Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0e2714-9dd6-4fe8-ab24-94415690ddfd/1/MVne9xnbFo1haYfIqkj_jm7v07w.roa
File: MVne9xnbFo1haYfIqkj_jm7v07w.roa (raw, json)
Hash identifier: hM3yDNjJpPps5X8S9UtMLFApL+SkzSjllA/9wl4GvCI=
Subject key identifier: 31:59:DE:F7:19:DB:16:8D:61:69:87:C8:AA:48:FF:8E:6E:EF:D3:BC
Certificate issuer: /CN=53529924b233ac563c08e0c313e29213fd969669
Certificate serial: 0859952A
Authority key identifier: 53:52:99:24:B2:33:AC:56:3C:08:E0:C3:13:E2:92:13:FD:96:96:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1KZJLIzrFY8CODDE-KSE_2Wlmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0e2714-9dd6-4fe8-ab24-94415690ddfd/1/MVne9xnbFo1haYfIqkj_jm7v07w.roa
Signing time: Sat 01 Jan 2022 12:54:42 +0000
ROA not before: Sat 01 Jan 2022 12:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5603
IP address blocks: 37.18.224.0/20 maxlen: 24
37.18.224.0/22 maxlen: 24
37.18.232.0/21 maxlen: 21
37.18.230.0/23 maxlen: 23
37.18.228.0/23 maxlen: 23
185.58.182.0/23 maxlen: 23
185.58.180.0/22 maxlen: 24
185.58.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140088618 (0x859952a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53529924b233ac563c08e0c313e29213fd969669
Validity
Not Before: Jan 1 12:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3159def719db168d616987c8aa48ff8e6eefd3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:20:3d:62:94:66:93:5b:13:8c:84:4a:bf:ae:
8a:17:9e:bc:17:b1:ff:4b:02:b5:df:21:b7:60:6a:
79:fb:e7:b9:72:87:b3:2b:c1:6b:05:cf:b8:5e:e6:
ed:27:19:c2:3e:a8:e1:83:46:ac:8c:69:24:ab:ff:
10:96:5e:2d:3b:ed:69:f3:5e:7c:39:16:f4:f4:84:
42:fb:26:c9:6d:23:1e:59:a1:16:a0:a9:b1:f3:b6:
09:06:4f:5a:63:f8:f2:f7:0c:b7:85:5a:c1:d8:20:
8f:ba:8b:b2:15:fe:c6:86:31:91:76:f5:85:a4:d7:
a4:3e:9b:48:c2:2f:b8:e6:9e:47:54:bd:c8:92:bd:
fc:74:45:d4:fd:17:9f:d9:55:fb:01:67:e1:8f:cd:
31:f3:f0:04:1d:d9:dd:6d:1b:be:53:40:50:5d:f5:
7b:13:21:d7:de:58:5e:20:1e:62:1d:a7:ca:24:a6:
80:b0:b3:9f:6b:9d:9a:44:ff:6c:4f:bd:ac:ca:1c:
6a:ce:a8:08:87:32:0e:49:32:df:e0:ee:89:76:99:
2c:a7:b1:86:d2:a8:80:a9:70:6d:58:98:19:15:74:
89:8e:ad:e2:30:dd:a2:0e:6c:30:54:44:bf:d5:e3:
88:c2:54:72:2c:4a:45:7c:20:d1:01:c2:8e:ed:dc:
83:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:59:DE:F7:19:DB:16:8D:61:69:87:C8:AA:48:FF:8E:6E:EF:D3:BC
X509v3 Authority Key Identifier:
keyid:53:52:99:24:B2:33:AC:56:3C:08:E0:C3:13:E2:92:13:FD:96:96:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1KZJLIzrFY8CODDE-KSE_2Wlmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0e2714-9dd6-4fe8-ab24-94415690ddfd/1/MVne9xnbFo1haYfIqkj_jm7v07w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0e2714-9dd6-4fe8-ab24-94415690ddfd/1/U1KZJLIzrFY8CODDE-KSE_2Wlmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.224.0/20
185.58.180.0/22
Signature Algorithm: sha256WithRSAEncryption
33:27:2c:a4:29:e4:f8:9a:ce:1a:5d:6d:68:90:4d:6b:78:8c:
b5:46:b0:01:ff:52:1c:c6:a7:25:75:59:b0:75:97:13:a2:c6:
61:d8:43:ad:f2:a2:64:d9:83:53:4d:74:28:9a:6b:71:2b:b8:
c5:4b:ec:8e:7f:00:8f:18:f6:21:08:9a:a6:95:58:01:ac:d2:
44:81:cd:9c:e7:99:b9:43:4c:41:6e:1e:b4:17:aa:8b:d0:fb:
86:40:c0:57:97:47:8a:12:c5:43:1e:3a:a0:b9:b1:4d:33:ef:
07:32:a9:7f:82:f0:42:0e:fc:f7:15:49:c9:36:b8:2d:af:85:
12:4e:13:4f:fc:65:92:e6:14:b2:2c:cf:51:79:72:1c:72:8e:
8c:29:62:6c:ff:f6:36:70:42:84:ed:67:d5:2a:66:09:f6:63:
f3:a1:0c:62:c5:c1:a7:70:19:98:d8:7a:9d:07:be:4d:f0:36:
35:dc:bd:38:3b:c0:36:6f:df:b0:75:ba:05:55:c4:26:6c:e3:
0b:fc:e5:9d:a0:55:ad:0c:58:55:36:c3:ee:9e:0a:ee:de:97:
b3:2f:63:70:43:49:74:d3:13:45:c9:fd:fe:01:11:f1:47:6e:
0b:cf:8b:82:5b:5f:bf:87:c0:1e:ab:b8:6f:ff:d3:78:47:fa:
d1:df:de:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:26 2024 by rpki-client on console-ams.rpki-client.org