Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/MWMBohnyV_DkaogI8YHYyzyK2X0.roa
File: MWMBohnyV_DkaogI8YHYyzyK2X0.roa (raw, json)
Hash identifier: x4QcM7YC4j54T4oeUQbVZzw5qjJZfFYNfz0ZUoiF4n8=
Subject key identifier: 31:63:01:A2:19:F2:57:F0:E4:6A:88:08:F1:81:D8:CB:3C:8A:D9:7D
Certificate issuer: /CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Certificate serial: 041C4AEE
Authority key identifier: A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/MWMBohnyV_DkaogI8YHYyzyK2X0.roa
Signing time: Wed 26 Jan 2022 13:02:34 +0000
ROA not before: Wed 26 Jan 2022 13:02:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201000
IP address blocks: 45.156.120.0/22 maxlen: 24
185.89.72.0/22 maxlen: 24
91.245.244.0/22 maxlen: 24
185.237.148.0/22 maxlen: 24
79.143.192.0/20 maxlen: 24
185.211.252.0/22 maxlen: 24
2a03:8260::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68963054 (0x41c4aee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Validity
Not Before: Jan 26 13:02:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=316301a219f257f0e46a8808f181d8cb3c8ad97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:fe:32:c0:e5:c5:bc:d4:5e:07:57:87:83:
a4:91:bb:76:ad:80:00:ec:12:33:26:cb:cd:3c:ff:
85:84:f4:41:5e:58:0e:fb:ed:99:84:c3:df:3c:ba:
59:95:d5:b5:0a:7c:ec:cc:14:e6:7f:9c:a8:3a:33:
44:8f:35:28:45:2d:9a:5e:62:d9:ee:39:7e:ff:ec:
fc:c8:2c:f5:fa:a0:a8:93:69:f7:93:78:76:a7:dc:
e1:f0:84:12:2f:82:e4:39:93:4f:95:e9:44:e8:73:
22:9c:45:ce:6d:66:c3:3e:02:e7:8b:06:8a:33:42:
f4:73:bb:4d:5a:c3:8e:9f:f2:dd:10:11:10:80:e1:
62:2c:0a:09:4a:61:27:f6:c5:17:96:b7:c9:17:15:
f1:05:d8:59:c5:d0:00:e0:6e:bb:13:7b:56:d7:96:
58:5f:c0:43:9d:6d:d1:01:1c:6e:40:ca:d9:4a:e1:
31:9c:96:3a:8e:a7:70:13:73:e3:4b:2e:20:2d:b6:
e9:fd:3b:ae:9b:38:0a:12:9b:2a:50:cc:2f:31:9b:
99:50:e9:10:73:e8:49:2f:bd:fb:54:a2:65:fd:6f:
1c:61:bf:cc:6c:71:3a:18:4a:fb:00:1b:f6:b8:53:
e9:06:d6:2e:57:75:84:46:d7:5b:04:14:38:06:9a:
02:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:63:01:A2:19:F2:57:F0:E4:6A:88:08:F1:81:D8:CB:3C:8A:D9:7D
X509v3 Authority Key Identifier:
keyid:A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/MWMBohnyV_DkaogI8YHYyzyK2X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.120.0/22
79.143.192.0/20
91.245.244.0/22
185.89.72.0/22
185.211.252.0/22
185.237.148.0/22
IPv6:
2a03:8260::/32
Signature Algorithm: sha256WithRSAEncryption
1c:ee:25:d5:5e:d2:de:5e:99:5d:f1:51:72:31:36:b6:8f:0d:
18:e3:3e:a5:cf:37:03:9d:83:66:8d:73:18:b1:03:e5:20:5a:
c1:8c:7e:81:52:24:4f:d2:30:5d:a5:20:70:60:33:7e:e9:b6:
71:e3:80:f2:60:36:90:a4:8a:95:e8:2f:a9:0e:d4:5f:69:40:
b1:94:34:19:d9:03:02:d2:29:36:65:ae:79:35:e1:df:90:35:
1c:9d:38:c2:e4:1b:67:27:73:d9:60:fe:da:d0:8b:6f:f7:87:
3f:15:8d:19:c9:d5:3d:0b:0e:2a:41:27:fd:ad:fa:4f:6d:dc:
3b:b6:f4:86:9a:2b:d2:f1:ca:33:15:8f:52:d3:93:6f:95:33:
3b:34:a5:2f:c0:75:37:c8:cd:b6:5f:33:cc:27:ec:67:ff:7e:
ea:19:0e:5a:aa:e8:47:0b:b7:01:0d:da:1f:b9:11:73:88:e2:
e6:6b:ad:72:05:5f:8d:44:42:86:6d:d3:94:81:1c:74:23:3d:
38:5d:0a:c1:82:ee:34:a1:15:63:ec:b9:aa:0a:85:68:db:97:
fe:2a:14:65:02:d2:4f:9e:a0:7d:cf:0b:8e:45:f0:e3:84:a8:
e2:4b:f4:3f:b8:86:e9:94:fb:f6:65:2a:90:68:a8:f6:f6:74:
b4:ee:88:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:35 2024 by rpki-client on console-fra.rpki-client.org