Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/rwMuYMB994697BOuC3hmKrVhC6Y.roa
File: rwMuYMB994697BOuC3hmKrVhC6Y.roa (raw, json)
Hash identifier: K3NG3zPbIex1H/i70v6vKcDZh/bXM/vuUuY/O63KwE8=
Subject key identifier: AF:03:2E:60:C0:7D:F7:8E:BD:EC:13:AE:0B:78:66:2A:B5:61:0B:A6
Certificate issuer: /CN=e05d28f149793a3d72e8ef041e9c9e0d9a66b21e
Certificate serial: 0182887548DD9EB91EE133D0FFAC5953D5D5
Authority key identifier: E0:5D:28:F1:49:79:3A:3D:72:E8:EF:04:1E:9C:9E:0D:9A:66:B2:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4F0o8Ul5Oj1y6O8EHpyeDZpmsh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/rwMuYMB994697BOuC3hmKrVhC6Y.roa
Signing time: Wed 10 Aug 2022 15:52:43 +0000
ROA not before: Wed 10 Aug 2022 15:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36239
IP address blocks: 185.138.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:88:75:48:dd:9e:b9:1e:e1:33:d0:ff:ac:59:53:d5:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e05d28f149793a3d72e8ef041e9c9e0d9a66b21e
Validity
Not Before: Aug 10 15:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af032e60c07df78ebdec13ae0b78662ab5610ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:09:85:b1:23:14:dc:64:4d:a8:4c:4a:2b:33:
8e:61:db:b1:22:7b:06:36:cd:ee:69:de:74:76:00:
8f:9e:0a:f7:40:77:7d:78:58:3e:6c:3d:53:6a:b4:
6f:67:28:f8:95:bb:d3:b9:a6:22:84:49:0f:33:af:
44:d2:b1:8b:46:4b:3e:4b:98:55:99:8a:e8:50:de:
f3:9f:46:e9:6c:9d:cb:f0:02:7b:d2:83:10:26:2d:
a5:0b:18:70:19:de:a5:11:e8:7f:44:16:a3:e1:1a:
33:c3:c1:85:23:b6:59:85:66:b6:8e:e6:bb:86:1d:
f9:04:fd:ee:4b:d6:ad:a4:d7:04:28:53:52:b4:a8:
05:04:ef:c8:85:0b:9c:d6:c8:be:11:9a:5c:1e:91:
bb:50:43:64:e6:57:3a:31:9d:bd:2b:55:a6:90:7b:
29:e0:f2:52:4d:9a:d1:49:74:1d:0c:0b:ff:42:5e:
d8:6c:c3:b0:0b:1f:ee:11:c0:85:5e:4e:0c:0f:a7:
eb:8a:dd:7b:a0:af:1e:c3:60:af:ae:cf:ad:65:8e:
97:94:53:8e:43:60:bc:e7:42:18:4b:eb:7d:8e:f6:
7c:b3:fe:1d:5f:40:98:ec:1f:1a:d4:f6:39:97:b1:
69:bd:36:6f:df:80:fa:6b:61:bb:a4:b4:8b:8b:92:
50:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:03:2E:60:C0:7D:F7:8E:BD:EC:13:AE:0B:78:66:2A:B5:61:0B:A6
X509v3 Authority Key Identifier:
keyid:E0:5D:28:F1:49:79:3A:3D:72:E8:EF:04:1E:9C:9E:0D:9A:66:B2:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4F0o8Ul5Oj1y6O8EHpyeDZpmsh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/rwMuYMB994697BOuC3hmKrVhC6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b4c97b-e005-4cd6-8335-8091ebce3bbf/1/4F0o8Ul5Oj1y6O8EHpyeDZpmsh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.171.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:2b:15:83:7d:48:d5:5f:70:81:ec:2c:c3:2c:99:c4:fe:e7:
78:be:90:b2:e3:3a:bf:04:94:4d:fa:af:31:5d:dc:f7:af:a2:
cf:18:b6:af:8d:48:8e:be:41:e6:a3:7e:11:d8:08:54:3b:d2:
bf:66:1a:96:4d:61:68:74:6d:ae:40:2f:d8:fc:55:5b:c6:93:
51:81:8a:84:4b:fc:39:ea:90:00:07:4c:40:71:25:a6:af:60:
ed:f4:9e:9d:1a:67:c0:d0:2a:55:3c:a9:d9:c2:83:ba:ce:26:
b2:2b:05:3b:7a:6d:a8:9a:5f:9e:e1:22:81:59:cf:e5:55:3e:
4b:bd:a3:ae:12:22:e6:de:a9:30:8c:be:29:30:73:b7:d7:2b:
27:f3:50:6f:74:bc:17:83:a0:ec:aa:97:d4:ff:5a:11:d6:fb:
1e:f9:1b:b3:7f:71:ba:9c:76:bd:82:5f:6e:d8:d8:a4:9d:1e:
8c:68:6c:e4:03:d7:64:3b:16:51:53:07:6c:cf:d4:76:25:71:
ec:20:74:78:f3:f2:2c:7c:f4:b1:e7:fb:55:42:1b:23:8c:3d:
c0:d6:32:17:66:ec:49:b2:10:72:30:ad:26:fc:06:dd:72:5b:
fc:4d:6a:37:bd:f2:a2:c1:a2:d9:64:fe:19:42:6b:fb:63:20:
73:7d:f0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:47 2024 by rpki-client on console-ams.rpki-client.org