Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/ML3FZb01t37nOBp2Bm5NK9XUNvE.roa
File: ML3FZb01t37nOBp2Bm5NK9XUNvE.roa (raw, json)
Hash identifier: ykh6Sfy8B/VU7vYsov/+IG67+W0oowqBmgdBlxyNPaM=
Subject key identifier: 30:BD:C5:65:BD:35:B7:7E:E7:38:1A:76:06:6E:4D:2B:D5:D4:36:F1
Certificate issuer: /CN=54b24d895bf9c0a5fd000a45a347510b2a087fb8
Certificate serial: 097E1ECC
Authority key identifier: 54:B2:4D:89:5B:F9:C0:A5:FD:00:0A:45:A3:47:51:0B:2A:08:7F:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLJNiVv5wKX9AApFo0dRCyoIf7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/ML3FZb01t37nOBp2Bm5NK9XUNvE.roa
Signing time: Sat 01 Jan 2022 04:02:06 +0000
ROA not before: Sat 01 Jan 2022 04:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12552
IP address blocks: 147.78.229.0/24 maxlen: 32
147.78.231.0/24 maxlen: 32
147.78.230.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159260364 (0x97e1ecc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b24d895bf9c0a5fd000a45a347510b2a087fb8
Validity
Not Before: Jan 1 04:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30bdc565bd35b77ee7381a76066e4d2bd5d436f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5c:6b:8b:81:6a:c2:04:4d:4d:5a:3b:26:b6:
d1:21:2a:e1:94:8c:fb:f6:db:ee:67:fd:29:97:8f:
71:38:7c:41:fc:a1:ac:b6:f7:17:89:bd:4c:1e:c0:
d5:4c:cc:38:d4:ca:1b:ab:da:3c:9f:65:9a:54:f9:
b6:fc:a5:05:ad:c7:55:0a:9a:3e:47:03:69:ca:e7:
97:05:59:df:5e:6f:bf:76:ef:c0:43:95:be:c8:3f:
38:ad:22:d0:9d:27:de:a6:32:1a:15:32:85:fe:9a:
a3:1e:34:bc:7e:51:54:57:1e:d8:41:4e:02:8c:31:
f7:90:81:76:c8:91:93:97:e6:de:2a:b8:f8:e2:e5:
2b:bc:b8:d6:ef:38:95:9c:26:5f:6a:e6:38:a1:c8:
1a:24:13:33:08:65:b3:27:4b:56:fe:72:2f:8b:53:
5c:2b:3c:38:62:1f:9b:f4:18:95:f7:63:ae:4c:56:
b8:21:f0:0e:6f:a4:3b:aa:de:77:26:77:99:42:d2:
6f:72:b8:42:cb:e5:25:5d:c9:f0:cb:2b:e9:46:aa:
c2:92:64:5e:77:e0:8d:3e:28:f5:48:98:8c:24:6d:
37:99:22:72:bb:fe:b1:6d:67:37:d1:08:84:cd:ee:
7d:c5:de:b7:be:77:72:63:38:43:03:cc:a3:f7:8e:
a8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BD:C5:65:BD:35:B7:7E:E7:38:1A:76:06:6E:4D:2B:D5:D4:36:F1
X509v3 Authority Key Identifier:
keyid:54:B2:4D:89:5B:F9:C0:A5:FD:00:0A:45:A3:47:51:0B:2A:08:7F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLJNiVv5wKX9AApFo0dRCyoIf7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/ML3FZb01t37nOBp2Bm5NK9XUNvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/VLJNiVv5wKX9AApFo0dRCyoIf7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.229.0-147.78.231.255
Signature Algorithm: sha256WithRSAEncryption
2b:91:a9:ad:b0:9c:0d:49:66:cd:d4:80:cd:00:50:6a:0f:79:
11:80:61:73:3b:9a:4c:5f:d2:d2:f7:bc:eb:4f:39:3e:bc:4f:
db:dd:54:ad:d3:31:e9:2e:a4:e5:bc:0d:bf:97:b9:12:94:59:
8f:76:5f:4b:83:85:1b:4f:2c:20:0b:9a:76:d8:a9:0d:b0:b1:
f4:a9:74:96:34:9e:15:03:bd:aa:49:fa:f0:08:d9:8b:4c:01:
d5:f4:ad:af:96:9e:4a:cf:61:bd:42:14:82:01:81:98:0d:6b:
91:1a:08:cf:de:47:a7:87:24:79:74:1f:f3:04:c8:cd:3e:64:
cb:55:68:79:30:79:09:60:26:bb:3a:3a:ec:9b:b6:f6:be:59:
c8:f0:23:77:83:81:bf:f3:ed:29:3a:23:0e:21:ca:0c:04:e2:
48:ff:5c:4f:6e:5d:a9:41:b4:c8:76:47:bc:82:f8:10:6d:49:
7f:b5:c0:d5:40:6e:41:1f:dc:e8:0e:dc:98:46:83:59:07:96:
1f:b8:63:54:69:b3:a8:a2:4f:0e:5f:0f:f9:bf:bd:e6:fd:55:
75:8d:35:c3:06:27:aa:79:ee:43:33:c8:d9:83:6a:e1:6a:5b:
26:07:88:7e:e5:df:df:3c:49:79:19:17:b3:26:da:68:77:c1:
02:7f:19:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:22 2024 by rpki-client on console-fra.rpki-client.org