Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/889667-c5e2-4341-b5eb-455a12bc8302/1/mcwUYMghWDCxp3EC3HucvebvNuY.roa
File: mcwUYMghWDCxp3EC3HucvebvNuY.roa (raw, json)
Hash identifier: eugSFMHkbuG8LekZQy/QwZNOIQuhwFD2FCyk+ZJYoOQ=
Subject key identifier: 99:CC:14:60:C8:21:58:30:B1:A7:71:02:DC:7B:9C:BD:E6:EF:36:E6
Certificate issuer: /CN=233adc97f9826262007f46286591830df58fc55e
Certificate serial: 01853387F455B3432731E04476FEF3A7E643
Authority key identifier: 23:3A:DC:97:F9:82:62:62:00:7F:46:28:65:91:83:0D:F5:8F:C5:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Izrcl_mCYmIAf0YoZZGDDfWPxV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/889667-c5e2-4341-b5eb-455a12bc8302/1/mcwUYMghWDCxp3EC3HucvebvNuY.roa
Signing time: Wed 21 Dec 2022 07:13:45 +0000
ROA not before: Wed 21 Dec 2022 07:13:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29585
IP address blocks: 185.102.2.0/24 maxlen: 24
185.102.3.0/24 maxlen: 24
185.102.0.0/24 maxlen: 24
185.102.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:33:87:f4:55:b3:43:27:31:e0:44:76:fe:f3:a7:e6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=233adc97f9826262007f46286591830df58fc55e
Validity
Not Before: Dec 21 07:13:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99cc1460c8215830b1a77102dc7b9cbde6ef36e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:41:8a:50:0a:fc:5a:56:e5:a2:15:58:49:f6:
3a:11:85:dc:ff:6d:15:6d:f0:58:43:06:c8:9c:6f:
d2:db:db:3c:fd:33:69:d4:37:34:b1:72:b7:bc:f6:
40:44:2d:9a:0b:55:7f:bd:9a:83:13:e4:d2:df:91:
cf:c4:dd:3b:2e:ae:b7:d3:cf:f3:d8:49:fd:5e:04:
f0:a1:4b:a2:92:d2:06:a9:64:08:08:a8:40:96:54:
32:1a:b7:1d:38:67:91:fb:75:7b:47:c9:d1:45:07:
e4:f1:33:2d:08:46:8d:b0:f6:ec:c0:88:d8:6b:1c:
5c:30:06:64:35:6f:25:47:8f:18:66:25:32:5d:7a:
91:96:7e:84:b0:c3:c3:d5:f0:41:00:26:02:70:6c:
6b:e6:56:5c:9c:08:45:37:c7:a0:20:74:a2:68:3c:
93:e5:c7:62:b7:20:3f:39:18:58:c2:13:52:d5:d5:
a6:24:65:25:86:49:b4:55:ef:31:23:e6:5f:12:e7:
ed:db:60:fc:7e:4a:b7:b4:74:0b:c3:9b:d6:79:ac:
6e:c0:66:43:20:f8:16:01:84:f6:7f:d9:e3:36:50:
cd:00:a6:21:79:ac:35:5c:e1:d3:8c:f5:57:bf:32:
16:44:37:df:4b:81:69:c2:37:6c:30:7a:ad:f0:27:
f4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CC:14:60:C8:21:58:30:B1:A7:71:02:DC:7B:9C:BD:E6:EF:36:E6
X509v3 Authority Key Identifier:
keyid:23:3A:DC:97:F9:82:62:62:00:7F:46:28:65:91:83:0D:F5:8F:C5:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Izrcl_mCYmIAf0YoZZGDDfWPxV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/889667-c5e2-4341-b5eb-455a12bc8302/1/mcwUYMghWDCxp3EC3HucvebvNuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/889667-c5e2-4341-b5eb-455a12bc8302/1/Izrcl_mCYmIAf0YoZZGDDfWPxV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.0.0/22
Signature Algorithm: sha256WithRSAEncryption
00:14:56:c5:70:f5:11:86:b2:e0:99:db:4a:67:af:70:af:87:
c0:68:00:a4:f5:ca:78:20:9e:bf:fd:df:7c:64:df:e3:e3:c1:
09:c2:c3:1b:df:20:82:07:d4:e8:4a:e9:10:ad:ab:a7:e8:c0:
1e:0c:a1:60:33:4e:8d:5c:a2:69:87:0c:f9:f2:0c:33:7e:c9:
21:0b:58:d9:b6:e5:64:2d:28:fc:04:1b:63:8f:36:d3:a8:38:
f2:ec:81:06:e4:02:d9:9c:38:26:74:69:38:1d:84:ca:69:b3:
99:7a:80:45:cf:09:b8:1b:06:b0:bb:ab:e8:42:61:be:e1:eb:
6c:ba:35:5f:19:04:94:ac:ff:19:34:4d:f1:07:dc:0c:63:09:
54:e5:29:4c:09:16:53:39:1b:fe:3a:4f:91:c3:25:04:c4:fd:
0e:9f:40:b5:fb:28:ae:1c:d1:14:fb:16:81:98:81:23:2d:05:
b5:a6:e5:26:66:7b:14:36:3c:e2:eb:18:f8:f1:c3:9c:65:fe:
00:f8:61:5b:e1:e8:59:0b:90:6c:7d:59:a3:8d:0d:ed:5a:0f:
c6:12:5c:d2:7c:39:fd:23:cb:a2:e5:1c:63:3f:c8:23:3e:f4:
5b:f8:f2:7d:22:96:d2:3a:94:01:66:dd:f3:0f:44:9d:d9:73:
fa:e3:ac:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:51 2024 by rpki-client on console-fra.rpki-client.org