Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/MWyYdfFPG26Eh5TffiA-7yyN9x4.roa
File: MWyYdfFPG26Eh5TffiA-7yyN9x4.roa (raw, json)
Hash identifier: m/6nVy8i0R2pDGwUsXTfRwMej4cf4pc+1LirDwBUxqI=
Subject key identifier: 31:6C:98:75:F1:4F:1B:6E:84:87:94:DF:7E:20:3E:EF:2C:8D:F7:1E
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 02EA22FD
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/MWyYdfFPG26Eh5TffiA-7yyN9x4.roa
Signing time: Sat 01 Jan 2022 03:59:40 +0000
ROA not before: Sat 01 Jan 2022 03:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213274
IP address blocks: 193.162.43.0/24 maxlen: 24
2a0f:cb00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48898813 (0x2ea22fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: Jan 1 03:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=316c9875f14f1b6e848794df7e203eef2c8df71e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3f:20:c3:eb:e4:bc:0c:62:5d:3a:81:ac:77:
db:66:67:1c:ee:cb:a4:0e:2c:b6:45:b2:79:c5:bf:
99:2a:58:0e:72:6c:d3:46:05:17:f0:cd:6a:d7:1a:
0c:48:d1:82:0c:b4:1e:ec:4f:c7:bd:3b:1f:db:98:
d2:21:2c:14:49:eb:15:3f:86:aa:36:5f:cc:74:45:
6f:40:1a:70:d6:e8:3d:d9:b4:b5:74:58:75:16:5c:
b9:4e:59:ff:2d:42:da:e2:77:11:55:db:c9:f9:8f:
65:34:17:d9:00:7c:96:29:f5:56:9a:af:ea:ad:96:
2a:41:41:45:cf:90:8b:1c:fd:3c:06:aa:3a:7c:4d:
0f:1e:7c:16:68:cb:8b:10:d5:35:c9:5a:47:8c:ee:
86:03:66:d9:f5:16:23:85:cd:ed:83:09:53:28:03:
7d:53:c9:b0:2c:6e:3f:df:97:d9:74:0a:19:f3:a4:
31:1f:5b:ba:40:fa:71:44:81:ef:c7:8f:7d:ca:ce:
8a:34:12:30:90:76:d2:ea:01:0d:f1:74:74:26:f7:
64:be:f5:0d:22:d2:1f:06:8b:46:0f:36:c7:ea:d2:
d6:bd:d0:1c:6f:6f:62:8e:ec:ed:9b:13:ef:ea:06:
57:f5:16:18:85:ad:45:55:78:77:a5:be:f9:a8:be:
70:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:6C:98:75:F1:4F:1B:6E:84:87:94:DF:7E:20:3E:EF:2C:8D:F7:1E
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/MWyYdfFPG26Eh5TffiA-7yyN9x4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.43.0/24
IPv6:
2a0f:cb00::/29
Signature Algorithm: sha256WithRSAEncryption
80:2d:7e:50:85:77:a2:c9:6f:f8:75:91:20:ff:13:49:ee:4a:
57:ea:a9:d8:75:30:2f:a5:81:93:2b:1e:08:6f:4b:97:0d:4b:
55:a6:d5:6f:a7:16:51:20:0e:d6:c6:5c:ba:4f:5a:67:3d:a1:
7f:50:30:f3:0d:11:aa:f9:1a:df:d5:51:24:da:4b:51:17:45:
c4:d3:d9:3f:35:fc:04:56:af:9b:04:da:5a:65:e8:e4:7e:12:
5c:08:3b:79:1f:1d:9f:dd:3a:d5:83:f2:17:cc:11:79:46:04:
22:22:f1:5b:4e:2f:c8:e0:4e:59:95:9a:99:dd:59:11:ce:dd:
ea:71:67:09:b0:85:95:d0:94:f2:90:32:be:db:88:49:73:26:
3d:91:f5:ec:bd:c7:ae:ec:af:16:24:33:27:25:9c:8e:a5:ab:
93:f0:b6:ee:20:31:ee:56:7d:32:ea:b6:3c:50:69:48:fa:3b:
a3:1b:b3:b8:c3:b5:ab:46:d3:4e:88:d0:a4:6a:f0:d7:b8:5e:
3b:87:37:92:3c:00:8a:63:32:2e:19:a4:f2:9f:a6:86:13:ef:
04:58:e3:19:d6:85:6b:ed:59:9f:1a:57:fd:2b:16:07:50:48:
1b:0b:59:e2:31:94:26:52:fa:ca:3a:45:e7:54:4d:b3:2a:f2:
a8:0a:78:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-fra.rpki-client.org