Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Mf15C0Ak8fNSefiqjxOklDyBs3Y.roa
File: Mf15C0Ak8fNSefiqjxOklDyBs3Y.roa (raw, json)
Hash identifier: xMaJEkoRIFbaI3jx4X2QP69FHqV0Nl/6ZY9XDEFTlSw=
Subject key identifier: 31:FD:79:0B:40:24:F1:F3:52:79:F8:AA:8F:13:A4:94:3C:81:B3:76
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 425565BA
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Mf15C0Ak8fNSefiqjxOklDyBs3Y.roa
Signing time: Sat 01 Jan 2022 14:02:58 +0000
ROA not before: Sat 01 Jan 2022 14:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8674
IP address blocks: 194.68.132.0/24 maxlen: 24
192.36.144.0/24 maxlen: 24
192.71.53.0/24 maxlen: 24
192.71.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1112892858 (0x425565ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31fd790b4024f1f35279f8aa8f13a4943c81b376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:37:34:8a:f6:d9:44:d9:82:74:c2:f7:2f:bc:
5a:e4:bd:1c:e1:2c:73:07:ff:c0:ec:67:b6:89:0a:
9c:64:13:a5:55:e4:2c:8a:41:68:6e:3f:71:24:ab:
86:af:49:be:45:8b:5a:5b:5b:5b:0e:43:3d:32:4e:
f7:09:0c:1d:ab:da:ee:77:2e:af:01:e2:9b:3c:7a:
c1:9a:cd:ec:c4:00:fd:c3:5c:b7:1b:9d:91:6d:9f:
ab:9e:53:da:b3:7b:0b:c2:60:d8:e3:80:86:9a:16:
ce:75:4d:61:22:8c:ec:40:8c:29:dc:82:b8:eb:76:
60:8c:f7:96:07:f9:49:31:2a:85:b2:98:96:ec:2c:
7d:e5:6e:cc:c6:9a:a3:33:ae:c0:41:f0:e3:88:09:
f1:3a:49:95:1b:5e:e2:69:ba:c2:20:b6:60:d5:f7:
b0:dc:95:f1:ee:07:cb:e6:63:42:58:33:f4:85:4b:
e0:bf:fa:84:a4:f3:df:70:ce:f6:24:f5:b1:1a:60:
58:51:da:be:d4:6a:bd:09:a9:25:7e:12:8f:d2:b3:
e9:a4:55:e2:c2:10:d5:26:0d:1f:7f:22:85:40:a9:
ba:8d:0b:2e:b2:93:c5:07:df:4d:b6:7e:8c:24:9c:
ea:c9:38:9c:1e:74:3d:1c:08:c3:d3:53:b2:6c:c9:
82:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FD:79:0B:40:24:F1:F3:52:79:F8:AA:8F:13:A4:94:3C:81:B3:76
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Mf15C0Ak8fNSefiqjxOklDyBs3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.144.0/24
192.71.53.0/24
192.71.80.0/24
194.68.132.0/24
Signature Algorithm: sha256WithRSAEncryption
43:c1:47:d1:fe:65:b6:fd:c4:c5:2f:ea:39:ab:80:1e:62:f3:
3f:80:26:d2:ae:5d:2a:b2:44:c9:50:98:4f:c2:76:62:dd:c2:
d7:30:07:0e:e9:c4:38:14:4d:bf:a9:08:f3:6d:a8:9b:96:49:
29:21:d4:f6:00:97:85:27:7e:c5:45:93:55:de:c2:7c:b9:fc:
4d:16:51:e7:ac:54:3c:99:41:8b:02:ff:ca:00:72:bc:c7:51:
1b:00:12:61:a2:e2:10:e3:27:76:7d:9d:12:e9:e8:16:7c:6c:
a5:0e:43:15:5d:90:f9:ca:7b:c0:df:0f:a2:c8:19:1d:e1:ed:
5e:9e:25:fc:e2:4d:55:ed:a7:f4:8e:d5:84:66:da:af:a6:b5:
d9:32:d2:4f:7a:c3:8e:5b:08:00:b2:da:73:b4:cb:38:8e:bf:
c8:f9:7b:b2:9f:1d:ea:1f:5e:43:cd:b7:db:62:a2:c5:f5:f7:
51:46:13:b7:a1:49:3f:9b:3a:1f:99:2e:e3:53:8b:db:af:da:
f3:10:c6:af:a0:78:66:cc:ae:4a:8a:f8:3b:70:e9:83:6b:d0:
60:de:85:d9:93:35:41:dc:13:1e:ac:48:77:79:18:ed:4f:9b:
c0:04:6a:38:83:9a:2e:1a:ff:25:57:cd:70:0d:be:d1:5f:f0:
17:36:98:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org