Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/1-MFsHOU2ksxo-sau_PkbveSCnpE.roa
File: 1-MFsHOU2ksxo-sau_PkbveSCnpE.roa (raw, json)
Hash identifier: DLUuZuSzf3SAmvFBKlO2gKEQH4l1ipLmMjd3KISGVrA=
Subject key identifier: F8:C1:6C:1C:E5:36:92:CC:68:FA:C6:AE:FC:F9:1B:BD:E4:82:9E:91
Certificate issuer: /CN=667ae5ed7ca8bd5f8eff30b0e47ab4df93828ff1
Certificate serial: 16F4C5A9
Authority key identifier: 66:7A:E5:ED:7C:A8:BD:5F:8E:FF:30:B0:E4:7A:B4:DF:93:82:8F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Znrl7XyovV-O_zCw5Hq035OCj_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/1-MFsHOU2ksxo-sau_PkbveSCnpE.roa
Signing time: Sat 01 Jan 2022 12:00:58 +0000
ROA not before: Sat 01 Jan 2022 12:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206182
IP address blocks: 185.77.51.0/24 maxlen: 24
185.77.50.0/24 maxlen: 24
185.77.48.0/22 maxlen: 22
185.77.49.0/24 maxlen: 24
185.77.48.0/24 maxlen: 24
2a03:52e0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385140137 (0x16f4c5a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=667ae5ed7ca8bd5f8eff30b0e47ab4df93828ff1
Validity
Not Before: Jan 1 12:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8c16c1ce53692cc68fac6aefcf91bbde4829e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:76:ab:02:43:dc:c5:21:18:67:cf:cc:65:d7:
99:85:8c:2c:81:77:2a:b5:d8:b3:30:11:31:06:9b:
dc:4f:4b:4b:0d:80:dc:9f:82:5e:36:63:09:e5:9d:
ec:9f:a0:5d:5d:fa:01:8b:88:24:46:27:d0:5a:96:
73:f4:d9:d8:84:ee:04:0c:ba:3c:18:de:7d:07:88:
d9:ea:65:78:70:6e:94:99:be:1d:85:62:07:b5:69:
f8:9b:71:d8:b4:f7:b2:80:d4:7a:73:1b:ad:69:ee:
ca:67:a9:51:8c:9f:dd:71:87:19:ee:1b:4f:5c:3e:
5e:f3:d1:c8:39:ea:84:e1:6b:1d:d8:dd:e8:e1:8b:
36:e5:30:81:ea:41:c6:9c:16:62:c4:47:6e:e1:23:
a9:9d:80:94:ac:2b:be:e2:65:e0:eb:2b:e7:99:ed:
d0:df:5b:74:75:9b:b6:4a:e6:50:90:09:1a:26:0d:
e0:a3:40:e9:c4:29:88:91:3b:37:11:b5:5b:0c:d3:
bf:81:b5:47:52:0d:b1:92:62:93:91:76:bf:6d:c5:
56:7a:6f:0d:16:03:2d:77:e5:0b:ad:52:14:b9:f0:
b9:8c:cb:b7:c4:16:6c:15:75:2b:32:2c:51:6c:33:
5c:b9:22:b1:62:ae:d0:b6:fc:3c:8f:40:32:6b:b1:
c9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C1:6C:1C:E5:36:92:CC:68:FA:C6:AE:FC:F9:1B:BD:E4:82:9E:91
X509v3 Authority Key Identifier:
keyid:66:7A:E5:ED:7C:A8:BD:5F:8E:FF:30:B0:E4:7A:B4:DF:93:82:8F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Znrl7XyovV-O_zCw5Hq035OCj_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/1-MFsHOU2ksxo-sau_PkbveSCnpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/Znrl7XyovV-O_zCw5Hq035OCj_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.48.0/22
IPv6:
2a03:52e0::/29
Signature Algorithm: sha256WithRSAEncryption
42:12:db:f5:f4:a0:a2:b5:db:d4:3b:fa:b3:34:88:84:0c:14:
8b:62:2f:35:82:ec:2a:43:b5:1c:24:8b:2a:52:c7:ab:ba:5f:
c4:f6:fa:f1:6d:cc:61:91:52:04:d1:ca:02:09:95:28:66:55:
c5:9d:72:d9:27:dd:c8:76:6c:90:c0:b1:f6:1c:58:3c:a1:2a:
5e:fb:f4:dc:61:d0:85:76:68:2f:00:9f:64:2b:ba:15:f8:e6:
98:93:5c:04:e4:a8:55:86:3c:5c:fd:76:62:c0:eb:ef:eb:fd:
84:26:31:83:68:a5:3d:5c:7e:eb:e8:36:f6:b5:4f:6c:8c:15:
ab:67:92:82:28:56:df:c0:88:f0:c7:fe:c4:e8:1a:cc:b2:c9:
9e:f2:19:12:f5:79:5f:c1:1d:6f:01:d5:af:8b:14:bd:ee:8e:
92:2c:c6:35:eb:77:4d:b2:20:20:18:7c:01:cf:bd:64:c7:01:
05:1a:90:3a:e9:13:fb:5d:6c:7c:57:b5:31:d5:c8:45:2a:54:
99:3b:66:f5:18:a2:3d:92:c6:c6:27:f7:d7:cb:d7:b6:77:f5:
9a:12:6a:f9:78:62:88:bc:e3:8a:5c:c1:fa:f8:ad:92:66:cb:
fa:23:c4:9f:bf:a4:74:46:e5:57:6e:6c:a9:24:fa:19:f2:d0:
d4:93:32:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:34 2024 by rpki-client on console-ams.rpki-client.org