Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/mITmHrlG9XoyROsRZr7Ls9jO78I.roa
File: mITmHrlG9XoyROsRZr7Ls9jO78I.roa (raw, json)
Hash identifier: 2YyFN1zJslV/+UpCjS2b8QABd1uOiZdob7djfosimRo=
Subject key identifier: 98:84:E6:1E:B9:46:F5:7A:32:44:EB:11:66:BE:CB:B3:D8:CE:EF:C2
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 18FB1FBC
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/mITmHrlG9XoyROsRZr7Ls9jO78I.roa
Signing time: Thu 20 Jan 2022 17:44:18 +0000
ROA not before: Thu 20 Jan 2022 17:44:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8070
IP address blocks: 194.41.16.0/24 maxlen: 24
194.41.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419110844 (0x18fb1fbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Jan 20 17:44:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9884e61eb946f57a3244eb1166becbb3d8ceefc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a5:6f:53:9f:2f:4b:f3:1c:fe:f6:a2:d1:a8:
f9:e8:dc:13:54:e8:95:e5:a2:6f:0d:09:ad:8b:57:
fe:57:99:2e:32:ca:d4:97:5d:0a:a2:2e:c7:5a:ac:
84:5e:f1:3f:93:83:d4:11:2e:06:eb:05:2d:d4:4d:
31:5f:a5:f8:12:a6:18:af:4a:65:c9:bc:91:92:e5:
cd:63:6e:99:5c:00:83:90:49:81:34:6a:e6:12:96:
f9:3f:5d:ef:11:e4:10:37:e4:e6:f4:e6:a6:01:c8:
8b:21:3c:b8:17:de:1a:02:ff:ec:a5:af:09:2f:a4:
4a:1d:f7:8a:f8:91:b3:46:85:ff:7d:96:63:6c:f9:
f5:61:a1:db:c2:d8:de:24:f8:2f:87:e6:0c:ee:8d:
20:49:9c:4c:87:cb:bf:4c:1b:7a:2e:0f:4a:d0:d3:
0f:0f:1d:c4:3b:26:cf:ce:a5:4f:f5:cf:93:27:90:
12:09:66:e8:5a:a7:56:d8:b5:5c:2a:12:f3:cc:82:
8d:17:3f:67:1a:5d:cc:df:c9:c5:e5:98:ee:6c:5e:
b9:25:45:78:80:4a:6d:f7:b9:89:a8:d2:7e:39:e1:
74:6a:f3:fc:96:74:e3:b6:37:55:22:c9:b9:78:ea:
bb:91:e3:7d:fc:bb:bb:ad:69:5d:ed:c0:55:b9:bf:
07:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:84:E6:1E:B9:46:F5:7A:32:44:EB:11:66:BE:CB:B3:D8:CE:EF:C2
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/mITmHrlG9XoyROsRZr7Ls9jO78I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.41.16.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:e0:97:84:bb:61:4d:48:57:64:70:73:bf:a0:60:4a:3e:ed:
25:fa:00:10:54:72:fc:00:b6:c7:30:46:b1:b4:c8:28:fe:f9:
dc:04:7c:2c:be:6d:f1:a8:de:fb:66:4d:ce:ee:c1:51:ec:f6:
bd:a8:30:9d:3d:39:5d:3d:5a:24:94:38:d1:e8:72:9e:5b:40:
8a:48:0e:f4:03:4d:2a:a4:47:5c:01:22:5c:e1:29:3c:bc:9e:
69:06:55:4a:2e:00:c8:9f:8d:b7:40:16:6b:fc:50:03:84:3e:
d7:80:87:25:6e:10:ef:e0:17:1e:a7:fc:15:27:c7:57:6d:52:
98:6f:da:55:27:41:21:63:66:b6:3b:e5:ae:c2:96:aa:c5:b0:
13:09:a8:73:9a:fe:d1:93:04:05:83:8f:0c:92:29:29:f0:72:
37:57:a5:75:40:85:2e:bd:a7:ce:9c:cd:7e:01:c1:5d:08:35:
4e:80:d0:98:a3:26:0e:50:d3:31:32:82:68:94:00:a0:b2:64:
c3:b0:e9:33:ac:91:2d:e5:e6:09:b9:e2:d4:21:08:ce:1c:8c:
46:8c:2e:42:60:0b:d6:11:79:73:1e:5d:4a:ab:41:ae:53:8b:
65:35:37:b1:6a:e4:c6:37:a1:b5:85:5a:69:d9:67:1a:5d:f5:
22:bf:8d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org