Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/MgloAN8AipQCSLDBty9Cc3SUsbo.roa
File: MgloAN8AipQCSLDBty9Cc3SUsbo.roa (raw, json)
Hash identifier: re27nAceVugNGnrItfMAhF0jdEju++pWWedJJXeNXYA=
Subject key identifier: 32:09:68:00:DF:00:8A:94:02:48:B0:C1:B7:2F:42:73:74:94:B1:BA
Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial: 08E098E1
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/MgloAN8AipQCSLDBty9Cc3SUsbo.roa
Signing time: Sat 01 Jan 2022 11:05:22 +0000
ROA not before: Sat 01 Jan 2022 11:05:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 194.50.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148936929 (0x8e098e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
Validity
Not Before: Jan 1 11:05:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32096800df008a940248b0c1b72f42737494b1ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fa:1f:fe:cd:e1:08:9e:1f:fe:56:cc:6d:13:
71:57:d0:6b:9a:37:aa:82:8a:0f:11:bf:88:e9:5f:
77:91:1e:f0:6a:b4:e3:a5:3c:ef:58:05:fe:ab:6a:
21:8c:6e:88:67:33:e9:58:ed:06:c9:44:9e:42:68:
a9:8c:91:35:fe:1c:d0:6a:2a:fa:6d:0d:1e:02:9c:
0a:8a:53:e4:1b:3e:7a:b6:c7:be:8b:f3:3d:b7:a5:
7e:da:ef:54:fb:77:e1:f9:a2:3b:60:f7:aa:0a:76:
c0:b8:ea:e0:9a:74:60:e4:ff:62:ef:a0:d9:d4:cb:
5c:ef:87:7f:d1:25:91:bf:4d:43:2c:38:9e:0b:4f:
a3:b0:d9:54:1b:b4:b1:12:91:de:c0:d0:34:62:82:
66:1a:cf:9c:cc:ee:0e:3e:da:9a:91:d5:68:4a:02:
9e:bc:b9:e2:7c:9c:c1:9e:b3:68:2e:1b:6d:6b:41:
9e:3f:a3:bc:11:c6:57:50:21:97:c3:08:b1:12:d6:
cd:6c:df:f3:57:38:9b:40:ef:bf:3b:49:ae:d5:ce:
e3:84:16:29:f1:1f:1e:6b:f1:a2:8f:42:88:ba:d2:
8a:fe:62:37:d1:7c:21:8d:18:94:c8:45:4f:5d:e8:
60:ce:76:b4:c9:5a:cb:38:2f:7f:60:4c:fc:27:7e:
66:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:09:68:00:DF:00:8A:94:02:48:B0:C1:B7:2F:42:73:74:94:B1:BA
X509v3 Authority Key Identifier:
keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/MgloAN8AipQCSLDBty9Cc3SUsbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.198.0/24
Signature Algorithm: sha256WithRSAEncryption
91:4a:cb:b7:19:ee:de:c7:44:bd:72:12:6a:ea:0f:36:ce:a4:
6e:fd:4f:15:79:b6:71:b4:d3:ad:5f:2c:42:f7:b8:01:da:c2:
ff:45:36:76:38:b0:35:8b:fc:96:99:19:ae:4b:90:4c:bd:14:
ce:f3:28:33:9a:13:e8:1e:c6:65:a5:b9:98:d2:42:fd:c6:38:
ea:72:b3:40:58:54:22:e1:7e:8e:12:5e:c0:00:6f:99:32:0e:
0a:13:05:47:f6:7a:36:22:dd:67:d1:40:1d:81:08:e0:48:c8:
6e:a8:03:c3:3d:b8:29:93:05:f5:6f:24:f0:c5:b9:dd:88:9d:
fe:da:1e:6c:f5:5a:72:66:3b:96:1b:50:8e:82:1b:a3:43:00:
fa:07:77:81:84:63:d6:5c:54:22:62:8c:a0:80:54:3d:3a:5a:
1e:97:a1:43:61:80:d3:c5:11:31:bf:14:ae:ab:ef:b0:4b:91:
e0:14:4e:23:da:ae:d8:43:37:2f:ec:69:bc:9a:60:60:62:9f:
92:77:c7:3e:a7:98:65:ee:e6:09:ab:f8:7f:d4:c2:54:06:d9:
a7:21:59:1f:87:d2:95:b4:7b:31:14:a4:68:57:1f:c1:66:06:
4b:60:ff:9e:b4:13:7c:98:f8:69:b1:ba:74:4b:ec:9e:c3:55:
d5:23:39:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:15 2023 by rpki-client on console-fra.rpki-client.org