Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MzLeIEDsR7Y0TIzon0MsiRWgWo4.roa
File: MzLeIEDsR7Y0TIzon0MsiRWgWo4.roa (raw, json)
Hash identifier: MSOj6YAcZXT1Pfd86hxZCYHH5VQfauX/LkESHAn4EPU=
Subject key identifier: 33:32:DE:20:40:EC:47:B6:34:4C:8C:E8:9F:43:2C:89:15:A0:5A:8E
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 03C09071
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MzLeIEDsR7Y0TIzon0MsiRWgWo4.roa
Signing time: Wed 25 May 2022 07:16:11 +0000
ROA not before: Wed 25 May 2022 07:16:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 88.151.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62951537 (0x3c09071)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: May 25 07:16:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3332de2040ec47b6344c8ce89f432c8915a05a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:03:23:5c:dc:0c:fa:81:f5:bf:0d:48:6c:fe:
bd:49:39:ed:56:f1:67:e7:0c:e6:4f:cd:ef:cb:16:
93:53:91:13:8a:e0:82:2a:a6:48:64:cc:ed:be:9b:
15:bd:71:48:a1:bf:86:30:bd:04:dc:a1:53:6b:d4:
67:84:82:56:d3:9e:2d:b8:b2:5a:69:27:7e:25:60:
e9:ea:e4:d1:0e:93:93:dd:f8:e0:51:e1:86:36:cd:
74:d1:6a:f5:a9:b6:57:51:09:08:de:5e:11:09:c6:
2a:61:96:b5:d6:44:9b:b8:8a:2a:71:43:4d:69:3e:
fd:98:82:50:bc:55:10:75:84:7f:6f:9f:07:2f:42:
76:43:31:1b:91:e4:e3:bb:cc:06:46:6f:02:93:0c:
6c:1a:e5:70:41:ae:d8:2d:f3:ae:17:8a:fd:27:02:
da:70:2d:73:1a:92:75:1e:6f:15:19:1f:8f:f8:2a:
4c:86:67:13:1a:fc:60:5b:e9:48:76:35:a5:c4:d4:
84:ee:82:35:2c:9e:74:da:95:a2:35:15:62:7e:5f:
e0:bd:19:89:9b:a6:b4:4a:33:9b:7a:3d:7f:63:07:
81:6e:da:39:7c:92:45:39:f3:db:f1:83:9b:d4:e7:
9b:5e:8c:1e:e4:f2:f2:44:94:fc:5d:e1:b9:2d:f1:
49:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:32:DE:20:40:EC:47:B6:34:4C:8C:E8:9F:43:2C:89:15:A0:5A:8E
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MzLeIEDsR7Y0TIzon0MsiRWgWo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.195.0/24
Signature Algorithm: sha256WithRSAEncryption
96:01:cf:5a:4b:75:e3:f7:c6:57:9a:23:1f:c6:4b:85:f5:3a:
5c:ba:71:e8:ad:96:79:73:19:32:5e:1e:a6:9c:5e:a2:28:e0:
17:1d:85:24:ea:2d:ab:eb:cc:fe:9c:55:7b:88:d9:63:40:88:
ea:d8:a2:f6:01:21:60:5c:ed:d7:cb:ff:9f:8c:10:dd:0b:7a:
01:09:32:b5:bb:28:b5:a7:49:17:8e:5b:48:50:2e:0c:42:89:
b1:22:b0:00:9f:c2:62:5f:31:00:30:7f:b1:45:2c:22:bd:60:
e5:20:80:00:72:43:13:1f:39:eb:a2:c6:62:aa:5f:6b:be:25:
d7:07:61:17:cf:f7:6a:15:42:f8:75:ce:88:29:01:fd:4c:f7:
26:b8:85:9b:b0:ce:b3:db:46:24:a2:eb:94:2f:ca:b7:7c:29:
b1:09:e0:03:00:94:ed:d6:3c:db:1d:0e:9a:fe:54:1e:9a:88:
43:fa:36:99:83:33:ee:cf:32:76:5a:03:4b:71:6d:ea:31:3a:
1d:ea:b2:2f:ff:13:c1:67:1d:05:68:ff:20:81:dd:12:4f:75:
37:ea:12:7e:7c:e5:c4:fc:d0:3d:0d:a2:72:7e:77:18:fa:91:
2e:fe:4c:c6:32:14:13:4c:ba:38:3c:86:79:ce:2a:2d:80:a5:
26:50:0e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org