Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/MM0HoiWHf-rFFmi4aFtHS4DDo3E.roa
File: MM0HoiWHf-rFFmi4aFtHS4DDo3E.roa (raw, json)
Hash identifier: +RIW7GLr6lI1HB3Ig8fXlsDkVFf8vsXFsWc1b4leOCk=
Subject key identifier: 30:CD:07:A2:25:87:7F:EA:C5:16:68:B8:68:5B:47:4B:80:C3:A3:71
Certificate issuer: /CN=4f4da09fbbe90fb79f0f08b207f835f0f0da29fe
Certificate serial: 167CF308
Authority key identifier: 4F:4D:A0:9F:BB:E9:0F:B7:9F:0F:08:B2:07:F8:35:F0:F0:DA:29:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T02gn7vpD7efDwiyB_g18PDaKf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/MM0HoiWHf-rFFmi4aFtHS4DDo3E.roa
Signing time: Sat 01 Jan 2022 01:59:00 +0000
ROA not before: Sat 01 Jan 2022 01:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197066
IP address blocks: 185.75.152.0/22 maxlen: 22
2a03:4ae0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 377287432 (0x167cf308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4da09fbbe90fb79f0f08b207f835f0f0da29fe
Validity
Not Before: Jan 1 01:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30cd07a225877feac51668b8685b474b80c3a371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e8:48:5c:4e:37:83:7f:c3:d5:6e:57:fa:c9:
ef:68:45:96:9c:7b:dd:5c:b1:b7:01:98:5d:31:1f:
8f:ab:45:47:c4:61:09:10:14:60:e4:14:08:21:2e:
30:0d:c3:c0:5a:9f:37:53:e8:5c:cc:ef:ec:9d:78:
1c:43:76:6d:3a:c0:db:75:58:fe:a6:a0:12:59:1c:
4a:02:73:74:9b:e2:30:17:4b:1f:85:81:ae:10:ba:
d4:0f:7f:bc:1a:fa:c6:b8:7c:21:1f:cc:98:85:1f:
57:47:d1:be:4d:7f:4d:01:3b:3f:bf:d7:4d:e7:a4:
59:d1:24:81:cf:c6:f2:c2:af:11:2c:ea:a4:0d:79:
64:35:35:2e:fb:a4:16:19:79:c0:47:9f:7f:91:ea:
a8:e9:05:6e:77:11:34:4e:a9:70:c2:d3:06:c1:43:
65:c6:00:82:5a:29:b1:88:59:2c:f3:fc:67:28:c5:
ff:e1:80:a8:2a:a9:e6:14:a4:50:9b:54:c4:e5:dc:
0f:69:68:a0:c7:c8:8f:75:2d:24:7a:23:ef:a7:4a:
c5:8b:fc:e6:cf:6b:f5:2f:82:c6:2b:46:3e:cd:c1:
92:32:af:5d:a2:53:84:8c:5e:66:72:eb:2d:57:64:
ca:1e:eb:c3:e6:e6:16:57:95:bc:e1:67:dc:f4:a6:
8b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CD:07:A2:25:87:7F:EA:C5:16:68:B8:68:5B:47:4B:80:C3:A3:71
X509v3 Authority Key Identifier:
keyid:4F:4D:A0:9F:BB:E9:0F:B7:9F:0F:08:B2:07:F8:35:F0:F0:DA:29:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T02gn7vpD7efDwiyB_g18PDaKf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/MM0HoiWHf-rFFmi4aFtHS4DDo3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/66bd3a-5121-490d-8c92-6ea94a961d4c/1/T02gn7vpD7efDwiyB_g18PDaKf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.152.0/22
IPv6:
2a03:4ae0::/32
Signature Algorithm: sha256WithRSAEncryption
18:64:16:7e:51:b6:20:b2:70:89:b5:3f:47:30:46:35:a8:31:
a7:29:70:8f:75:cd:56:39:7a:39:e5:8b:8f:3c:c0:a4:fb:11:
74:68:47:32:c4:1e:13:ee:cc:5c:25:ff:1c:9b:7d:f6:e4:85:
ab:60:06:0d:53:4e:c8:b8:3a:31:a6:cc:28:eb:06:68:af:b4:
c3:0b:e0:f8:06:9f:9f:68:ab:77:85:f8:67:3e:01:95:b6:8d:
e7:a0:98:ec:f0:ad:d5:f5:82:7f:44:10:a0:e4:8c:e9:07:81:
e2:a5:08:7f:a1:39:98:88:9b:41:41:6d:5b:fc:1c:7f:e5:7e:
2f:18:bc:61:df:a0:e7:27:f7:65:d4:6d:2a:d9:9d:ed:f9:44:
fc:cc:52:d4:e2:64:40:e2:cb:36:ae:56:a1:6a:7d:3d:02:0a:
f2:ef:93:9b:ca:3c:1a:21:89:7f:a4:8c:2d:0f:bf:4b:c4:03:
4a:5e:26:a6:40:04:44:92:a2:01:ef:9d:c6:09:b2:03:cc:4a:
91:32:af:9e:d1:e7:a0:e9:8f:ac:5d:31:e0:68:ed:ee:a1:50:
9b:f8:62:75:3d:63:e4:6d:85:b9:81:50:70:41:48:6d:69:a2:
02:42:fd:97:67:14:23:9e:34:e6:6c:ce:eb:51:8f:38:34:56:
2b:66:ff:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:16 2024 by rpki-client on console-fra.rpki-client.org