Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MtbRVElF0KMIjDMcI0iJGIwnTok.roa
File: MtbRVElF0KMIjDMcI0iJGIwnTok.roa (raw, json)
Hash identifier: uGlGoRmnzvhAufVvvZxnPsYsyhBIXwb2kAoLOldCT6o=
Subject key identifier: 32:D6:D1:54:49:45:D0:A3:08:8C:33:1C:23:48:89:18:8C:27:4E:89
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0181F3FE7B1EDF309108781A84955154D818
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MtbRVElF0KMIjDMcI0iJGIwnTok.roa
Signing time: Tue 12 Jul 2022 19:59:09 +0000
ROA not before: Tue 12 Jul 2022 19:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205220
IP address blocks: 5.10.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f3:fe:7b:1e:df:30:91:08:78:1a:84:95:51:54:d8:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jul 12 19:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32d6d1544945d0a3088c331c234889188c274e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d5:51:cc:ea:69:18:59:6c:1d:d9:71:80:82:
48:04:f9:12:a0:1f:bd:b0:09:3f:2f:f3:16:6e:db:
60:40:4e:df:ee:a7:f1:4e:68:39:a4:54:64:c0:f4:
25:41:bd:45:eb:f1:84:1f:8b:11:56:79:6e:68:88:
99:41:2e:38:94:9e:31:bf:f5:14:75:70:90:0d:19:
49:9d:dc:6d:66:c9:ce:fb:8c:76:d3:75:14:62:0f:
26:7f:d0:e0:e7:72:14:8a:93:e0:54:0f:b3:d6:d7:
9e:6d:cf:15:dc:41:fd:3e:f8:ce:7d:8e:f5:39:d4:
a2:4d:ee:0b:89:42:e8:b6:64:4a:58:76:2a:64:dc:
ed:69:58:5c:ce:3f:21:30:30:3c:5f:6b:6a:9b:c9:
2e:94:78:47:1e:ce:4a:ef:b5:d4:56:6a:69:00:51:
97:44:05:7f:de:5f:01:63:23:23:26:1b:a5:fd:54:
13:54:c4:ec:5a:dc:32:66:0b:14:fb:62:c0:e2:45:
78:87:6e:db:91:dc:0f:81:f8:e4:10:07:62:2e:2e:
cf:a7:27:e5:f2:a4:94:30:f3:f6:90:27:7d:50:6a:
bf:ad:e6:e3:8b:4c:4d:45:71:6b:84:0c:24:29:2e:
46:9f:90:fe:ae:39:39:41:a7:0c:9d:80:c3:ed:e3:
0c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D6:D1:54:49:45:D0:A3:08:8C:33:1C:23:48:89:18:8C:27:4E:89
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MtbRVElF0KMIjDMcI0iJGIwnTok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.240.0/20
Signature Algorithm: sha256WithRSAEncryption
b6:e0:b2:4d:13:e9:71:09:24:be:1a:83:4a:0d:2f:f1:ea:58:
9e:80:7d:20:0e:66:a5:c2:9a:a6:3a:54:06:ef:11:d7:5e:86:
3d:86:1f:ac:2f:13:d8:01:c0:62:33:49:ff:25:26:a1:29:11:
f4:df:fd:4e:5e:52:cf:58:5b:32:8d:ea:2d:19:e7:d3:8d:81:
5b:54:ea:2f:ed:12:27:38:48:ef:3f:2d:3f:66:3d:ff:60:e4:
01:58:a6:89:41:65:5e:0e:23:3d:fa:7f:03:a4:6d:fe:8a:36:
36:1a:69:33:a2:7a:08:99:c9:52:e1:15:47:26:9d:bc:af:13:
25:4e:03:15:66:e3:87:07:6e:0c:23:ad:d3:6b:6c:4c:8e:36:
d3:a3:d1:e2:f7:0d:ff:d0:0a:12:e1:5e:76:d3:f7:b1:f9:ad:
89:42:57:69:42:47:f2:ec:da:39:7b:db:47:0d:f4:a6:c7:39:
28:19:93:55:9f:69:9d:57:c5:62:c9:7f:cc:59:b1:c8:9c:4b:
d1:be:4d:9e:aa:bd:1c:a4:c7:81:a3:1b:32:11:71:5d:1d:6d:
df:ab:e8:7a:38:b1:2e:90:a2:f3:5d:3c:51:25:95:f4:da:17:
e9:82:f8:f3:09:80:c5:b7:71:4c:76:f0:24:06:18:82:48:ae:
08:b0:03:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org