Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/Mn3Hgw59A0c5Gk9s0DFcagKkmgo.roa
File: Mn3Hgw59A0c5Gk9s0DFcagKkmgo.roa (raw, json)
Hash identifier: 7vAYf8gaPOzy7cKZEvlFWaCoC+QkiKqoaXSvx+dTwVE=
Subject key identifier: 32:7D:C7:83:0E:7D:03:47:39:1A:4F:6C:D0:31:5C:6A:02:A4:9A:0A
Certificate issuer: /CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Certificate serial: 03EAD9FD
Authority key identifier: 25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/Mn3Hgw59A0c5Gk9s0DFcagKkmgo.roa
Signing time: Sat 01 Jan 2022 09:54:13 +0000
ROA not before: Sat 01 Jan 2022 09:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27418
IP address blocks: 199.182.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65722877 (0x3ead9fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Validity
Not Before: Jan 1 09:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=327dc7830e7d0347391a4f6cd0315c6a02a49a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:94:5a:8a:a8:7e:80:33:18:90:9c:52:48:
bc:d4:35:6e:55:35:a2:1c:86:2b:f7:c5:4f:6c:6a:
40:13:f5:6b:d4:cf:89:43:88:c8:d5:50:b1:e3:27:
85:3e:6f:4d:e8:e2:68:dd:4a:f6:47:8e:fd:b5:d1:
33:b7:12:ff:5c:a5:fd:a4:f3:5c:e1:a3:bc:0f:ad:
93:f5:fb:d2:0c:27:a4:bb:96:6f:69:39:5d:b1:dc:
7b:7a:41:ca:49:6d:31:be:c5:fd:d6:1e:4a:1e:ea:
45:a2:1e:be:45:97:28:50:27:29:2d:50:ba:fc:4c:
3c:31:29:d6:94:b7:39:df:39:65:69:be:3f:1f:96:
ff:a7:7c:75:49:0f:09:c9:35:50:02:aa:70:cc:d7:
e4:10:d8:50:af:58:c1:f4:4c:54:38:ed:07:c8:10:
05:5c:53:af:cd:09:2b:21:9f:78:e1:e3:d8:64:b2:
ea:a1:4d:46:2c:21:49:81:3c:86:dc:74:b3:00:a2:
26:67:f1:47:61:b2:e8:67:ae:38:b6:4d:fb:69:f3:
5d:ce:b1:df:4c:8e:ae:57:89:ef:3a:11:6d:55:b0:
b8:9b:04:57:8f:97:8d:a6:82:c1:e8:33:54:ff:8e:
70:c1:28:74:9c:50:79:bd:c2:b8:d3:3b:39:c2:b4:
6c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7D:C7:83:0E:7D:03:47:39:1A:4F:6C:D0:31:5C:6A:02:A4:9A:0A
X509v3 Authority Key Identifier:
keyid:25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/Mn3Hgw59A0c5Gk9s0DFcagKkmgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.182.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:a4:fe:39:5f:75:3d:a3:29:19:cf:31:97:9f:08:4f:89:c5:
c3:a9:2c:2e:fa:36:04:bc:75:d3:08:ff:70:63:17:95:d8:01:
ae:a3:ee:af:bb:b9:f4:ac:59:20:7a:4a:26:fa:96:0b:29:7e:
92:38:3a:43:06:fb:df:34:dc:b5:a5:fa:31:50:92:d3:84:d7:
b7:00:ea:17:69:29:81:55:83:d7:eb:dd:e0:79:51:67:8d:d9:
c6:4a:d1:bd:59:24:93:19:b3:87:06:3e:df:a1:96:d5:54:f8:
24:c5:40:b0:1d:3d:2d:d8:46:e3:e8:84:96:59:b5:c4:31:57:
31:91:1e:8f:5d:95:be:32:03:55:dc:34:db:78:c7:bc:07:81:
89:b4:a1:5b:01:1e:74:05:09:55:d0:7d:5b:f9:2e:34:9a:9a:
9d:8d:cf:44:df:99:cb:2d:31:82:20:77:8b:a1:9e:c0:99:7e:
36:26:1a:f7:fe:09:bf:96:6a:f6:0e:ee:71:30:59:f6:f6:54:
4b:01:7e:23:b3:0e:46:b8:78:67:a1:ee:3a:3a:5f:fa:6e:02:
0c:f9:71:7b:03:4e:6b:00:93:7b:43:19:2a:15:a6:52:e3:40:
73:03:4d:f0:c8:0d:49:2a:0a:cb:45:dc:f0:c6:f0:b3:27:0a:
a5:b0:d7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:30 2024 by rpki-client on console-fra.rpki-client.org