea5beaf7dfec0c145a
Certificate serial: 34B5CD76
Authority key identifier: B4:85:2F:FB:A7:D5:7C:5A:8A:FB:B6:EA:5B:EA:F7:DF:EC:0C:14:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIUv-6fVfFqK-7bqW-r33-wMFFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/MB4Ax27c8rUPZXHOC3lcnsLF5n8.roa
Signing time: Sat 01 Jan 2022 14:57:44 +0000
ROA not before: Sat 01 Jan 2022 14:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138380
IP address blocks: 192.157.12.0/24 maxlen: 24
192.157.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884329846 (0x34b5cd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4852ffba7d57c5a8afbb6ea5beaf7dfec0c145a
Validity
Not Before: Jan 1 14:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=301e00c76edcf2b50f6571ce0b795c9ec2c5e67f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3d:b1:f3:dd:87:d7:45:79:92:31:62:2b:8c:
9b:0d:f7:80:bf:a5:48:23:b8:d0:e2:5d:66:3c:cc:
33:6d:a6:94:5a:26:6d:9e:89:4d:99:38:69:98:b7:
bf:ba:99:59:7a:22:46:5c:d6:2b:f6:dc:63:dd:1c:
95:45:e1:8d:73:ec:9f:fd:d9:bf:ed:fd:28:ad:69:
36:6c:b7:d2:67:fd:ea:e2:f5:6a:ef:c1:b2:34:2f:
c4:b3:ee:b9:51:8c:b6:4a:35:1c:29:93:73:a0:e5:
32:3c:27:8c:21:22:68:fd:77:b8:7f:bf:6c:20:db:
17:2e:fd:21:3c:e3:b0:dd:94:c4:50:4f:e6:a5:ae:
d9:ba:cb:8d:13:ce:35:b9:ea:24:12:f8:cc:d4:1c:
93:b3:a3:7a:5b:86:15:58:cf:fb:97:a0:b7:9f:3f:
52:f1:ad:f6:2e:90:e3:9b:be:75:ad:ff:ae:5d:a9:
2f:b5:c9:d2:67:dd:7d:9e:73:8e:89:72:11:46:90:
9a:34:1c:3d:46:68:b7:47:7a:cd:30:80:3b:7f:73:
05:83:c3:e9:49:26:34:91:56:5b:25:68:b9:01:27:
3a:ea:4b:13:5d:40:b8:39:a9:5d:03:ca:db:52:d4:
4c:22:69:10:8d:17:fd:51:64:d7:f5:69:4a:58:95:
14:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1E:00:C7:6E:DC:F2:B5:0F:65:71:CE:0B:79:5C:9E:C2:C5:E6:7F
X509v3 Authority Key Identifier:
keyid:B4:85:2F:FB:A7:D5:7C:5A:8A:FB:B6:EA:5B:EA:F7:DF:EC:0C:14:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIUv-6fVfFqK-7bqW-r33-wMFFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/MB4Ax27c8rUPZXHOC3lcnsLF5n8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/tIUv-6fVfFqK-7bqW-r33-wMFFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.157.12.0/23
Signature Algorithm: sha256WithRSAEncryption
93:2e:f5:91:fe:54:7d:d0:03:1d:2f:38:02:21:e1:4e:4c:fe:
b1:9d:c1:3f:f7:54:08:3c:b9:ab:c5:a0:1e:f6:2a:8a:cb:89:
e2:ab:0f:8e:28:1b:50:1e:ef:8b:fe:a8:8d:5b:39:72:8c:f2:
da:19:3b:1f:48:d9:2c:09:fc:dd:c8:f8:20:ce:e1:1b:3b:40:
2c:3a:5f:75:92:5d:85:35:5f:08:87:f6:9a:55:dd:14:97:bd:
f8:d6:fd:a8:a6:b9:12:85:0c:04:98:95:1f:52:b3:b7:ac:73:
98:19:42:fe:36:a7:f2:d1:a6:c1:27:b9:9e:8c:6b:33:9a:28:
f7:f5:e2:14:0d:9b:d4:06:1d:bb:4f:7d:7d:84:5c:8f:a6:45:
5d:9f:79:6b:66:51:74:af:39:3f:95:68:20:a6:1a:0f:c3:ad:
a7:cc:a9:2b:3b:a6:36:b2:58:82:5d:9d:9e:b7:ba:0e:1b:ec:
1e:92:ae:50:a0:29:e9:73:4a:1a:61:82:e4:6e:bc:53:99:61:
2d:ee:7b:6b:1a:0f:25:e9:0c:25:83:04:ab:7c:58:af:1d:d7:
3e:fc:d1:7c:27:25:7d:a5:05:d7:dd:90:3a:93:84:e9:55:2f:
fd:c0:5a:21:35:ca:49:71:01:e2:a8:ba:fb:6a:f0:70:dd:a4:
78:1d:ed:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:17 2024 by rpki-client on console-ams.rpki-client.org