Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/809da0-e395-4f80-ab17-3d4da8d12806/1/MtJ7Bfqn5I10vWAjR7T6FkD-h1I.roa
File: MtJ7Bfqn5I10vWAjR7T6FkD-h1I.roa (raw, json)
Hash identifier: iFPLmoTmb6AISFepIawwICmC1oLjSdFBf51rz6L/KkM=
Subject key identifier: 32:D2:7B:05:FA:A7:E4:8D:74:BD:60:23:47:B4:FA:16:40:FE:87:52
Certificate issuer: /CN=6e046aeb6a01ca48a49750d881b79f7a78d51089
Certificate serial: 31ECEB27
Authority key identifier: 6E:04:6A:EB:6A:01:CA:48:A4:97:50:D8:81:B7:9F:7A:78:D5:10:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bgRq62oBykikl1DYgbefenjVEIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/809da0-e395-4f80-ab17-3d4da8d12806/1/MtJ7Bfqn5I10vWAjR7T6FkD-h1I.roa
Signing time: Sat 01 Jan 2022 12:55:50 +0000
ROA not before: Sat 01 Jan 2022 12:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198580
IP address blocks: 176.53.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 837610279 (0x31eceb27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e046aeb6a01ca48a49750d881b79f7a78d51089
Validity
Not Before: Jan 1 12:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32d27b05faa7e48d74bd602347b4fa1640fe8752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:bc:24:8e:fe:17:c9:3f:2c:62:50:7d:5e:
96:c0:ac:24:d9:8c:52:c9:d3:06:47:0b:d8:de:31:
33:bd:18:7f:77:3a:05:bb:77:ac:fb:a3:59:b7:3e:
50:5c:af:5b:80:aa:5c:14:ae:52:41:01:aa:4e:99:
4c:7a:e7:43:16:82:7f:03:98:88:b9:a5:69:11:8d:
04:92:55:14:ac:1f:97:01:58:af:04:c4:84:cd:76:
8d:20:c6:41:d9:ed:a2:26:6a:fc:20:f2:c3:3a:a3:
2d:08:9f:95:a4:ed:e5:a8:28:9d:0c:16:6f:73:d2:
59:20:a0:ab:ff:5c:5c:ef:91:a1:9a:20:01:dd:33:
0b:b4:3f:4e:6b:7c:de:f8:14:3f:7b:de:c7:04:e9:
cf:86:80:df:b8:30:a1:88:cd:29:2b:7a:b7:b3:a1:
78:67:37:6d:32:66:7f:3c:71:c8:b8:d6:09:70:b2:
51:69:7e:ad:7d:61:06:0b:4e:4b:69:4f:e3:59:1b:
12:63:93:db:6f:d2:8d:e3:aa:53:5f:a3:3e:6c:d9:
76:d8:85:06:4a:c8:06:56:39:24:c1:00:d3:f4:40:
2b:c3:89:92:6b:e7:64:c4:d2:0c:0f:60:3b:60:7c:
a2:00:d0:af:57:9b:4b:0b:80:2e:12:3a:1f:32:66:
4e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D2:7B:05:FA:A7:E4:8D:74:BD:60:23:47:B4:FA:16:40:FE:87:52
X509v3 Authority Key Identifier:
keyid:6E:04:6A:EB:6A:01:CA:48:A4:97:50:D8:81:B7:9F:7A:78:D5:10:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bgRq62oBykikl1DYgbefenjVEIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/809da0-e395-4f80-ab17-3d4da8d12806/1/MtJ7Bfqn5I10vWAjR7T6FkD-h1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/809da0-e395-4f80-ab17-3d4da8d12806/1/bgRq62oBykikl1DYgbefenjVEIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.193.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:11:96:5c:ed:a1:8d:29:0e:4c:ce:a5:1b:8f:67:99:91:dc:
be:b4:60:fc:29:09:3c:e4:18:7d:36:18:50:54:8a:d4:5e:ec:
27:43:7b:30:52:49:7e:ff:03:b8:56:16:a3:53:2d:98:19:9d:
25:88:5f:2c:1c:f7:f5:6c:9d:1b:61:09:20:e3:3b:bc:a9:75:
a5:3a:e3:32:a5:2b:97:e5:2f:a6:a8:10:be:9e:b4:43:1c:28:
47:bb:5e:70:ad:d4:e2:4c:bf:b8:89:7c:2a:2a:54:1f:ae:46:
3c:0e:1f:f2:b9:4d:e1:a5:08:08:55:33:e9:f7:79:5f:30:7c:
41:f7:a0:36:5b:79:a1:66:58:69:a7:a0:97:01:3c:cb:f5:01:
01:b4:71:dc:a4:c2:ef:ff:25:ae:fc:42:32:5a:18:86:23:12:
2a:5b:7f:4f:dc:14:f4:44:12:a3:f7:85:df:a5:00:e4:44:26:
a0:38:da:8d:48:06:a3:8f:74:58:7a:d2:1c:73:6b:9b:46:84:
53:34:f3:13:1a:bb:96:94:cb:69:ea:8b:24:2b:9e:7f:d2:79:
9b:b8:2b:f5:3e:72:91:be:c5:ee:99:12:a6:e7:a0:da:1b:a6:
53:28:ed:37:96:8e:95:dd:13:6c:8e:28:35:f6:c2:f4:34:16:
2f:e1:2e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:17 2025 by rpki-client