Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/M2HfL8U_l7L_pJidf6skOVpHP50.roa
File: M2HfL8U_l7L_pJidf6skOVpHP50.roa (raw, json)
Hash identifier: +oMF6eov+TGUJ4EEu07izqd77Uc931ii/qjIFO4Bv7A=
Subject key identifier: 33:61:DF:2F:C5:3F:97:B2:FF:A4:98:9D:7F:AB:24:39:5A:47:3F:9D
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0B9FB361
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/M2HfL8U_l7L_pJidf6skOVpHP50.roa
Signing time: Sat 01 Jan 2022 05:51:47 +0000
ROA not before: Sat 01 Jan 2022 05:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 194.64.160.0/20 maxlen: 22
194.233.32.0/20 maxlen: 22
194.195.192.0/20 maxlen: 22
195.179.80.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195015521 (0xb9fb361)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 1 05:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3361df2fc53f97b2ffa4989d7fab24395a473f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:68:ca:d7:54:b0:6b:30:b4:40:11:93:1e:
e9:11:e4:41:e1:cb:a9:82:a3:2b:cc:6e:c2:40:01:
c8:23:58:cb:34:7f:c5:a6:21:c3:df:cb:08:0b:65:
7a:13:c5:91:df:38:46:d4:05:63:96:63:5c:fb:3b:
60:5b:cb:a8:6e:7b:c1:08:79:d0:a8:98:cd:bc:ae:
fb:ea:0f:75:a9:9a:ae:3e:32:25:06:59:7e:74:e7:
f5:b2:b7:c7:60:c4:a9:60:91:15:10:56:ad:af:0d:
96:86:3a:20:4a:d4:d7:d2:37:b7:3f:69:5e:d2:53:
5b:4f:44:b3:aa:7b:44:5c:1b:b2:1b:3b:44:14:86:
af:20:ea:a2:16:41:99:cd:42:0f:ec:22:39:f6:c3:
65:c8:53:e6:5e:b2:c0:99:21:47:5a:97:53:f3:4e:
fc:63:0f:55:c0:81:cf:53:9c:16:d7:36:2d:e0:50:
36:d0:59:f8:45:ea:f1:6f:60:3a:d1:ad:0d:25:fc:
1b:34:48:20:ec:d2:87:56:43:29:54:11:dc:14:90:
de:c3:88:12:f6:9e:8e:d8:43:d1:ff:44:a2:70:e1:
9d:28:40:0d:45:0f:0f:4c:63:4f:d3:43:d4:b5:fc:
b7:d6:4a:ee:c4:92:7c:67:30:e1:e8:06:14:eb:9a:
f7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:61:DF:2F:C5:3F:97:B2:FF:A4:98:9D:7F:AB:24:39:5A:47:3F:9D
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/M2HfL8U_l7L_pJidf6skOVpHP50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.64.160.0/20
194.195.192.0/20
194.233.32.0/20
195.179.80.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:8f:12:4f:13:bf:eb:b4:aa:7f:6c:80:fc:e5:6b:db:cc:88:
ea:74:f1:d0:0c:80:b7:99:ee:6a:77:19:a7:96:ec:62:12:c6:
42:17:dd:aa:ae:0f:7a:7d:de:9e:9b:01:58:35:b9:99:a9:ad:
37:db:ca:86:11:38:3c:4c:c0:ad:94:f3:dd:dd:28:bb:f0:88:
60:9c:80:3c:f9:0f:2f:84:85:c3:05:94:91:b8:bb:71:d9:61:
d2:09:70:b2:1d:fb:a4:83:9d:56:f0:b0:18:94:c4:9b:2e:7a:
2a:87:2b:3d:7a:65:c5:fc:36:e3:1a:2a:1c:92:6f:1d:f5:4c:
b2:43:54:01:6d:68:ee:48:84:a6:ba:f8:25:8d:55:f2:98:46:
2d:31:52:e9:ca:75:aa:e6:66:60:ec:36:76:25:1c:fe:5e:5e:
47:30:11:01:9f:a6:93:27:a2:f1:b8:e3:3e:a2:4c:28:bc:70:
cf:9a:16:d4:82:31:fb:3e:1f:ff:c1:d1:ae:51:fe:82:96:99:
66:dd:43:d0:76:ab:93:2c:7e:1d:08:3a:19:2d:04:93:d2:e2:
a4:86:32:f1:46:6e:bd:5f:78:d6:5e:91:8a:66:ce:c6:49:85:
74:ef:ee:5d:56:33:30:8f:17:c1:aa:47:e3:8b:b7:41:c0:9b:
b9:16:35:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org