Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d808c5-4064-4e8c-8766-49fa58fedff3/1/mFaZnqjxgjux-RPn-RofSQJhXzU.roa
File: mFaZnqjxgjux-RPn-RofSQJhXzU.roa (raw, json)
Hash identifier: TywHZUMekOahgG1CBROcjJ1UsPQT+lHqgoybN2d7W8M=
Subject key identifier: 98:56:99:9E:A8:F1:82:3B:B1:F9:13:E7:F9:1A:1F:49:02:61:5F:35
Certificate issuer: /CN=8390e1042badd88e96e639eaa0ad023287ea507f
Certificate serial: 07EBC186
Authority key identifier: 83:90:E1:04:2B:AD:D8:8E:96:E6:39:EA:A0:AD:02:32:87:EA:50:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5DhBCut2I6W5jnqoK0CMofqUH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d808c5-4064-4e8c-8766-49fa58fedff3/1/mFaZnqjxgjux-RPn-RofSQJhXzU.roa
Signing time: Sat 01 Jan 2022 11:57:48 +0000
ROA not before: Sat 01 Jan 2022 11:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 185.163.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132891014 (0x7ebc186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8390e1042badd88e96e639eaa0ad023287ea507f
Validity
Not Before: Jan 1 11:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9856999ea8f1823bb1f913e7f91a1f4902615f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:79:ec:9b:57:c2:bf:a5:2d:41:de:0f:2f:69:
53:48:7c:cb:de:26:78:e9:25:d4:63:4a:9c:cc:b0:
2a:cd:d4:5f:5c:33:ae:ec:1f:5a:7a:98:38:3f:f3:
e0:f8:de:77:90:1f:f3:ef:59:c5:24:52:b6:f9:20:
4b:a6:79:17:34:70:eb:5d:d6:b4:c3:49:39:59:9a:
c8:ba:7e:b6:b2:28:e8:47:9a:f2:e3:2c:44:62:eb:
48:68:76:40:25:f4:03:09:28:99:45:a6:92:e9:92:
03:3f:36:48:bd:dd:a2:03:ef:63:19:c3:83:5a:bc:
65:c1:3e:03:1f:5a:b7:f6:d0:35:88:d7:d9:ed:1a:
42:f2:d1:26:39:8a:9b:e8:37:9b:b0:33:9c:0b:d5:
3b:5b:fe:41:68:7e:9b:be:5e:57:c5:24:01:2e:96:
db:14:f5:38:fd:f7:eb:6d:07:9f:e9:49:76:ce:fb:
55:69:b7:a5:12:4e:8f:7b:a1:21:c0:f6:02:ef:b1:
6d:8f:7c:a9:1c:1d:50:48:28:04:4a:4c:73:cb:b3:
2d:ce:9e:0d:19:69:ba:fd:d7:09:5d:d8:9e:b3:4e:
89:be:b0:6a:fa:17:e9:c8:65:74:77:6a:cc:eb:14:
cb:7f:41:8e:37:69:61:09:5b:73:3e:d2:7f:c4:e7:
d8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:56:99:9E:A8:F1:82:3B:B1:F9:13:E7:F9:1A:1F:49:02:61:5F:35
X509v3 Authority Key Identifier:
keyid:83:90:E1:04:2B:AD:D8:8E:96:E6:39:EA:A0:AD:02:32:87:EA:50:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5DhBCut2I6W5jnqoK0CMofqUH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d808c5-4064-4e8c-8766-49fa58fedff3/1/mFaZnqjxgjux-RPn-RofSQJhXzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d808c5-4064-4e8c-8766-49fa58fedff3/1/g5DhBCut2I6W5jnqoK0CMofqUH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.196.0/24
Signature Algorithm: sha256WithRSAEncryption
79:7a:e0:bd:ef:5f:66:c2:48:56:32:28:fc:96:9a:6a:53:97:
4a:b2:7b:bb:17:fd:49:f7:e8:a0:ef:13:2a:83:4c:a5:2e:0f:
30:06:3a:a6:27:68:98:76:c9:f6:13:62:5d:dd:92:20:b0:5a:
35:f1:00:69:b1:ca:0e:0d:e4:a0:a2:46:2d:2c:c9:75:ae:f1:
69:28:2c:b4:71:5c:51:0a:c8:35:1e:7d:75:a7:09:c4:d4:8f:
db:29:22:86:fb:1b:55:80:b4:79:7a:a8:fc:3c:d6:9a:83:f4:
55:0c:dd:3f:d0:62:ee:91:56:9a:ae:ed:18:8f:c7:1a:7f:f0:
60:15:9c:2b:a3:7b:ae:09:d6:01:9d:40:fb:c6:90:da:d3:b4:
82:35:a0:8b:c0:a5:bd:fb:5a:73:5a:c6:48:e2:fe:65:1e:ed:
44:f3:42:77:d1:6c:3e:d8:08:1b:32:b6:13:88:99:ab:aa:0a:
32:7c:6a:cd:14:4b:06:0d:20:48:4c:cf:8c:9b:61:d7:ab:c2:
9a:4b:b4:a6:3d:5c:80:20:2f:90:d8:65:19:34:00:85:52:13:
84:a1:25:8f:59:a4:80:35:22:0d:2a:75:dd:f1:1b:3c:63:a6:
a9:18:2b:8b:35:8c:6e:27:25:34:a3:92:4c:f0:a8:c7:96:1e:
fd:27:9e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:43 2024 by rpki-client on console-fra.rpki-client.org