Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/efa002-00b5-476b-85cf-e9e388812752/1/MFhboB4kTmLaRLf_UX8csnfdaHE.roa
File: MFhboB4kTmLaRLf_UX8csnfdaHE.roa (raw, json)
Hash identifier: cPCcqXdmN2dZ3wmMz5MqGxcAvKtc5sYbQcioHOR9sPg=
Subject key identifier: 30:58:5B:A0:1E:24:4E:62:DA:44:B7:FF:51:7F:1C:B2:77:DD:68:71
Certificate issuer: /CN=2f4c9dfe7b1a72a551bba15a999a6c19333fff96
Certificate serial: 03C69593
Authority key identifier: 2F:4C:9D:FE:7B:1A:72:A5:51:BB:A1:5A:99:9A:6C:19:33:3F:FF:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L0yd_nsacqVRu6FamZpsGTM__5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/efa002-00b5-476b-85cf-e9e388812752/1/MFhboB4kTmLaRLf_UX8csnfdaHE.roa
Signing time: Sat 01 Jan 2022 06:59:26 +0000
ROA not before: Sat 01 Jan 2022 06:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202629
IP address blocks: 185.138.180.0/22 maxlen: 22
2a07:b40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63346067 (0x3c69593)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f4c9dfe7b1a72a551bba15a999a6c19333fff96
Validity
Not Before: Jan 1 06:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30585ba01e244e62da44b7ff517f1cb277dd6871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:51:ce:df:8d:91:65:f2:5c:b5:21:5e:a1:0e:
7c:10:1a:05:e6:de:20:39:98:c5:c8:a5:27:0b:31:
58:8e:00:a0:de:87:ed:8f:c0:2d:d3:53:f5:de:0e:
ff:8f:35:dc:71:44:16:25:0e:63:9e:25:12:ee:87:
02:ca:07:33:90:bb:d2:bf:10:24:bb:36:2f:2b:04:
07:e0:c8:0a:71:4b:6b:29:52:20:aa:ab:76:f0:eb:
db:50:98:b8:10:c3:86:eb:4c:8a:29:49:48:ee:eb:
38:23:38:b3:00:ea:c8:35:bd:de:ee:dc:8b:a4:3c:
89:4d:f3:ed:61:59:2f:cd:e1:a4:e5:b9:08:6d:61:
83:6a:a8:c9:45:a1:4e:ab:13:41:af:d7:be:74:7a:
cf:19:b3:a2:d4:fa:eb:ac:c3:b8:7c:12:06:26:6d:
de:ec:a9:23:58:ab:8f:fb:fb:a6:fd:e9:c0:af:31:
1e:85:01:0e:b8:00:6d:02:c7:fc:c4:62:d6:53:8d:
3c:a2:bf:ea:aa:f7:59:78:02:5e:88:25:46:50:93:
41:34:ec:92:88:4a:77:08:32:5b:2c:e8:a8:3f:17:
f5:de:13:90:6c:b9:55:0c:f1:88:5f:67:58:69:6c:
d4:7e:01:ff:84:70:b9:21:b4:c2:2a:8d:8c:6a:2e:
94:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:58:5B:A0:1E:24:4E:62:DA:44:B7:FF:51:7F:1C:B2:77:DD:68:71
X509v3 Authority Key Identifier:
keyid:2F:4C:9D:FE:7B:1A:72:A5:51:BB:A1:5A:99:9A:6C:19:33:3F:FF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L0yd_nsacqVRu6FamZpsGTM__5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/efa002-00b5-476b-85cf-e9e388812752/1/MFhboB4kTmLaRLf_UX8csnfdaHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/efa002-00b5-476b-85cf-e9e388812752/1/L0yd_nsacqVRu6FamZpsGTM__5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.180.0/22
IPv6:
2a07:b40::/29
Signature Algorithm: sha256WithRSAEncryption
2d:f5:41:89:d1:52:e4:4f:0c:1a:a3:12:f7:0b:a3:3f:2c:eb:
91:3f:08:b6:c5:21:e7:33:43:9a:1d:f3:a9:f1:ef:47:06:1b:
50:85:43:40:50:af:fd:ac:ff:17:7b:5e:8e:1c:0e:b3:62:4a:
8d:6b:cd:97:fd:e5:d7:c6:1f:75:69:ac:b5:dc:86:12:0d:d3:
a8:69:b7:f4:3c:3f:92:f4:2d:c9:8e:c2:d7:8e:83:8b:cd:07:
d1:6c:9c:38:28:6b:ad:d8:f2:1f:79:c5:18:14:9e:77:a3:03:
7e:5f:e1:ab:6b:81:d5:70:20:15:63:ad:e4:87:8b:eb:4f:0a:
47:7a:73:a0:b3:f6:18:5a:60:83:46:82:2d:38:c2:35:53:28:
53:b5:c4:c3:c8:f7:eb:2d:8a:df:0b:10:d5:2d:43:e3:fb:d7:
4f:5f:d5:06:e3:86:f3:56:c9:ed:2c:da:de:98:f7:11:08:e7:
14:bf:b7:36:56:db:d9:43:e4:48:1b:c4:20:dc:a6:35:23:61:
3e:8b:83:0f:59:c3:12:a9:8a:f8:9f:00:bb:1e:a1:2b:43:ac:
67:e6:df:93:e0:2b:00:a4:2d:98:06:e2:4f:26:19:bc:9e:84:
bf:31:b9:f6:7b:b2:e5:7d:e3:b7:7c:95:a9:83:0c:05:74:4d:
74:3f:e4:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:22 2024 by rpki-client on console-ams.rpki-client.org