Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/f12e6b-7f06-4040-86b9-7bf96832e1ea/1/Mig9pkklxyn2naeQYPGzOhhRrUY.roa
File: Mig9pkklxyn2naeQYPGzOhhRrUY.roa (raw, json)
Hash identifier: EIfzyCQ+W4oXjc8ypMVXVrpib8iIHIIpiE2cuehlzWI=
Subject key identifier: 32:28:3D:A6:49:25:C7:29:F6:9D:A7:90:60:F1:B3:3A:18:51:AD:46
Certificate issuer: /CN=710ab286dae8d8cb5f6fc4eec3f323814c87f5be
Certificate serial: 0D3997BB
Authority key identifier: 71:0A:B2:86:DA:E8:D8:CB:5F:6F:C4:EE:C3:F3:23:81:4C:87:F5:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cQqyhtro2Mtfb8Tuw_MjgUyH9b4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/f12e6b-7f06-4040-86b9-7bf96832e1ea/1/Mig9pkklxyn2naeQYPGzOhhRrUY.roa
Signing time: Sat 01 Jan 2022 11:57:33 +0000
ROA not before: Sat 01 Jan 2022 11:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42783
IP address blocks: 194.0.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221878203 (0xd3997bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=710ab286dae8d8cb5f6fc4eec3f323814c87f5be
Validity
Not Before: Jan 1 11:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32283da64925c729f69da79060f1b33a1851ad46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d1:ee:b2:a5:63:1d:ee:e8:a6:2f:81:db:7b:
41:27:a3:e0:5e:c3:7e:81:88:68:42:67:44:e3:34:
79:20:40:7c:e2:9e:80:24:37:a9:26:04:78:00:2a:
42:c9:3f:49:87:08:d9:7b:ca:aa:3c:06:2b:4c:5b:
42:27:d0:e8:9a:95:a2:ff:0e:0e:f6:a8:44:ad:67:
5e:bf:50:e0:59:d8:98:af:51:1c:d2:2e:4a:8f:1e:
7b:21:19:e2:26:ae:5d:dd:fb:b2:00:2a:16:5d:8c:
5b:51:b1:9f:00:0e:21:16:9b:30:2d:da:3c:b5:00:
2e:f4:70:b8:d0:db:99:02:21:02:c8:17:79:76:26:
4b:67:a4:17:c7:1d:5e:27:aa:e8:70:2f:24:a9:02:
ac:17:be:d7:d1:1f:f7:95:eb:7b:70:63:e0:63:c7:
64:19:85:73:47:7a:2e:dc:9c:6f:f7:54:8a:76:31:
b2:63:64:07:24:b5:d1:ac:a7:2d:c4:b1:3f:51:63:
31:29:ed:1c:a5:3b:22:54:54:a6:39:0b:6e:1d:1c:
ef:12:8c:27:ed:a4:b9:a2:e0:fc:9b:4e:de:12:33:
50:6f:31:d9:e4:39:6c:ba:9b:6c:78:ab:c9:9a:24:
97:f0:7a:48:3a:3b:32:c9:38:ed:f5:cc:cd:ee:99:
eb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:28:3D:A6:49:25:C7:29:F6:9D:A7:90:60:F1:B3:3A:18:51:AD:46
X509v3 Authority Key Identifier:
keyid:71:0A:B2:86:DA:E8:D8:CB:5F:6F:C4:EE:C3:F3:23:81:4C:87:F5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cQqyhtro2Mtfb8Tuw_MjgUyH9b4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/f12e6b-7f06-4040-86b9-7bf96832e1ea/1/Mig9pkklxyn2naeQYPGzOhhRrUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/f12e6b-7f06-4040-86b9-7bf96832e1ea/1/cQqyhtro2Mtfb8Tuw_MjgUyH9b4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.230.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:62:e5:f2:e2:f6:31:e9:e0:d2:92:94:78:d7:9d:df:f5:cb:
45:fb:21:05:8d:45:92:30:5f:f2:14:99:08:20:4e:03:b0:9a:
0e:a8:b7:be:60:dd:a0:79:a5:2f:65:31:5c:e4:d1:6d:d7:73:
fd:eb:5a:1f:66:54:ed:c2:24:c2:b2:d7:3f:9d:1d:cc:b5:ec:
3b:06:6c:38:51:af:3e:85:89:40:65:27:96:31:3d:57:8b:c4:
b7:36:4a:19:01:9f:30:4f:1b:7f:87:77:28:45:66:f5:b8:8f:
e3:1f:16:a6:2e:8b:f7:ca:d4:37:e0:1c:94:c2:29:87:0d:3c:
ef:17:10:9d:7f:20:8a:db:2c:3d:04:00:92:75:66:75:dd:d3:
a0:14:90:7d:ba:ab:5a:93:0d:51:48:4f:9a:eb:94:ce:1f:b1:
f9:2d:d4:f0:18:26:6c:ea:31:ad:b1:b5:0e:96:0a:6b:83:56:
c4:12:19:7e:a5:96:89:25:9f:e7:ef:e5:ce:32:08:24:0d:03:
cc:ab:56:11:84:86:bf:23:58:f0:78:f8:79:a2:5b:ea:6d:87:
c9:4b:7f:c4:06:4d:b0:03:b7:57:fc:6e:74:32:a5:cc:92:7a:
d3:49:1a:5f:2d:ac:f7:08:4f:4c:ca:5c:48:54:29:67:cb:4c:
54:6d:f0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:19 2024 by rpki-client on console-fra.rpki-client.org