Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/MiZ6S4ArTpjO7Mo0nlcYPzlQx_g.roa
File: MiZ6S4ArTpjO7Mo0nlcYPzlQx_g.roa (raw, json)
Hash identifier: vzdIuKarEmsDMaItN9UJ5LOjhlLbLvsuePWWAZFfFxQ=
Subject key identifier: 32:26:7A:4B:80:2B:4E:98:CE:EC:CA:34:9E:57:18:3F:39:50:C7:F8
Certificate issuer: /CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Certificate serial: 0184E21BE155F7B190070DAFD2400D180306
Authority key identifier: 9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/MiZ6S4ArTpjO7Mo0nlcYPzlQx_g.roa
Signing time: Mon 05 Dec 2022 11:46:28 +0000
ROA not before: Mon 05 Dec 2022 11:46:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39558
IP address blocks: 195.244.4.0/23 maxlen: 23
91.221.132.0/24 maxlen: 24
91.221.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:1b:e1:55:f7:b1:90:07:0d:af:d2:40:0d:18:03:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Validity
Not Before: Dec 5 11:46:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32267a4b802b4e98ceecca349e57183f3950c7f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e8:b4:b2:d8:34:ec:73:e0:fe:26:a3:fb:3c:
f4:11:5f:b6:d8:21:99:36:b7:2c:14:91:07:bb:5e:
82:29:87:87:cf:2c:f3:fb:28:2a:48:63:c5:b0:d8:
de:51:ae:1e:15:6f:c2:d4:35:3e:f9:e5:e9:60:75:
c1:68:8e:bc:91:15:34:7f:0a:16:84:cb:8a:85:3f:
40:63:1f:a6:31:6a:8b:02:ba:60:ed:f7:77:93:fb:
6e:81:41:9f:03:9e:4a:47:f4:39:2c:99:e4:10:9b:
ae:4f:be:06:b1:5b:fc:6e:c1:1c:d7:52:09:93:20:
e3:65:b1:53:66:86:b7:93:43:ac:81:2d:52:b0:b9:
35:94:89:0d:29:5d:1a:e5:a1:1a:b8:4e:04:76:7c:
a6:ea:66:44:81:39:3e:50:0c:64:e6:49:04:fe:80:
53:5a:75:9d:81:eb:a3:d2:30:45:75:02:08:67:c2:
fe:d7:2f:c0:98:6f:58:50:9c:6b:48:04:6d:18:09:
e2:c8:d6:17:5c:14:c6:85:15:bd:af:59:10:dc:ac:
28:f5:d0:77:0d:37:e3:fb:ac:64:c1:f8:5f:33:39:
36:e4:b7:d7:b7:93:9f:43:de:32:9c:15:c4:ec:55:
bc:9a:31:49:0f:4f:5f:82:1b:72:4d:b5:fd:aa:b9:
d6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:26:7A:4B:80:2B:4E:98:CE:EC:CA:34:9E:57:18:3F:39:50:C7:F8
X509v3 Authority Key Identifier:
keyid:9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/MiZ6S4ArTpjO7Mo0nlcYPzlQx_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/nozX1qQQV1C_iXWn0LlnlMHv5iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.132.0/23
195.244.4.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:b1:85:44:ce:18:c3:7f:3c:6e:34:50:f6:2d:24:1d:68:71:
60:d9:f9:24:ed:37:ef:d8:c1:07:ab:05:9a:17:c5:41:06:6b:
03:c0:53:2b:b5:61:55:4c:0a:6c:a9:33:5c:70:56:56:59:dd:
8f:1e:92:79:59:d9:6d:d6:05:f0:4f:4f:fe:04:71:6b:e2:1d:
1a:6d:e2:91:31:54:24:b9:92:5e:1c:86:7d:23:9e:7e:27:b9:
96:bd:c9:4e:64:fe:39:25:7e:34:53:a7:23:97:a6:7a:f6:fa:
8e:2f:b8:42:55:8d:b0:6d:98:05:3f:a2:c0:c2:1b:9a:8c:ac:
b4:dd:ff:93:b9:3b:30:79:99:e9:38:07:58:eb:8a:d5:d8:19:
f5:9e:e5:69:19:d1:9a:7a:b5:43:fc:d0:67:e3:7b:23:97:a4:
e9:7f:42:2d:e4:f8:7c:a1:5e:5b:61:31:eb:c9:d4:32:24:dd:
8e:b0:f4:30:c5:9e:2c:74:35:f7:6d:59:b9:d3:81:c0:60:d5:
17:40:ba:05:8e:4d:7c:97:7a:18:7c:37:e0:b2:37:b1:a1:2e:
b9:ca:d6:19:f8:20:54:0e:eb:68:c6:d8:54:be:19:25:5e:e7:
24:a9:e7:34:76:cb:48:81:c5:fc:c0:20:74:b0:da:7b:4e:a3:
f8:6e:ca:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net