Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/794de3-39e6-4f2c-86f1-bc2c453c0ec8/1/MPmP8pXao45dghlDL5LY9MJEmDU.roa
File: MPmP8pXao45dghlDL5LY9MJEmDU.roa (raw, json)
Hash identifier: p6lzr/CTk2FtY1a8jCqiI+cD0TPYxCPGELwIolXlUAo=
Subject key identifier: 30:F9:8F:F2:95:DA:A3:8E:5D:82:19:43:2F:92:D8:F4:C2:44:98:35
Certificate issuer: /CN=27dd2479badcb40a24a436b1edcc361c3fa62afb
Certificate serial: 0D9754E2
Authority key identifier: 27:DD:24:79:BA:DC:B4:0A:24:A4:36:B1:ED:CC:36:1C:3F:A6:2A:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J90kebrctAokpDax7cw2HD-mKvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/794de3-39e6-4f2c-86f1-bc2c453c0ec8/1/MPmP8pXao45dghlDL5LY9MJEmDU.roa
Signing time: Sat 01 Jan 2022 09:53:36 +0000
ROA not before: Sat 01 Jan 2022 09:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60718
IP address blocks: 185.18.171.0/24 maxlen: 24
185.18.168.0/22 maxlen: 24
185.18.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228021474 (0xd9754e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27dd2479badcb40a24a436b1edcc361c3fa62afb
Validity
Not Before: Jan 1 09:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30f98ff295daa38e5d8219432f92d8f4c2449835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e9:b4:0f:c8:de:7a:4a:39:54:d6:bc:3a:25:
82:2f:74:db:43:64:f1:72:4f:76:f7:2e:c3:54:0e:
fc:14:6a:a9:a0:03:fe:2a:28:49:b5:24:fe:69:63:
22:b0:e1:ee:29:32:14:30:ff:b7:d6:e8:90:12:65:
cc:74:3b:f5:2b:99:42:16:ee:37:b2:3b:65:49:ec:
28:4b:6f:e8:af:5c:bc:24:75:8e:89:dd:38:8f:aa:
27:3d:ff:19:1d:e4:e0:ba:90:3c:4c:3d:d2:75:01:
ec:8a:8c:cc:79:6e:27:59:ba:8d:1f:34:ed:d9:44:
c1:51:9f:74:42:25:1c:f8:ad:aa:6b:16:c5:2a:4f:
05:c2:39:aa:07:b7:ad:79:11:a0:6f:35:fb:2d:35:
c2:73:9e:95:96:0c:0f:a6:68:29:08:6b:8d:de:0e:
72:b2:9f:3c:d6:cb:5f:78:01:41:e2:14:a8:03:07:
ef:2d:b9:f4:c3:44:e2:5f:3e:1a:e6:15:0d:69:27:
d8:6b:3c:67:7e:1e:b8:7e:b8:58:c2:d1:17:fa:86:
2d:a2:8b:68:20:88:4d:ca:38:e9:21:9d:ba:7f:95:
e2:e8:4d:d0:26:3d:78:6c:c5:46:54:06:39:69:d2:
64:ab:fe:4e:a7:d0:f0:9f:de:05:58:fc:4b:81:cf:
7c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F9:8F:F2:95:DA:A3:8E:5D:82:19:43:2F:92:D8:F4:C2:44:98:35
X509v3 Authority Key Identifier:
keyid:27:DD:24:79:BA:DC:B4:0A:24:A4:36:B1:ED:CC:36:1C:3F:A6:2A:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J90kebrctAokpDax7cw2HD-mKvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/794de3-39e6-4f2c-86f1-bc2c453c0ec8/1/MPmP8pXao45dghlDL5LY9MJEmDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/794de3-39e6-4f2c-86f1-bc2c453c0ec8/1/J90kebrctAokpDax7cw2HD-mKvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.168.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:27:5e:c1:9e:e4:da:52:41:4e:3c:1c:b7:02:18:67:e5:53:
0c:9c:1e:4d:b6:91:2d:6b:10:93:94:3c:d3:91:63:24:c1:39:
25:94:35:ec:f6:e9:64:83:21:38:28:b0:df:89:d3:71:b6:5d:
5a:50:f5:de:2b:a0:70:48:17:fa:79:f0:89:c5:04:43:ff:99:
a0:ce:64:b4:02:13:9f:3d:84:44:70:24:80:40:d2:e2:78:79:
2d:4a:b5:83:17:8d:0d:37:a1:00:a8:81:a7:37:08:71:d6:38:
ab:df:bd:e6:09:8a:dd:d8:87:d5:ce:c3:b9:7f:70:82:0a:53:
7a:f1:c6:7b:4b:14:67:6e:04:9c:db:ed:6a:3a:21:33:cb:01:
f1:6c:51:05:18:36:70:c4:3b:39:4d:5b:d2:f0:e1:f6:cb:5c:
bd:d5:36:f8:c9:de:db:bb:8f:8c:20:8c:ed:ed:2f:f6:f4:9e:
7b:43:27:27:05:2c:72:af:a7:d5:7d:56:1d:08:ba:08:12:06:
c7:d5:68:cc:d4:e4:e5:25:7f:5a:4b:bc:84:a7:35:9a:00:34:
0f:68:73:2c:c3:69:d7:06:04:9f:b7:5d:41:e0:3a:ad:91:d1:
c1:f9:fb:2d:e8:c9:86:28:81:02:7a:a4:7c:a6:25:08:d2:90:
66:bc:9d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:16 2024 by rpki-client on console-fra.rpki-client.org