Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/MgSY4PXi5PIuP37qssLXB9kE8YM.roa
File: MgSY4PXi5PIuP37qssLXB9kE8YM.roa (raw, json)
Hash identifier: CY76CugDcvd+hhaefDotCnocIoNa6m85VZ9ZN/iU/e8=
Subject key identifier: 32:04:98:E0:F5:E2:E4:F2:2E:3F:7E:EA:B2:C2:D7:07:D9:04:F1:83
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 08113EF2
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/MgSY4PXi5PIuP37qssLXB9kE8YM.roa
Signing time: Sat 01 Jan 2022 16:03:20 +0000
ROA not before: Sat 01 Jan 2022 16:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 213.185.86.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135347954 (0x8113ef2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 16:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=320498e0f5e2e4f22e3f7eeab2c2d707d904f183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e6:aa:89:4e:ac:b9:c9:0f:26:f7:4c:c3:be:
f4:12:b8:9c:8b:0b:5b:67:2d:e1:80:1c:80:9e:82:
93:c7:25:17:f8:90:12:f6:d4:c1:e4:aa:35:33:07:
6f:23:97:fa:04:d1:4f:b5:cf:b2:7e:33:76:dd:22:
12:b7:59:69:d9:95:92:7a:4b:f7:7d:0b:e5:1b:48:
dc:d5:ff:f8:1e:fa:4c:87:a4:74:c3:ca:d9:c8:d0:
73:94:90:a1:20:93:f4:ab:db:14:04:4d:23:c0:27:
d9:d0:dc:eb:12:39:d4:58:72:16:1e:7f:31:16:bc:
b2:4b:73:d7:05:49:f7:14:03:0c:00:d2:7b:c1:3e:
40:ca:ce:09:94:d5:18:45:9b:76:80:c8:d3:d6:3c:
c4:a6:2f:cd:0e:c2:5f:37:d6:12:1b:a1:cd:94:d5:
89:c7:f6:d5:b9:79:b9:28:74:78:45:8b:d3:b9:b8:
ea:ec:78:fa:c5:14:8e:b4:82:20:90:14:51:ab:50:
61:fa:7e:41:93:b1:7f:e3:60:e6:44:b3:cf:72:34:
85:6d:e7:90:5e:6b:a2:f3:3e:c9:f9:4d:e3:88:53:
24:1f:17:c1:dd:7c:38:d1:fc:74:02:f0:08:45:dd:
9a:86:ca:dd:86:63:33:1a:67:03:63:5b:b7:08:9d:
39:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:04:98:E0:F5:E2:E4:F2:2E:3F:7E:EA:B2:C2:D7:07:D9:04:F1:83
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/MgSY4PXi5PIuP37qssLXB9kE8YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.185.86.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:4e:0d:22:aa:08:35:15:4a:e2:57:7d:35:e9:43:c6:31:45:
a2:85:3f:36:53:fc:f3:c3:94:c1:db:b6:6a:1f:52:c6:b4:6d:
41:6a:27:ec:4d:d7:c7:ad:93:3b:4f:44:db:9d:ea:86:7d:e1:
de:39:ba:b3:2f:76:96:46:63:0e:13:7b:d2:28:c4:ab:d7:a3:
6d:d2:49:a9:1d:c1:1e:4b:34:b4:97:ab:da:85:16:d0:90:8b:
f3:30:34:d9:e5:04:44:eb:80:c6:58:09:93:6b:8e:e6:9d:f2:
5f:8c:77:d5:88:a6:f2:4a:04:ba:f2:f2:9e:45:9a:36:9e:fd:
01:23:c4:72:2f:d3:ff:cc:0f:11:fe:7f:b4:73:6f:04:c1:ad:
9e:57:1a:61:83:39:22:de:83:28:87:80:09:4f:bf:cf:6e:bd:
8b:7d:60:c8:17:38:78:90:1b:e6:83:ab:1c:37:0b:1a:00:f4:
89:30:e7:70:17:a0:c3:b9:25:a5:0a:9d:6d:dd:f9:b2:79:01:
5d:71:83:29:d4:7c:a3:be:5f:6c:b0:b8:7d:aa:14:47:fe:26:
37:07:27:fb:39:e7:ed:51:99:f9:df:cf:ad:0e:be:e3:69:8d:
08:fc:98:06:39:fc:4c:5b:1c:5b:72:4c:38:2f:57:3d:b2:cd:
4b:16:47:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org