Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/MuIbyTA5-6fYM9vOO00qbDSX0JY.roa
File: MuIbyTA5-6fYM9vOO00qbDSX0JY.roa (raw, json)
Hash identifier: NHczqmbpDYAb1b1/MB0ngdc4SmjyTg8Kg+o0miNOYv8=
Subject key identifier: 32:E2:1B:C9:30:39:FB:A7:D8:33:DB:CE:3B:4D:2A:6C:34:97:D0:96
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 018229D5F21404256DDE423023D5E3762507
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/MuIbyTA5-6fYM9vOO00qbDSX0JY.roa
Signing time: Sat 23 Jul 2022 06:54:23 +0000
ROA not before: Sat 23 Jul 2022 06:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.129.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:29:d5:f2:14:04:25:6d:de:42:30:23:d5:e3:76:25:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Jul 23 06:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32e21bc93039fba7d833dbce3b4d2a6c3497d096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b2:d1:ee:cf:33:0b:ff:94:bb:5f:04:e0:a4:
4b:ca:34:18:52:e1:37:21:a2:71:6f:8c:50:8c:bb:
1c:2d:be:3a:06:c0:1e:21:2b:3b:52:51:ba:58:05:
e1:db:08:a8:e1:bb:04:4b:e2:7a:2f:aa:ba:86:4f:
9b:ed:6c:00:82:be:83:0c:6a:ad:b0:08:52:9e:f4:
4d:f3:83:8c:79:75:33:d4:bb:7a:69:c7:40:d4:1c:
c1:f2:f6:38:ab:5e:d4:49:2b:55:8e:2a:4a:07:ab:
57:06:f2:46:1e:cf:36:bf:47:ff:aa:12:33:c3:30:
20:7b:88:93:5d:31:f2:10:32:27:bf:6f:3d:f9:35:
58:07:01:b9:bb:6f:19:6f:b4:09:51:37:77:4d:e2:
97:e8:09:ac:ff:a0:c5:0f:66:1a:d1:b6:8c:d8:95:
0c:26:0f:82:fa:c2:3e:a3:44:25:8a:4d:18:ee:b7:
61:65:fa:d0:5d:ba:4e:4c:cb:9e:fb:51:2e:78:23:
77:f5:9a:34:30:34:ba:b1:9f:72:58:c7:1e:02:fd:
a9:64:bd:2e:79:7d:d9:2f:1f:31:20:07:a8:fd:7b:
81:9a:74:22:e4:5f:30:67:f1:6b:6d:3a:50:ec:fa:
c6:6a:35:53:d3:a0:4b:50:20:06:b9:84:8d:2d:79:
f3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E2:1B:C9:30:39:FB:A7:D8:33:DB:CE:3B:4D:2A:6C:34:97:D0:96
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/MuIbyTA5-6fYM9vOO00qbDSX0JY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.92.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:38:fa:7b:55:f6:d7:2f:52:97:ea:13:f1:05:22:98:8b:57:
90:d8:7d:c2:80:76:c9:0c:f2:cc:60:d8:29:b5:8d:8c:34:76:
ef:74:59:24:58:bd:9a:91:17:f6:41:36:c5:41:50:bb:55:05:
de:da:05:18:db:06:7b:d6:c0:81:6f:38:98:a6:6f:06:a9:99:
8c:b4:1d:29:89:21:70:36:4d:15:9f:5f:72:45:fe:36:56:b7:
d6:a6:89:b9:56:b9:ec:b1:cb:3e:7d:38:02:a5:42:8b:48:70:
08:58:75:68:60:ee:7f:2e:65:ae:27:b2:80:32:c6:9d:83:b4:
e6:12:51:5a:1b:4b:d8:56:cd:d8:77:4e:2c:d2:8a:57:bc:3b:
cc:b0:bd:d7:66:32:67:4c:05:7d:20:b3:97:80:a6:87:db:f0:
e2:29:0d:4d:9e:f3:78:64:0c:74:95:e1:aa:cb:80:b3:e0:43:
25:e2:83:ef:27:52:89:dd:a7:1f:a6:1a:16:f1:0d:6f:5f:5a:
62:c2:a8:9c:e4:49:d5:11:9e:16:8c:bc:a8:3e:aa:ca:81:eb:
e1:ee:b9:d1:e7:0c:f0:8b:bc:bd:e5:29:31:e8:a6:3f:82:92:
49:92:45:0a:d6:8e:b5:2a:ee:95:d4:d2:a7:e8:26:13:d1:82:
2a:23:b8:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org