Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/mroZ0rNQi8XjnJ_L0umMHU3XfW8.roa
File: mroZ0rNQi8XjnJ_L0umMHU3XfW8.roa (raw, json)
Hash identifier: /1l5Esmdq6G7vgtW1LCOSB77k2o4i1Z178ICfR7O/XM=
Subject key identifier: 9A:BA:19:D2:B3:50:8B:C5:E3:9C:9F:CB:D2:E9:8C:1D:4D:D7:7D:6F
Certificate issuer: /CN=59bff5f16ecb268b1597da1b3ad30af40fce7717
Certificate serial: 082BB014
Authority key identifier: 59:BF:F5:F1:6E:CB:26:8B:15:97:DA:1B:3A:D3:0A:F4:0F:CE:77:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wb_18W7LJosVl9obOtMK9A_Odxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/mroZ0rNQi8XjnJ_L0umMHU3XfW8.roa
Signing time: Sat 01 Jan 2022 11:02:13 +0000
ROA not before: Sat 01 Jan 2022 11:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54113
IP address blocks: 185.199.109.0/24 maxlen: 24
185.199.108.0/22 maxlen: 22
185.199.110.0/24 maxlen: 24
185.199.111.0/24 maxlen: 24
185.199.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137080852 (0x82bb014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59bff5f16ecb268b1597da1b3ad30af40fce7717
Validity
Not Before: Jan 1 11:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9aba19d2b3508bc5e39c9fcbd2e98c1d4dd77d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:27:3a:a0:02:20:60:0e:e4:83:ec:ce:b4:f1:
f2:af:41:23:6a:f7:27:a0:39:32:9b:d6:88:26:a6:
d4:c1:cb:f5:36:d7:ba:a7:2c:23:f7:3e:79:f7:ea:
46:65:d7:eb:17:3e:0f:3f:9f:d4:17:b4:b4:26:9c:
ed:36:9c:7f:9b:d4:20:4c:d1:d1:2d:e1:3c:70:57:
25:96:4b:bb:7e:32:84:15:f7:3e:9e:14:1e:da:da:
97:94:ff:bf:73:ef:80:26:65:c3:ac:16:d3:89:ab:
71:29:90:45:5b:d1:cf:44:2f:0d:5d:e4:01:a2:54:
b0:ed:f3:91:74:72:b9:0e:77:9d:b8:e3:7b:ae:86:
6f:17:fb:30:99:b7:e7:61:ea:d2:22:67:a9:31:8b:
bf:e2:14:ee:f4:f8:d9:db:41:65:c9:a7:e1:55:f0:
3e:4b:b5:d8:83:61:b3:1a:dc:31:8f:cc:6e:b9:3e:
71:8a:c7:b5:d6:23:e4:63:19:5e:47:0b:36:fa:4c:
5b:ec:c8:80:b0:26:e8:c8:2e:3a:7b:9f:6d:c3:e0:
ec:30:e9:be:bc:b4:2b:7f:9d:91:4e:5a:dc:0d:7f:
a7:c1:eb:fd:54:2d:61:bd:b5:f2:f9:47:ce:c6:1d:
f3:db:2e:cd:fb:a7:ca:31:c2:b2:cb:e6:a0:7c:76:
59:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BA:19:D2:B3:50:8B:C5:E3:9C:9F:CB:D2:E9:8C:1D:4D:D7:7D:6F
X509v3 Authority Key Identifier:
keyid:59:BF:F5:F1:6E:CB:26:8B:15:97:DA:1B:3A:D3:0A:F4:0F:CE:77:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wb_18W7LJosVl9obOtMK9A_Odxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/mroZ0rNQi8XjnJ_L0umMHU3XfW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7d5480-60a7-4193-bf34-bd849b04d10a/1/Wb_18W7LJosVl9obOtMK9A_Odxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.108.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:d1:32:fa:e0:cc:4e:4f:1f:1a:a3:5e:a7:31:18:4f:99:62:
1b:11:ae:db:60:1b:ed:c5:e2:12:f2:6e:c9:22:01:95:73:b4:
f1:9d:9b:b5:a7:b5:3d:e9:23:d3:2e:15:b4:cd:7e:d5:83:1d:
ad:e9:05:8f:ba:86:56:eb:a3:fc:9b:89:62:e0:d8:0b:fb:fe:
c2:e7:59:33:fe:f0:f7:0c:b8:21:1a:67:c5:d7:2f:77:45:2d:
5e:88:3b:25:0b:12:09:30:70:e3:a9:fa:a1:74:3f:b7:cf:95:
51:6f:e9:ef:29:df:bf:75:a5:4d:6a:0e:31:3a:9d:83:60:91:
43:cd:58:26:f9:be:49:cf:2d:29:98:f2:48:f4:e7:8e:93:ee:
44:00:42:69:15:e8:89:5c:a2:98:6d:78:a0:27:2d:dd:e9:fe:
96:17:ca:9c:fa:59:d5:5f:44:b7:7b:4e:b2:fd:33:79:e7:8e:
20:3b:de:a3:71:08:fa:fa:0f:36:e3:ac:d9:eb:66:49:3a:a4:
15:ba:e8:83:2c:1f:1d:ed:8f:1b:1a:7f:08:44:4e:57:8f:e6:
e5:2c:33:31:e4:dc:e8:bf:36:f6:a2:64:ad:57:c7:4d:30:df:
ac:6c:6c:91:00:25:28:c6:4a:33:52:e1:80:da:6b:76:d4:ce:
e3:43:75:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:01 2024 by rpki-client on console-ams.rpki-client.org