Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/c34c30-81b4-4dbe-83e8-11f365a7352c/1/mmdpXjgddCS8EtRTaSdc6fM4aWQ.roa
File: mmdpXjgddCS8EtRTaSdc6fM4aWQ.roa (raw, json)
Hash identifier: 3lxOFePlxbwkK9YgpPolobQxup6HJaBN7pmWOHzKCVE=
Subject key identifier: 9A:67:69:5E:38:1D:74:24:BC:12:D4:53:69:27:5C:E9:F3:38:69:64
Certificate issuer: /CN=09c552498881876556f16e323f1ca369b25edb0c
Certificate serial: 0541711C
Authority key identifier: 09:C5:52:49:88:81:87:65:56:F1:6E:32:3F:1C:A3:69:B2:5E:DB:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CcVSSYiBh2VW8W4yPxyjabJe2ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/c34c30-81b4-4dbe-83e8-11f365a7352c/1/mmdpXjgddCS8EtRTaSdc6fM4aWQ.roa
Signing time: Sat 01 Jan 2022 06:56:21 +0000
ROA not before: Sat 01 Jan 2022 06:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48943
IP address blocks: 193.28.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88174876 (0x541711c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09c552498881876556f16e323f1ca369b25edb0c
Validity
Not Before: Jan 1 06:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a67695e381d7424bc12d45369275ce9f3386964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6a:9c:d2:99:ff:ab:51:49:61:b9:c5:95:cb:
e0:28:64:98:b8:66:9a:7b:be:d0:26:c2:cc:28:b8:
21:d6:54:65:f7:53:59:d4:77:07:b9:0e:72:bb:bd:
d4:9b:bf:a2:dc:4d:74:98:18:e0:9c:82:6a:c7:4d:
8d:38:18:eb:74:45:89:e8:ea:bd:0c:3b:48:78:ac:
90:4b:1e:a9:15:d1:d9:8e:fb:94:db:6e:c6:67:ab:
43:25:34:e2:03:aa:58:aa:b9:52:8f:9a:30:b9:04:
1e:52:af:02:2b:39:2f:15:ae:f3:76:83:0a:25:e2:
3e:05:3c:55:62:bc:8d:ba:17:39:63:d5:84:b0:0d:
cf:60:89:37:e9:7d:22:b3:6d:cf:74:87:98:bf:81:
9c:c6:86:2f:e7:76:0f:05:47:44:2f:2a:7d:e6:92:
a2:2e:99:4a:02:8d:69:ce:42:58:e8:32:11:cf:81:
d1:14:2b:68:f8:21:aa:c7:7a:65:15:46:52:c0:02:
71:63:b2:93:cf:09:10:fc:02:75:1f:e2:be:cd:e9:
b6:39:f9:97:1d:b8:d8:1b:5a:ea:05:2d:a4:ab:00:
f1:01:52:71:8f:58:04:74:be:bc:a0:51:7b:10:0e:
30:89:af:00:7b:9f:5f:9c:06:22:c8:73:af:86:59:
d2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:67:69:5E:38:1D:74:24:BC:12:D4:53:69:27:5C:E9:F3:38:69:64
X509v3 Authority Key Identifier:
keyid:09:C5:52:49:88:81:87:65:56:F1:6E:32:3F:1C:A3:69:B2:5E:DB:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CcVSSYiBh2VW8W4yPxyjabJe2ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c34c30-81b4-4dbe-83e8-11f365a7352c/1/mmdpXjgddCS8EtRTaSdc6fM4aWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c34c30-81b4-4dbe-83e8-11f365a7352c/1/CcVSSYiBh2VW8W4yPxyjabJe2ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.12.0/24
Signature Algorithm: sha256WithRSAEncryption
53:a3:eb:3c:83:01:9b:0b:38:91:b1:56:05:cc:cd:a4:8b:51:
8b:49:6d:55:08:1d:1e:63:49:1a:08:69:78:fa:75:8d:3a:6a:
b7:a3:be:be:94:24:80:a7:a5:6d:c8:f4:b2:50:9d:30:3c:7f:
36:f7:9b:b9:88:52:04:19:b6:c1:2c:c5:b4:95:c2:0e:dc:8a:
ea:e7:db:bf:b9:cc:13:ac:df:85:54:c3:38:4f:39:46:85:ad:
fe:cd:64:71:c1:ae:81:d4:94:19:b2:2c:a7:f3:14:58:56:b7:
d0:db:8a:b4:58:68:36:11:fa:12:65:fa:0c:b3:21:40:95:73:
36:ee:cc:44:0e:ab:7e:15:fb:86:dd:e3:75:c5:25:79:07:d6:
47:cc:5c:f0:c3:fd:51:b8:a7:fe:fc:67:5f:08:96:dd:dd:7f:
f0:ed:42:a0:8b:15:5b:5f:b9:93:f5:9f:5a:94:6e:56:f9:50:
2d:22:9b:44:fe:8f:5a:2a:ee:2a:68:c5:00:24:f9:fc:d4:f2:
df:d8:09:5a:ed:b4:9b:e3:a8:2f:4e:f3:5d:e7:c9:c3:fb:ef:
0d:b2:dd:db:11:e4:5c:90:f8:36:d1:f2:85:ca:d1:a3:e3:fa:
7a:c0:8f:e9:46:46:f8:4d:d6:5f:d0:56:a9:15:53:fb:aa:38:
ba:3c:7a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:04 2023 by rpki-client on console-ams.rpki-client.org