Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/MirSWI5dLqX7PxPF7keCA3VpPmA.roa
File: MirSWI5dLqX7PxPF7keCA3VpPmA.roa (raw, json)
Hash identifier: QkIyHYE1xV7OSeP1lEaXRJ2fIi4jRqfMdi7jWQcMuAc=
Subject key identifier: 32:2A:D2:58:8E:5D:2E:A5:FB:3F:13:C5:EE:47:82:03:75:69:3E:60
Certificate issuer: /CN=1659eb6040193df0681350905e639d0e58d5f9df
Certificate serial: 0626CE10
Authority key identifier: 16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/MirSWI5dLqX7PxPF7keCA3VpPmA.roa
Signing time: Wed 15 Jun 2022 17:23:44 +0000
ROA not before: Wed 15 Jun 2022 17:23:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 185.154.80.0/22 maxlen: 22
2a05:f500:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103206416 (0x626ce10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1659eb6040193df0681350905e639d0e58d5f9df
Validity
Not Before: Jun 15 17:23:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=322ad2588e5d2ea5fb3f13c5ee47820375693e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3b:3f:fb:be:8c:f8:94:f3:06:0b:41:11:2b:
c8:2e:be:50:3b:d0:82:af:76:59:8f:39:c9:65:78:
4a:39:f0:cf:ac:d4:be:fd:b4:f9:d6:71:ff:d0:48:
95:4f:37:56:13:a2:2b:85:a9:cf:d3:b1:36:af:21:
e7:ca:24:1b:bf:2e:d2:08:f5:b2:d4:e6:34:fe:08:
31:ed:5f:b7:4f:2d:b8:b8:1d:68:b7:df:1f:31:d8:
5b:f4:2a:90:a8:a7:ee:a5:46:fb:2a:83:a8:7f:52:
e6:38:1d:cb:5d:1a:c7:0b:23:b3:76:fc:ae:c8:d1:
9b:39:e0:f3:34:ae:a5:26:11:86:65:68:e8:17:b5:
f5:5d:88:86:a4:79:73:aa:06:36:86:47:e4:7c:51:
a8:13:82:6d:d9:b1:62:8a:f1:6e:05:6d:fc:3e:e9:
0e:3c:00:53:35:a9:d5:d0:13:87:2d:8c:71:b6:9d:
40:55:cc:a8:37:76:3a:36:80:c3:5f:17:a7:7b:7f:
72:c3:c3:6c:fc:25:55:26:21:61:72:24:30:f0:9b:
d9:dc:21:ee:05:8c:7a:18:7c:c0:16:e3:c6:d7:9a:
13:b6:ea:c6:e4:18:cc:6e:5d:f2:82:75:23:d7:19:
1b:c0:4d:56:4e:d1:ac:f4:c9:b1:ba:a5:0a:fd:70:
73:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:2A:D2:58:8E:5D:2E:A5:FB:3F:13:C5:EE:47:82:03:75:69:3E:60
X509v3 Authority Key Identifier:
keyid:16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/MirSWI5dLqX7PxPF7keCA3VpPmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/FlnrYEAZPfBoE1CQXmOdDljV-d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.80.0/22
IPv6:
2a05:f500:2::/48
Signature Algorithm: sha256WithRSAEncryption
bc:7f:56:99:92:44:66:3c:0b:cd:06:9b:fa:e1:89:47:fa:22:
2a:b4:e2:6b:a3:80:2a:57:c2:01:c7:81:d7:01:93:ae:3d:bc:
42:1d:a9:a1:22:42:d5:85:93:3c:af:34:11:ee:18:70:5d:90:
89:3e:00:d6:e1:a4:74:8e:f9:be:b3:a0:d8:77:a5:58:ed:31:
32:7e:a4:08:b8:67:d1:f4:68:6a:39:6d:cd:b5:9d:97:47:fb:
a0:6f:55:43:fd:3c:8f:87:21:9e:55:a5:c0:4a:b9:40:19:a1:
dc:26:71:89:05:8b:66:7d:12:a3:20:32:26:5f:86:2b:40:51:
22:6b:a7:f1:64:67:da:93:fb:12:66:5b:dc:1f:3f:8d:9f:a1:
51:c8:b1:4b:e3:8f:9e:03:dd:5b:25:7f:cb:61:cc:f8:3b:b1:
75:d9:88:b3:a7:5c:fa:e0:35:20:d0:8f:df:96:c2:c5:ac:d8:
e0:9d:9d:d4:61:59:80:fc:38:b4:dc:d7:3f:e2:64:45:37:c1:
a6:82:67:50:41:5e:8a:c3:6c:b1:6b:3c:f2:81:42:7a:e7:ac:
b2:62:7b:dc:ea:ca:e3:95:4b:5c:fb:ef:e2:67:d6:3b:39:f3:
d8:31:d1:cb:cb:30:12:90:b5:03:12:8a:ef:94:26:f5:4b:54:
bf:96:97:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:16 2024 by rpki-client on console-fra.rpki-client.org