Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/MLpWdxLcdw_cV_kqWXyfK-2ZsGI.roa
File: MLpWdxLcdw_cV_kqWXyfK-2ZsGI.roa (raw, json)
Hash identifier: HzwcXGiEoCS/dl9Idkec0JMjsocenOU3XABOf+mClAU=
Subject key identifier: 30:BA:56:77:12:DC:77:0F:DC:57:F9:2A:59:7C:9F:2B:ED:99:B0:62
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 07C543A7
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/MLpWdxLcdw_cV_kqWXyfK-2ZsGI.roa
Signing time: Tue 22 Feb 2022 06:50:05 +0000
ROA not before: Tue 22 Feb 2022 06:50:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 193.43.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130368423 (0x7c543a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Feb 22 06:50:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30ba567712dc770fdc57f92a597c9f2bed99b062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:86:d0:4f:5d:8a:94:5c:0c:d7:de:57:92:ac:
43:a0:4f:1d:ab:40:22:97:91:4e:29:3c:bb:53:dd:
8a:ae:7b:57:a3:70:82:97:1b:7d:a2:c2:e1:5e:c9:
4c:1e:e9:aa:8b:d7:f3:2e:fd:44:0c:68:46:af:d5:
79:95:fd:ef:dc:30:b8:03:09:a0:df:3f:4c:eb:6d:
1d:70:a6:a0:3e:ba:d5:36:ab:26:ad:56:91:f5:9b:
0d:64:89:50:7a:31:22:de:dd:d7:a0:5b:60:84:b4:
d0:2f:81:58:dd:58:a7:7a:7c:4b:94:2b:af:ae:a2:
06:80:71:67:4d:53:3c:41:0b:6e:26:46:cf:3c:78:
38:13:7d:77:d2:64:45:53:6c:b5:6a:74:d0:8f:7f:
44:46:60:cf:b9:d9:67:56:92:31:bf:00:00:2c:26:
27:4f:d2:3a:80:88:b5:1e:f1:ac:55:87:0a:cc:78:
38:a2:3e:6a:2d:40:0c:36:19:cb:d2:4f:f4:09:e3:
ae:85:30:92:50:ed:91:de:93:4d:b3:21:2e:bf:84:
44:8d:71:2f:f5:5d:52:76:76:21:d7:0d:59:7c:6d:
13:9d:17:26:e8:1d:76:61:78:cc:c1:e7:0e:54:e3:
f8:66:18:ba:0c:ff:8f:dd:78:2f:45:61:a6:06:b3:
07:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BA:56:77:12:DC:77:0F:DC:57:F9:2A:59:7C:9F:2B:ED:99:B0:62
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/MLpWdxLcdw_cV_kqWXyfK-2ZsGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.142.0/24
Signature Algorithm: sha256WithRSAEncryption
11:c5:5a:4e:46:51:1b:f7:fa:46:0f:ef:da:e0:b9:42:c1:bc:
08:5c:68:2d:a9:f4:db:6a:ac:91:ac:5a:cf:9f:3c:79:a5:bb:
ed:39:0f:13:9f:b1:d8:e7:68:19:d8:ef:66:3d:f7:1d:0a:b0:
5d:1a:c6:34:e9:0d:52:64:f8:e1:64:e7:82:88:6a:39:45:8d:
53:da:a3:3b:8c:45:32:ed:6c:f3:62:8a:10:6e:e6:19:77:1f:
cf:ed:10:5f:4d:4e:d6:d9:be:54:81:19:f8:7b:56:15:15:45:
2b:94:ad:d5:02:06:22:bd:ed:f9:15:f7:48:9a:a6:b8:c2:d7:
81:f7:54:65:38:f7:da:d5:aa:47:33:e8:bf:83:ac:e1:84:75:
fd:d2:bc:bd:6e:92:c5:49:8e:05:d3:2f:b0:9d:9a:9e:b2:c5:
84:98:4c:03:a6:61:d2:a1:00:71:af:12:d8:8b:90:cf:41:e0:
60:20:5c:6c:b9:38:9e:27:1a:f0:23:88:bb:19:00:ee:42:c3:
e9:5e:ce:87:7c:bd:be:95:af:93:e6:f3:d4:b7:28:2e:ca:f3:
78:60:52:a2:88:a2:bc:ea:37:7a:f6:5f:57:1c:8c:34:7f:52:
ce:e9:ed:26:87:b6:5b:21:a4:d4:bc:8e:bb:21:ed:1e:09:b1:
f9:8d:bc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:30 2023 by rpki-client on console-ams.rpki-client.org