Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/Ma1yvy_OQdqofnkmCUf71luCcX8.roa
File: Ma1yvy_OQdqofnkmCUf71luCcX8.roa (raw, json)
Hash identifier: KV2tgZ+dmiJ7h9F2wDLmVACZvf7NPn5TgWylCpzmd9o=
Subject key identifier: 31:AD:72:BF:2F:CE:41:DA:A8:7E:79:26:09:47:FB:D6:5B:82:71:7F
Certificate issuer: /CN=d897faea94815e0520b46f185c3ebec29b376ef0
Certificate serial: 2065F6
Authority key identifier: D8:97:FA:EA:94:81:5E:05:20:B4:6F:18:5C:3E:BE:C2:9B:37:6E:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Jf66pSBXgUgtG8YXD6-wps3bvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/Ma1yvy_OQdqofnkmCUf71luCcX8.roa
Signing time: Thu 02 Jun 2022 11:59:20 +0000
ROA not before: Thu 02 Jun 2022 11:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212882
IP address blocks: 95.130.184.0/22 maxlen: 22
2a03:ac40:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2123254 (0x2065f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d897faea94815e0520b46f185c3ebec29b376ef0
Validity
Not Before: Jun 2 11:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ad72bf2fce41daa87e79260947fbd65b82717f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:46:48:ce:68:e1:42:1f:ab:ed:1c:e4:0b:da:
76:cd:c4:f8:db:9b:79:d1:a3:79:33:58:eb:4c:0d:
ca:10:89:40:99:e9:87:cc:6b:ea:9b:14:96:59:ee:
4d:8e:d6:b0:89:1e:7d:ba:4b:40:d3:ce:d3:34:fc:
eb:2f:c2:c1:6f:0e:49:a6:dd:ce:e7:06:88:f8:d5:
cd:bd:55:92:b1:79:fb:4c:66:69:8f:65:fb:6a:07:
af:63:7b:90:48:5c:aa:22:c3:44:17:77:06:fc:8c:
3f:44:f2:9a:52:ec:cf:38:57:04:03:62:24:a5:c1:
41:9f:08:1a:9a:a4:a0:f5:cf:53:82:66:a7:d8:70:
f3:90:bf:83:83:56:0d:29:17:76:b7:ab:21:45:cb:
64:14:61:2c:24:1f:2e:dc:05:9c:93:79:05:5d:cf:
c0:51:26:da:40:2a:c4:50:82:b9:18:20:06:7c:3f:
ad:34:78:a8:6e:ec:38:5f:a7:1c:b2:bd:0c:99:bc:
8f:84:79:0f:1b:8a:4f:24:fd:74:67:3a:bc:03:11:
82:3e:c9:7c:d4:a5:2f:e6:41:7d:a0:93:0a:55:58:
a9:f5:13:d9:3b:49:c3:bc:89:6b:bc:85:68:a7:6f:
4f:62:33:14:e0:65:2e:99:33:3f:d4:19:c2:30:a2:
93:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AD:72:BF:2F:CE:41:DA:A8:7E:79:26:09:47:FB:D6:5B:82:71:7F
X509v3 Authority Key Identifier:
keyid:D8:97:FA:EA:94:81:5E:05:20:B4:6F:18:5C:3E:BE:C2:9B:37:6E:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Jf66pSBXgUgtG8YXD6-wps3bvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/Ma1yvy_OQdqofnkmCUf71luCcX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/2Jf66pSBXgUgtG8YXD6-wps3bvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.184.0/22
IPv6:
2a03:ac40:1::/48
Signature Algorithm: sha256WithRSAEncryption
a3:89:c8:de:b2:21:20:d5:8a:ba:39:51:a3:a8:d4:c9:06:fc:
64:c4:c6:b7:f9:82:15:e7:33:b7:4f:43:85:5f:58:47:d6:33:
83:12:71:b5:64:d1:0d:0a:8a:01:b9:91:8f:11:9a:03:a3:91:
0b:0b:20:e5:7c:b4:ee:0f:f9:ea:2b:9c:10:08:16:24:7e:84:
3c:85:79:6a:c1:ac:00:d5:4d:22:06:34:42:a9:1a:ba:73:64:
d3:e2:36:da:bd:b2:92:96:eb:8e:4d:f2:59:ab:0c:95:91:bf:
ee:33:ca:93:a4:7c:5a:0e:39:c7:56:79:a6:ec:78:5b:67:b6:
ba:22:5f:4c:03:0c:d8:bb:be:62:97:a4:2c:3f:6d:66:9d:c6:
4e:4f:63:15:e4:5d:d2:26:91:1b:c5:f3:49:0d:b6:8c:bd:33:
dc:bf:43:db:a2:4f:ff:a2:05:f2:36:21:50:20:e0:76:00:7f:
bb:13:96:d0:1d:26:0a:b9:79:0e:7c:c5:92:1c:3e:95:a7:cd:
39:70:1e:83:e1:64:b0:aa:98:fe:f4:6a:7a:76:5b:73:fb:6a:
d2:4e:b6:dd:ff:c6:9a:61:66:e0:21:57:c1:fd:94:ff:43:3e:
c6:e6:a9:88:18:b4:ae:63:74:67:80:61:7d:1c:a7:41:bf:21:
0c:54:d3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:43 2023 by rpki-client on console-ams.rpki-client.org