Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/MdtbZiab5fwRCCW_wkMDmQyAV9s.roa
File: MdtbZiab5fwRCCW_wkMDmQyAV9s.roa (raw, json)
Hash identifier: nURd+l9hvbJAb+Ie0VC+oNM31aLXsFJjB42WSWxfh38=
Subject key identifier: 31:DB:5B:66:26:9B:E5:FC:11:08:25:BF:C2:43:03:99:0C:80:57:DB
Certificate issuer: /CN=ded8582b0243863c572ce25786ccb36ff795b22e
Certificate serial: 010828
Authority key identifier: DE:D8:58:2B:02:43:86:3C:57:2C:E2:57:86:CC:B3:6F:F7:95:B2:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3thYKwJDhjxXLOJXhsyzb_eVsi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/MdtbZiab5fwRCCW_wkMDmQyAV9s.roa
Signing time: Wed 30 Mar 2022 21:29:49 +0000
ROA not before: Wed 30 Mar 2022 21:29:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207123
IP address blocks: 45.142.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67624 (0x10828)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded8582b0243863c572ce25786ccb36ff795b22e
Validity
Not Before: Mar 30 21:29:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31db5b66269be5fc110825bfc24303990c8057db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ee:ba:c5:fa:e3:b5:27:87:b2:fe:25:e2:b5:
e8:eb:7c:66:40:25:fb:57:c4:a7:04:41:9b:05:5e:
bc:81:3b:2f:e7:8b:bb:88:56:28:e5:ae:e2:ae:c1:
68:3f:0f:db:d1:bb:3a:1b:3f:5c:6a:5a:0f:3f:ef:
7a:66:b6:e0:df:5e:76:ef:ed:bc:b0:73:64:0e:9a:
8f:d4:37:27:78:6b:e5:30:2c:ee:6c:42:a7:13:b7:
c8:6e:3d:36:c6:87:cb:f4:42:89:be:d1:be:31:6e:
74:ef:c8:0e:f5:aa:4b:fc:95:2f:34:d6:5e:a1:f2:
8a:18:7e:a2:ee:39:d4:9f:e3:a1:b3:a0:2a:0e:f4:
40:b6:7c:45:8b:e4:b3:c0:eb:4b:21:a6:ab:62:0d:
d6:23:e4:01:6d:9e:e8:64:9d:1b:11:87:ea:2a:41:
1f:76:e3:96:01:15:1a:fa:30:90:11:1f:0f:23:4e:
e6:5c:35:c0:2e:a6:b6:3e:71:54:e5:67:ee:3a:d3:
bd:34:ea:96:ef:c2:06:5f:f7:9b:4d:b8:c8:7a:6d:
91:59:f7:ca:5c:02:95:19:7b:c2:a9:6d:2a:77:ad:
89:0b:2d:ce:26:14:03:af:c7:ac:3d:7e:e9:12:5d:
c9:7e:67:80:44:cd:1a:b2:bf:60:85:1f:55:ec:7d:
67:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DB:5B:66:26:9B:E5:FC:11:08:25:BF:C2:43:03:99:0C:80:57:DB
X509v3 Authority Key Identifier:
keyid:DE:D8:58:2B:02:43:86:3C:57:2C:E2:57:86:CC:B3:6F:F7:95:B2:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3thYKwJDhjxXLOJXhsyzb_eVsi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/MdtbZiab5fwRCCW_wkMDmQyAV9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/3thYKwJDhjxXLOJXhsyzb_eVsi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.89.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:04:e4:16:08:1b:50:d5:dd:ab:96:51:2a:2c:3b:f5:72:45:
27:b7:6c:5f:45:5a:d7:b5:4d:0d:64:2f:9d:e4:45:3e:d2:6b:
4f:40:0f:46:76:4f:f1:a4:82:7d:d3:f7:c9:95:37:22:36:5f:
3f:21:cd:45:dc:78:f0:15:00:dc:28:9d:b8:f0:50:e5:a0:bf:
13:7c:b8:57:87:80:28:2b:f0:2c:2a:52:4c:e9:39:58:42:60:
7a:c1:49:0d:15:5f:f1:3f:45:29:cb:36:ba:a6:92:b2:6f:77:
bb:f8:b3:48:f9:6c:16:f1:81:93:13:d8:0e:ef:6b:3f:74:8e:
09:a5:65:31:74:ed:ce:98:fb:89:d2:68:43:a3:ed:97:9c:b6:
03:82:db:09:d8:95:c6:8c:5c:17:44:7b:9f:c6:9c:1d:68:97:
41:49:a8:50:23:28:40:80:60:12:97:c0:48:44:b8:c0:60:d2:
e8:50:8f:63:0a:41:5a:a8:07:e1:b4:63:3e:2e:24:d7:89:54:
2d:77:5a:2a:0d:ef:c3:3e:23:bd:b2:af:d5:ed:ec:c1:59:6a:
a2:38:73:8a:94:27:06:4a:b7:e8:bf:df:70:e7:40:39:2f:86:
e3:c0:91:d9:be:f8:2e:34:56:fa:6e:a8:07:a7:60:32:20:b3:
97:34:ca:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:49 2023 by rpki-client on console-ams.rpki-client.org