Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/MhNAXK8FpgXE2_CJ2GQaeQ5D854.roa
File: MhNAXK8FpgXE2_CJ2GQaeQ5D854.roa (raw, json)
Hash identifier: 1K1aetxem34kOiR0UxcaLquTDasxSGxkJT3v4OS6aJU=
Subject key identifier: 32:13:40:5C:AF:05:A6:05:C4:DB:F0:89:D8:64:1A:79:0E:43:F3:9E
Certificate issuer: /CN=b031e2ca824ca8d5562406a7021ae3c13a1425d8
Certificate serial: 121961FE
Authority key identifier: B0:31:E2:CA:82:4C:A8:D5:56:24:06:A7:02:1A:E3:C1:3A:14:25:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDHiyoJMqNVWJAanAhrjwToUJdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/MhNAXK8FpgXE2_CJ2GQaeQ5D854.roa
Signing time: Thu 12 May 2022 12:37:02 +0000
ROA not before: Thu 12 May 2022 12:37:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 185.72.140.0/24 maxlen: 24
185.72.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 303653374 (0x121961fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b031e2ca824ca8d5562406a7021ae3c13a1425d8
Validity
Not Before: May 12 12:37:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3213405caf05a605c4dbf089d8641a790e43f39e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:21:11:6d:70:66:ce:a0:96:20:0c:b4:e6:1a:
ee:10:28:df:78:b7:30:2e:6c:02:d9:a7:80:d1:3c:
fd:0f:41:c9:3a:a0:74:0e:d5:e0:72:e2:04:d7:4c:
a8:73:0d:07:01:b8:6a:eb:cf:c5:bb:97:7d:05:12:
68:43:9c:fc:0c:41:e9:bc:5c:25:da:f3:06:15:98:
10:4f:fa:eb:1a:68:79:06:6e:b5:bf:c1:19:54:b1:
13:11:c8:49:55:0e:a2:c9:18:df:cf:2f:09:05:fd:
b8:db:51:f6:0a:74:8a:5c:ee:71:fe:27:99:ee:de:
4b:cc:c5:94:4b:37:9e:85:0b:22:79:c2:df:af:ee:
83:2a:93:d9:b0:f6:5b:7c:60:b1:86:31:6e:8a:aa:
aa:43:a6:04:5b:90:4a:6d:cc:54:79:3c:ef:26:ca:
8b:45:e4:5d:fd:55:3c:ef:c0:1b:80:f1:08:ea:f4:
93:e5:b9:e2:3e:36:03:bd:12:f4:b5:74:a1:8d:f4:
a4:f2:34:f5:d9:27:ae:32:82:89:ef:0c:3e:a2:7c:
68:05:a3:59:e6:59:f0:9c:07:39:67:22:cb:ac:f1:
38:be:be:10:d5:14:7b:07:ad:49:75:ae:a7:15:3f:
aa:33:fe:ff:ce:a4:03:0a:a0:99:ea:e3:ab:d9:71:
0b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:13:40:5C:AF:05:A6:05:C4:DB:F0:89:D8:64:1A:79:0E:43:F3:9E
X509v3 Authority Key Identifier:
keyid:B0:31:E2:CA:82:4C:A8:D5:56:24:06:A7:02:1A:E3:C1:3A:14:25:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDHiyoJMqNVWJAanAhrjwToUJdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/MhNAXK8FpgXE2_CJ2GQaeQ5D854.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/sDHiyoJMqNVWJAanAhrjwToUJdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.140.0/23
Signature Algorithm: sha256WithRSAEncryption
96:2c:3a:07:b3:fa:b4:a2:bf:2b:27:e8:6e:8c:23:b5:e3:21:
cc:43:c9:32:2f:99:f9:f4:1a:95:e0:3a:1b:40:41:c3:ee:cc:
46:5e:00:b3:20:ab:44:da:17:b8:54:d9:b2:ea:a5:5c:75:78:
8b:0f:13:16:61:97:36:e3:7d:ca:a1:58:e7:21:ec:8b:53:7b:
b5:b7:4e:04:3d:e3:38:df:68:6e:08:53:66:d4:8a:c5:6a:4c:
d8:13:34:cf:38:58:a5:49:7f:cf:45:68:3e:66:2e:70:db:6c:
64:28:57:9e:fd:40:11:cd:27:2e:b6:42:37:70:2f:2c:ce:cb:
91:de:49:7b:5d:72:44:a4:52:ca:13:76:5d:d5:03:b6:ff:fb:
b3:f6:01:50:b4:ba:67:0f:d0:15:5b:4e:64:7f:56:c0:c2:54:
37:62:36:28:1b:f8:4f:7a:ec:2f:68:74:3b:9f:92:3c:3a:25:
ba:8c:0e:b4:e4:ed:a8:21:c0:fc:a7:28:73:16:08:d3:a6:3b:
79:8f:3b:78:a5:b3:86:0b:ad:6a:8a:3d:7b:b2:e9:6e:31:4c:
91:29:eb:43:1f:56:87:6b:17:c5:c6:00:45:ab:6d:d6:21:30:
21:f9:b1:f9:de:a4:fa:29:a2:28:0e:4a:2d:9c:e1:70:89:35:
be:74:50:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:24 2024 by rpki-client on console-fra.rpki-client.org