Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/MocmpLO6hHL1ObC6q5fk75vNRM8.roa
File: MocmpLO6hHL1ObC6q5fk75vNRM8.roa (raw, json)
Hash identifier: dgpTVg4bJvoRduGc6KFimLTdJZg6HKhugxoaRqbVXIo=
Subject key identifier: 32:87:26:A4:B3:BA:84:72:F5:39:B0:BA:AB:97:E4:EF:9B:CD:44:CF
Certificate issuer: /CN=1795ac843cd8ba90188f7313652bb561299b296f
Certificate serial: 0AB051E0
Authority key identifier: 17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/MocmpLO6hHL1ObC6q5fk75vNRM8.roa
Signing time: Sat 01 Jan 2022 07:57:18 +0000
ROA not before: Sat 01 Jan 2022 07:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28727
IP address blocks: 185.59.240.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179327456 (0xab051e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1795ac843cd8ba90188f7313652bb561299b296f
Validity
Not Before: Jan 1 07:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=328726a4b3ba8472f539b0baab97e4ef9bcd44cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:47:8f:47:7f:42:d3:96:fc:f2:a0:9a:e2:69:
72:82:27:81:a3:45:39:0b:fc:a6:50:43:03:f4:e5:
55:1b:7f:62:ab:a7:66:dd:5b:c5:1c:b1:4f:ef:3b:
b0:76:3d:72:3b:a4:86:3f:45:70:ca:ae:64:c2:5a:
6d:83:ef:a1:00:08:50:35:bb:70:33:c8:6b:7f:97:
c2:c2:44:27:ca:48:4b:b9:23:b1:95:7b:05:ba:7f:
c7:df:eb:41:e7:4c:19:a4:79:7c:8e:c9:86:0c:ad:
b6:e2:be:1e:1f:7f:05:02:bf:8d:63:ec:cf:1b:a9:
9b:34:e1:73:15:ca:b4:11:a9:d4:b6:2c:81:e9:97:
14:8f:04:8f:72:05:2a:89:93:bd:df:1f:19:14:76:
a1:1e:7d:c5:9e:82:45:84:fa:4d:f0:4a:08:74:59:
78:03:3f:21:48:a7:cb:ed:56:8c:54:12:65:5f:ae:
5f:4a:a1:02:62:3e:b7:bc:eb:72:8d:68:1b:eb:c9:
f8:c3:14:b0:9e:69:4f:b3:6b:63:96:b8:29:c5:c5:
4b:98:07:2a:b3:14:c8:f4:f2:df:2d:99:5f:d7:6a:
e1:49:73:22:c7:7a:00:fa:a0:07:74:19:6c:86:f8:
6f:5a:84:fd:3f:a4:e6:37:cd:8d:40:69:c3:5f:e8:
a2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:87:26:A4:B3:BA:84:72:F5:39:B0:BA:AB:97:E4:EF:9B:CD:44:CF
X509v3 Authority Key Identifier:
keyid:17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/MocmpLO6hHL1ObC6q5fk75vNRM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/F5WshDzYupAYj3MTZSu1YSmbKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.240.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d3:71:d6:4a:97:ab:c9:ad:7a:4b:c8:0b:4f:24:87:4c:3e:
68:d1:97:63:cd:2f:d3:93:54:39:f4:a6:38:26:36:57:38:77:
34:b4:08:de:51:6d:4e:63:ac:38:69:01:15:5c:de:87:78:d0:
5a:95:57:aa:4e:51:63:00:80:3e:cb:f8:46:30:15:fe:ad:07:
49:d3:98:da:d7:13:a8:90:3b:46:1d:88:5e:dd:5b:93:b3:b2:
25:0f:25:e7:ec:33:9a:b5:07:a8:97:c8:77:e6:b1:42:2e:d8:
c5:a2:f5:0c:49:77:8c:7b:8e:91:48:e7:d4:83:02:1b:0d:4c:
5b:b2:e9:54:90:d5:d1:2f:ef:c5:3e:45:56:17:99:44:52:72:
0b:fe:cb:30:47:77:6e:43:db:07:0e:5c:dd:86:d7:b1:24:ad:
13:a7:ae:da:f7:a8:09:b3:fd:99:ab:f0:79:c3:24:73:a8:b1:
e0:4d:82:b2:b5:d7:62:ce:bf:72:b3:93:20:bd:b5:8f:4c:85:
46:7b:e9:25:99:4a:0a:1b:a3:83:86:1f:60:4f:6e:b6:3d:41:
cf:53:92:04:4b:6c:f1:18:dc:06:b7:7e:7c:e7:74:f0:a5:83:
cd:bf:a3:de:90:86:8c:18:fa:ac:64:d6:37:20:55:2a:94:5b:
00:39:90:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:19 2024 by rpki-client on console-fra.rpki-client.org