Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/MNeFPA8IWUfhIThjNw06ta49iUE.roa
File: MNeFPA8IWUfhIThjNw06ta49iUE.roa (raw, json)
Hash identifier: kcbxQpNUMAK/z1uVK7PFmh9+VlAHFOHRm8CAMI0WC7E=
Subject key identifier: 30:D7:85:3C:0F:08:59:47:E1:21:38:63:37:0D:3A:B5:AE:3D:89:41
Certificate issuer: /CN=ffa41d3413ddacc91fe0f4426a828681cf30e0fc
Certificate serial: 01310A
Authority key identifier: FF:A4:1D:34:13:DD:AC:C9:1F:E0:F4:42:6A:82:86:81:CF:30:E0:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_6QdNBPdrMkf4PRCaoKGgc8w4Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/MNeFPA8IWUfhIThjNw06ta49iUE.roa
Signing time: Tue 26 Apr 2022 22:25:37 +0000
ROA not before: Tue 26 Apr 2022 22:25:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39224
IP address blocks: 185.253.252.0/22 maxlen: 22
2a05:fec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78090 (0x1310a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffa41d3413ddacc91fe0f4426a828681cf30e0fc
Validity
Not Before: Apr 26 22:25:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30d7853c0f085947e1213863370d3ab5ae3d8941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d6:73:74:8c:95:14:b0:25:81:6b:25:a5:1b:
a7:af:d4:1f:b0:03:f3:4a:2e:ba:b0:95:58:d3:e2:
be:da:86:f6:e9:5f:3d:bf:3f:12:d6:b6:1e:85:c8:
aa:3c:b8:0b:09:7f:28:0b:f7:89:7d:ac:e7:ee:93:
52:20:27:d8:88:57:86:49:bd:52:cd:27:42:a5:b0:
3e:63:89:0d:a6:be:a2:d8:a3:2f:1c:e6:54:d9:5a:
d5:55:80:16:f4:43:16:2b:cc:86:12:27:77:dd:5a:
58:d9:02:56:c9:17:f6:23:66:09:8a:e6:51:56:db:
65:e3:1f:f4:c4:2c:59:9e:1b:b8:e3:3e:ee:4e:35:
df:65:14:59:8e:25:10:2d:55:4f:5a:d4:8c:67:5a:
c4:0e:64:ac:4e:fa:8f:54:b3:9f:82:e9:df:5f:4d:
52:c2:e2:58:84:71:1b:d5:60:d7:21:5e:fa:b5:7a:
e5:af:01:f2:5b:07:ee:a8:4a:f9:a0:9d:11:f3:85:
d2:e1:28:c4:6e:13:fd:4b:2c:dd:3a:1f:d7:eb:1a:
bd:95:27:8f:cc:e3:a6:27:cc:73:2b:77:e0:a6:a1:
f8:a5:7f:04:db:0d:a0:46:a8:f1:63:fd:f4:5c:ee:
8d:1a:b4:0d:b1:f4:70:da:61:5c:94:8b:45:c7:46:
f3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D7:85:3C:0F:08:59:47:E1:21:38:63:37:0D:3A:B5:AE:3D:89:41
X509v3 Authority Key Identifier:
keyid:FF:A4:1D:34:13:DD:AC:C9:1F:E0:F4:42:6A:82:86:81:CF:30:E0:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_6QdNBPdrMkf4PRCaoKGgc8w4Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/MNeFPA8IWUfhIThjNw06ta49iUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/82d824-4e02-46d4-854a-bd0512ce4905/1/_6QdNBPdrMkf4PRCaoKGgc8w4Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.252.0/22
IPv6:
2a05:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
bc:c9:42:d9:e8:17:2f:62:0b:84:33:2e:ad:b8:a8:78:72:c5:
7f:47:0b:f5:db:52:64:51:42:3b:0b:02:16:5a:92:fd:34:0f:
5e:b9:e2:4c:cd:cf:20:16:95:b7:6b:c3:dd:ea:fd:57:db:fe:
df:7a:d8:00:57:db:b6:67:eb:84:8b:11:ca:81:fd:ae:65:e3:
9a:6f:1a:ef:1e:1a:04:dc:16:a4:52:f4:14:1c:80:1b:5c:9b:
c5:21:4b:c7:3b:29:34:46:a7:63:c3:05:25:30:cc:85:fa:c4:
52:ca:b8:7c:51:71:05:87:19:d6:ab:18:f0:73:fe:b8:d2:b0:
9a:1f:1f:08:c3:52:8f:b1:6f:d3:02:2a:47:de:7f:c5:a6:a6:
2d:8c:40:b4:39:b1:b5:55:4a:47:ad:c4:ee:3d:25:bd:e5:39:
63:bb:98:26:3e:48:bf:77:07:26:21:b0:2b:e6:ae:27:33:73:
77:0b:52:2a:1a:3f:e9:2b:2d:17:eb:a5:0d:59:54:d4:a9:5b:
f7:b7:56:a2:b0:53:70:0e:86:e1:3c:43:dc:2d:0c:58:8e:9a:
4a:2d:62:e9:8b:ee:43:96:45:b0:22:15:42:63:d1:b4:ea:00:
cd:30:e5:bb:3a:a0:75:ca:8d:b4:e2:90:40:0e:9c:58:25:1b:
0d:80:8d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:31 2024 by rpki-client on console-ams.rpki-client.org