Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/M9rwnDL-FLSzH1QzDPh8Sk8ToRs.roa
File: M9rwnDL-FLSzH1QzDPh8Sk8ToRs.roa (raw, json)
Hash identifier: oCX0oeE1mxixGcrYxHOfOSu5CF74JGC/Xdu/BPj/z/c=
Subject key identifier: 33:DA:F0:9C:32:FE:14:B4:B3:1F:54:33:0C:F8:7C:4A:4F:13:A1:1B
Certificate issuer: /CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Certificate serial: 02895BEB
Authority key identifier: EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/M9rwnDL-FLSzH1QzDPh8Sk8ToRs.roa
Signing time: Tue 01 Mar 2022 15:10:26 +0000
ROA not before: Tue 01 Mar 2022 15:10:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.218.223.0/24 maxlen: 24
185.218.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42556395 (0x2895beb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Validity
Not Before: Mar 1 15:10:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33daf09c32fe14b4b31f54330cf87c4a4f13a11b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d7:ef:82:2e:b5:a9:2f:91:37:d0:12:07:7b:
d4:49:11:ae:d9:6e:c5:26:82:82:ca:1a:9f:f9:e1:
e9:b8:ac:56:c1:7b:46:b7:ac:ce:3b:15:f2:72:cb:
0b:4b:a4:e4:5a:6b:65:2d:55:0d:06:17:f0:6f:e0:
ef:90:73:f4:99:87:7c:94:a2:77:38:bb:c8:08:b0:
d4:f9:4f:21:05:65:80:f7:78:05:14:df:2c:4c:c9:
d5:fa:f2:fa:78:72:59:f4:86:d7:a2:83:dc:5d:81:
11:b6:6d:c6:69:47:b5:c7:41:86:2d:2f:99:2f:53:
4e:0d:f4:47:0a:5b:23:e9:f0:48:f1:a3:d4:f9:a8:
b2:c2:ca:92:92:63:7a:ce:af:e1:83:4a:29:bb:4d:
c4:79:87:e7:cf:66:a6:ce:1b:23:e7:b3:ff:df:69:
49:f0:1c:a1:a5:7d:e9:0a:7e:e4:b8:fc:0f:60:05:
12:01:dc:49:ea:72:36:f9:3a:10:6a:47:17:90:d4:
c2:e4:83:fb:a9:1d:43:b4:e9:39:13:10:77:21:95:
4c:82:87:4a:be:21:bd:dd:9c:bc:51:94:dd:5b:15:
82:b2:7a:30:dc:9e:2e:a5:4c:b1:05:de:8f:94:1b:
0e:71:c7:d3:4f:59:f0:89:24:39:f1:ca:e4:07:7d:
7c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DA:F0:9C:32:FE:14:B4:B3:1F:54:33:0C:F8:7C:4A:4F:13:A1:1B
X509v3 Authority Key Identifier:
keyid:EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/M9rwnDL-FLSzH1QzDPh8Sk8ToRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/66jbO1TQgcML9Rvcexnk9kgLf1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.222.0/23
Signature Algorithm: sha256WithRSAEncryption
75:50:e5:33:0a:9c:f4:f3:9e:ff:9a:62:2e:15:1e:1f:92:d6:
75:df:a0:a1:f9:3d:04:be:85:8b:50:a8:22:60:99:25:a2:1f:
d7:c6:9d:71:fd:83:a2:b1:32:8b:11:51:80:47:3d:29:bc:f5:
d7:02:ee:cb:36:5c:44:f3:98:11:2a:9e:4f:2f:32:ec:1c:18:
5a:a6:b6:60:73:38:33:f3:e8:39:43:01:09:f7:c9:92:21:ce:
8d:e7:ee:66:c8:e2:b5:77:cc:f7:b9:5c:4e:be:ea:c5:e7:5a:
64:ed:5a:aa:56:4a:39:55:41:4a:ee:e2:3b:c2:fd:46:14:d3:
dc:66:97:cb:01:05:ff:b0:0c:de:73:b3:54:03:5b:e1:dd:44:
c3:ff:42:22:c5:19:6c:14:37:54:5f:5b:fc:12:ea:d9:92:f4:
61:e0:88:94:5f:b7:d5:b1:4d:3a:0f:74:e5:3c:26:6e:55:ce:
b2:d4:21:06:55:af:01:cd:54:de:34:5f:e7:49:eb:12:8e:0c:
08:2b:7a:af:3f:96:6f:57:ae:d2:86:9b:ba:15:06:41:45:15:
09:ed:61:26:a4:92:32:78:cd:93:e2:c7:90:70:d1:35:7f:75:
75:a4:21:ec:69:52:60:85:d8:37:3d:5b:75:08:a3:27:b3:5a:
59:32:36:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-fra.rpki-client.org