Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/mgeOYsGzlIVsahGPQi9ljIGFC20.roa
File: mgeOYsGzlIVsahGPQi9ljIGFC20.roa (raw, json)
Hash identifier: 55THt4Q5gJNg6O61h1xjA5OE8TNEx3oumahlwMPZBMM=
Subject key identifier: 9A:07:8E:62:C1:B3:94:85:6C:6A:11:8F:42:2F:65:8C:81:85:0B:6D
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 0452B8F6
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/mgeOYsGzlIVsahGPQi9ljIGFC20.roa
Signing time: Mon 07 Mar 2022 21:27:43 +0000
ROA not before: Mon 07 Mar 2022 21:27:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201485
IP address blocks: 85.91.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72530166 (0x452b8f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Mar 7 21:27:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a078e62c1b394856c6a118f422f658c81850b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5c:db:49:4d:df:e4:8e:80:e5:c1:93:28:f1:
f1:4c:13:2f:e3:c2:7d:57:7e:60:90:2f:c8:d2:81:
63:93:75:50:2e:bd:6c:c2:90:94:9c:c2:e9:bc:cc:
df:e1:55:bb:5a:9d:7e:03:a1:21:24:1a:8e:31:15:
20:92:af:ef:49:09:b1:b8:33:c1:3c:72:95:f8:8d:
16:4b:9d:d0:73:be:9d:15:b0:79:37:dc:f6:86:13:
f7:f1:8d:c7:71:30:68:dc:d4:ff:f5:7e:84:dc:95:
90:a7:6d:20:59:83:6d:54:1c:86:55:6d:6a:bf:0f:
e8:57:9c:28:32:ce:11:83:78:12:cd:ea:69:1a:d2:
37:87:23:e4:95:4a:f4:82:9f:0c:64:16:95:ab:2f:
60:42:57:6c:73:35:9b:25:67:dc:54:33:c2:70:f2:
f0:bb:34:b3:59:7d:d9:58:ca:3d:8a:fc:32:16:69:
2a:1a:87:8d:0e:2f:f7:07:84:b6:bf:a7:ac:ae:b3:
98:a9:9f:ab:fc:79:39:5f:d8:4c:0c:d8:bc:8b:a0:
ce:7c:9b:be:52:ac:e1:a7:a8:55:b5:6e:50:62:3f:
fa:93:00:07:c5:e5:d0:11:0d:8b:57:e0:06:62:ad:
18:08:34:48:c9:96:0a:28:bf:1f:3c:03:35:95:f1:
ce:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:07:8E:62:C1:B3:94:85:6C:6A:11:8F:42:2F:65:8C:81:85:0B:6D
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/mgeOYsGzlIVsahGPQi9ljIGFC20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.105.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:3d:69:88:a8:54:59:3e:f0:0f:1c:1e:61:9e:4d:06:fe:91:
1d:8e:31:18:17:24:37:2f:a3:b1:d2:0b:bd:40:4e:a1:34:45:
e9:02:f2:8b:5a:5d:c1:a7:45:db:65:92:64:66:ed:2d:84:c1:
29:25:21:78:9a:60:1c:29:74:91:16:9f:71:a1:2e:e9:7c:c4:
89:91:e5:d9:30:8a:cd:10:ed:a8:31:be:0a:4f:e8:f5:9b:fb:
b2:38:3d:56:bb:f5:c1:3e:5a:10:bf:cc:d5:6d:85:d3:d2:73:
2b:4e:43:4b:7e:7b:e9:b8:bd:0d:43:67:d9:f7:f2:17:8d:6f:
bf:83:48:41:98:30:e9:c8:c7:35:de:1a:82:43:bf:25:bf:2f:
fd:e4:55:11:e8:f6:81:43:09:c0:da:5e:0d:72:b2:09:b3:b3:
f1:c8:19:69:b7:21:2b:7f:ff:2f:f0:cd:91:0a:7c:99:13:32:
33:7f:76:09:07:d1:44:31:cc:82:bd:d7:4b:3b:78:13:aa:2d:
48:c0:a8:a0:46:a3:3f:4e:35:89:7d:a1:83:09:f3:ab:82:63:
70:9d:56:a5:60:84:50:cd:e0:1c:8b:fd:b5:d1:db:f0:bf:e1:
ff:2e:96:8d:51:24:ac:f0:f0:04:6e:35:6e:1e:71:26:a6:24:
d5:a6:09:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:21 2024 by rpki-client on console-ams.rpki-client.org