Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/2fd019-773d-4c99-acf5-04a1f95413f7/1/MTDXlVf8Zud6OXBFvVIdoc1kWW4.roa
File: MTDXlVf8Zud6OXBFvVIdoc1kWW4.roa (raw, json)
Hash identifier: I5+2UoXjvXsdrClNdHHA94kwYmqgQ26FlUqBVItka6M=
Subject key identifier: 31:30:D7:95:57:FC:66:E7:7A:39:70:45:BD:52:1D:A1:CD:64:59:6E
Certificate issuer: /CN=0ecabe061f2d890a8c8b4181adbca6ca943bd222
Certificate serial: 01833731205EB9AA507C8A1B2516EF8901E7
Authority key identifier: 0E:CA:BE:06:1F:2D:89:0A:8C:8B:41:81:AD:BC:A6:CA:94:3B:D2:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dsq-Bh8tiQqMi0GBrbymypQ70iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/2fd019-773d-4c99-acf5-04a1f95413f7/1/MTDXlVf8Zud6OXBFvVIdoc1kWW4.roa
Signing time: Tue 13 Sep 2022 14:11:49 +0000
ROA not before: Tue 13 Sep 2022 14:11:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204949
IP address blocks: 185.219.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:31:20:5e:b9:aa:50:7c:8a:1b:25:16:ef:89:01:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecabe061f2d890a8c8b4181adbca6ca943bd222
Validity
Not Before: Sep 13 14:11:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3130d79557fc66e77a397045bd521da1cd64596e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8e:c8:b3:1a:8e:30:0e:56:ca:82:02:eb:da:
ea:45:34:f9:0b:63:7e:1d:0b:fe:fd:05:4d:82:3c:
bb:c9:d4:2e:62:3f:f3:93:2b:0c:4a:4a:b2:e6:b2:
bd:22:a0:47:89:4c:05:8f:e6:91:56:d9:36:cb:84:
10:95:42:17:b6:7c:04:12:fb:7d:55:69:1f:89:ce:
ef:e8:c9:f4:db:44:0a:c7:8f:f6:48:63:a8:73:5f:
66:99:f7:77:7f:0c:0f:d2:ab:0c:fb:1c:68:8a:ce:
27:ed:6e:4a:16:14:a5:0f:bf:9c:de:32:52:e0:01:
3a:4b:db:59:f2:43:51:cf:5c:0c:8a:26:cd:bf:3b:
b8:8b:8b:6c:d4:4a:f5:67:24:21:e2:2b:45:97:1c:
ad:1a:d0:5a:bf:6d:a9:d3:ca:9b:65:44:39:d7:50:
d2:18:40:b4:fb:56:01:a3:0b:d6:2f:4b:db:5d:d7:
2f:24:46:29:f7:00:d8:d3:22:b4:c6:7c:dc:50:4a:
f7:1e:d0:c7:80:56:e3:b2:f7:47:09:8d:e4:24:77:
bd:59:07:3a:b4:65:64:ef:3a:68:db:09:2e:aa:c4:
87:03:10:ea:d7:bf:10:63:cd:6d:7c:41:94:b9:cd:
92:2c:1d:54:41:e3:e1:32:f6:98:a1:0c:74:f5:71:
9e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:30:D7:95:57:FC:66:E7:7A:39:70:45:BD:52:1D:A1:CD:64:59:6E
X509v3 Authority Key Identifier:
keyid:0E:CA:BE:06:1F:2D:89:0A:8C:8B:41:81:AD:BC:A6:CA:94:3B:D2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dsq-Bh8tiQqMi0GBrbymypQ70iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2fd019-773d-4c99-acf5-04a1f95413f7/1/MTDXlVf8Zud6OXBFvVIdoc1kWW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2fd019-773d-4c99-acf5-04a1f95413f7/1/Dsq-Bh8tiQqMi0GBrbymypQ70iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.168.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:6a:eb:19:f6:56:45:2d:2a:94:f9:3b:45:f8:64:9c:66:29:
34:d2:bc:ed:5a:77:3a:fe:27:ed:5f:cc:23:25:71:ad:39:d0:
4c:f0:c1:e5:7a:d7:70:07:92:e9:fb:a1:f1:e7:29:5d:1b:13:
98:1b:6f:3f:06:78:4f:27:4a:8d:a3:19:7f:ab:35:db:13:c2:
5c:64:a7:a2:b4:bd:d4:17:48:5c:e8:ed:1f:07:dc:81:0c:63:
85:0a:64:37:87:15:13:37:b2:ea:35:46:7b:f6:69:91:1f:81:
a9:61:e7:46:d8:78:6e:76:3f:a0:0d:bf:29:35:9a:3d:1b:06:
d3:09:01:f7:28:ad:44:37:43:bb:ce:8c:c2:bd:b1:96:de:26:
e0:a8:ad:84:04:0d:da:42:47:8a:7c:9c:d5:39:0d:59:2a:ed:
be:ba:96:4f:51:d6:db:14:b3:2a:d0:b5:d7:4f:23:b0:76:17:
c0:72:f5:2a:bb:7c:66:4e:06:42:93:dc:77:5f:4f:e3:30:6a:
63:66:9c:59:ed:6a:da:de:5a:a1:a4:e6:7f:7c:2d:6c:31:21:
fb:25:81:a1:f3:de:6f:5f:02:7f:fb:4d:10:86:00:52:15:cb:
61:ee:93:5f:cc:25:11:07:16:55:90:5a:63:6d:9b:62:71:75:
e4:5d:6a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:26 2023 by rpki-client on console-ams.rpki-client.org