Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0b87ee-1064-4137-8490-02fa218d14f8/1/MpD6mZVLjEgd8v71sSBUJqedNgI.roa
File: MpD6mZVLjEgd8v71sSBUJqedNgI.roa (raw, json)
Hash identifier: V0TniOD/jPBFzst4EtdOSOHNO8kJZ3i8OIvi55VVQbI=
Subject key identifier: 32:90:FA:99:95:4B:8C:48:1D:F2:FE:F5:B1:20:54:26:A7:9D:36:02
Certificate issuer: /CN=75bbc89ad0420de7b5bc2dd32fea3b979fade027
Certificate serial: 204340
Authority key identifier: 75:BB:C8:9A:D0:42:0D:E7:B5:BC:2D:D3:2F:EA:3B:97:9F:AD:E0:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbvImtBCDee1vC3TL-o7l5-t4Cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0b87ee-1064-4137-8490-02fa218d14f8/1/MpD6mZVLjEgd8v71sSBUJqedNgI.roa
Signing time: Mon 06 Jun 2022 17:11:20 +0000
ROA not before: Mon 06 Jun 2022 17:11:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50883
IP address blocks: 91.216.6.0/24 maxlen: 24
178.216.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2114368 (0x204340)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75bbc89ad0420de7b5bc2dd32fea3b979fade027
Validity
Not Before: Jun 6 17:11:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3290fa99954b8c481df2fef5b1205426a79d3602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2c:8a:d2:46:5f:e2:b1:0a:f7:a7:2a:78:73:
0b:6a:22:c1:ba:f3:cc:8f:ba:88:96:9f:68:c4:d8:
b3:2c:21:e6:da:f9:b5:77:71:52:27:da:9d:82:57:
7c:c2:89:5d:97:7b:36:9d:8a:a4:83:be:a6:8e:10:
c2:8f:93:9c:70:62:82:04:3e:77:8f:fd:57:a4:30:
32:ce:45:22:a8:89:54:65:6c:2a:c4:8d:c1:e9:d7:
b7:50:4e:b0:12:84:c0:b6:21:4c:12:fd:3e:95:93:
b6:3e:36:ab:a6:5f:38:df:af:cc:19:e8:eb:b3:05:
e3:ed:90:83:2f:05:3b:f3:43:a1:9b:d4:7b:7b:0f:
b5:f4:5b:df:5d:27:31:9b:00:7d:76:a5:58:e2:74:
d4:5d:57:78:43:19:7f:a6:ef:09:e4:ec:a7:07:b5:
18:a2:20:5e:39:c9:bb:90:fa:e9:75:ba:c5:7c:58:
05:37:d6:00:c1:a9:78:81:16:8f:0d:9e:2e:c8:50:
72:b9:b0:0d:80:d9:7c:8f:8e:6a:81:bb:ac:f9:7f:
e7:55:c2:b0:a9:42:dd:98:11:79:03:42:f9:f2:a0:
62:b9:a1:3e:d2:e1:3d:a9:42:64:53:50:72:dd:67:
3b:28:56:6e:14:9e:d2:e3:69:26:73:a2:72:58:a3:
2c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:90:FA:99:95:4B:8C:48:1D:F2:FE:F5:B1:20:54:26:A7:9D:36:02
X509v3 Authority Key Identifier:
keyid:75:BB:C8:9A:D0:42:0D:E7:B5:BC:2D:D3:2F:EA:3B:97:9F:AD:E0:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbvImtBCDee1vC3TL-o7l5-t4Cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0b87ee-1064-4137-8490-02fa218d14f8/1/MpD6mZVLjEgd8v71sSBUJqedNgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0b87ee-1064-4137-8490-02fa218d14f8/1/dbvImtBCDee1vC3TL-o7l5-t4Cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.6.0/24
178.216.112.0/21
Signature Algorithm: sha256WithRSAEncryption
97:be:ea:54:ab:13:bb:b5:05:32:be:3f:82:a5:de:59:7d:a9:
fe:8c:35:4e:78:cf:77:e6:64:f3:25:b4:b0:71:3a:ed:98:0d:
4d:36:65:b6:62:c7:9a:07:5c:c3:30:aa:d9:63:5f:ad:e2:53:
b8:42:46:13:d4:7e:67:15:96:b2:6a:dd:75:b0:df:da:b7:71:
23:0e:ff:ae:1b:e2:52:a3:67:69:00:7a:30:39:05:5f:a4:53:
b7:62:16:a7:68:a1:09:c1:45:dc:55:46:f2:c3:f2:cf:b2:96:
fa:ad:58:b6:0f:8c:83:47:c7:82:aa:90:52:74:64:4b:0f:15:
5d:a8:9c:ed:41:b9:d2:2f:d7:a5:3f:de:90:ba:ec:83:56:1e:
a3:13:c7:f7:47:d4:fe:7a:fa:c2:d8:a2:53:9a:79:41:41:84:
96:32:8b:a2:7e:4a:cc:00:f7:29:1c:dd:83:4e:a5:b2:3d:05:
cc:82:71:9e:ce:6a:7c:43:6b:70:16:2f:cd:b5:27:28:90:87:
a5:9f:59:93:f9:47:ab:2d:0a:bc:72:54:ac:1f:6f:58:21:cd:
21:7b:8e:2f:e4:2d:3a:f6:2a:a7:ae:6f:7c:ad:13:df:15:23:
0f:00:01:5d:3f:96:d0:f5:95:2c:3b:20:7b:7e:49:4f:04:7c:
11:68:b6:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:21 2024 by rpki-client on console-ams.rpki-client.org