Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/Mj0dC82q4Y-VFIs4dlpn-1S8pCs.roa
File: Mj0dC82q4Y-VFIs4dlpn-1S8pCs.roa (raw, json)
Hash identifier: kaPJo42b981B/N5r/ELRW/oyUgZlr6Rpv2Nk09uSIP0=
Subject key identifier: 32:3D:1D:0B:CD:AA:E1:8F:95:14:8B:38:76:5A:67:FB:54:BC:A4:2B
Certificate issuer: /CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Certificate serial: 03DFC1BB
Authority key identifier: 37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/Mj0dC82q4Y-VFIs4dlpn-1S8pCs.roa
Signing time: Sat 01 Jan 2022 05:55:34 +0000
ROA not before: Sat 01 Jan 2022 05:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62371
IP address blocks: 185.205.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64995771 (0x3dfc1bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Validity
Not Before: Jan 1 05:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=323d1d0bcdaae18f95148b38765a67fb54bca42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9d:62:6f:be:a7:91:f9:90:3b:0d:66:0c:dc:
2f:cf:08:36:c3:7e:77:6d:3c:08:f5:23:bf:05:18:
b2:83:04:be:3a:67:b8:d1:b3:e1:a2:55:d1:74:0d:
d0:c2:21:ca:11:3e:6b:97:cc:83:d3:6d:3a:bc:0e:
90:02:ca:f2:19:0a:fa:cd:9f:b4:96:47:fc:a6:f6:
d3:8d:38:b9:b9:7e:71:48:d9:91:cc:7e:c4:e7:05:
b2:27:17:cd:57:7d:c0:e5:43:e6:d9:d8:e2:6f:4b:
ca:98:66:1a:20:2c:2d:d2:da:f1:8f:55:2c:7b:48:
aa:b6:a9:63:e2:00:de:a0:63:f9:1f:d1:8f:f4:94:
00:76:e4:01:ff:7b:a3:32:d3:c6:9d:0d:15:e3:2a:
9e:70:95:57:64:55:2f:e9:f9:5b:03:aa:0b:a7:f9:
57:a7:f1:8e:19:e3:d0:e2:6d:ed:73:e2:a7:7f:0d:
1b:56:48:ad:73:e5:f0:fb:8a:55:34:5c:a4:23:71:
a4:7d:40:e5:89:1d:98:be:b1:81:f5:66:3b:c7:53:
72:8a:04:09:84:93:d2:eb:b5:c0:95:4e:04:87:ff:
16:9e:fb:70:76:bd:86:70:ff:41:5d:bd:06:35:74:
24:bb:33:b8:9b:5b:2f:0f:e0:c6:42:af:fe:29:28:
c1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3D:1D:0B:CD:AA:E1:8F:95:14:8B:38:76:5A:67:FB:54:BC:A4:2B
X509v3 Authority Key Identifier:
keyid:37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/Mj0dC82q4Y-VFIs4dlpn-1S8pCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/N-dRoRwaeIj6WNv8MsiVm8lGMD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.70.0/24
Signature Algorithm: sha256WithRSAEncryption
14:fa:54:9d:ef:a7:4f:5f:65:a1:5c:74:7a:cd:0d:02:82:9d:
0d:76:3c:e7:55:d4:24:75:b1:66:ba:ac:d6:2f:d2:1e:6a:6d:
93:71:13:68:05:f4:ed:91:17:ea:f0:12:17:9a:6f:dc:97:95:
09:19:12:ef:e0:8c:c2:07:b1:37:93:e5:3e:54:69:8e:cf:9e:
21:59:cb:73:48:58:b8:ad:b9:a7:54:60:60:17:c5:8c:38:3d:
bb:3d:95:af:27:fc:dc:ab:d6:d4:23:ad:7b:5d:f6:2e:4f:b7:
ac:b0:77:73:f3:2e:5a:ab:34:86:f0:f0:5a:43:ec:82:0c:25:
84:e4:54:4d:40:86:e0:00:0b:b6:d7:61:70:1e:fe:09:04:60:
04:5a:ce:a0:41:b3:22:9c:99:88:31:1f:f4:83:66:5d:d7:a4:
d7:08:4c:bb:53:50:38:8f:f8:23:45:7a:4f:a6:8d:f1:78:80:
d6:41:97:fb:44:91:a2:76:da:09:eb:83:7a:90:ba:89:70:8e:
9e:6b:b5:c7:08:25:ac:49:84:2c:e5:22:f9:53:a1:b5:ef:f6:
5d:7d:0c:91:dd:88:b0:38:e8:28:dc:86:df:07:c1:da:d5:3a:
9a:79:c6:a0:75:37:e7:57:a3:0d:5b:af:4a:8d:1f:d6:3b:e5:
cc:6d:63:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:25 2024 by rpki-client on console-fra.rpki-client.org