Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/McBkazAlIdcV2tgWqe-B1wckZRg.roa
File: McBkazAlIdcV2tgWqe-B1wckZRg.roa (raw, json)
Hash identifier: OyCveRG95YqG1NnxZqPVoNlyeFP9WRK57YXKES4mnLU=
Subject key identifier: 31:C0:64:6B:30:25:21:D7:15:DA:D8:16:A9:EF:81:D7:07:24:65:18
Certificate issuer: /CN=682c842dfa2a1e714727bccb95f165347103f277
Certificate serial: 1687DE54
Authority key identifier: 68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/McBkazAlIdcV2tgWqe-B1wckZRg.roa
Signing time: Sat 01 Jan 2022 09:01:32 +0000
ROA not before: Sat 01 Jan 2022 09:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11185
IP address blocks: 77.80.128.0/18 maxlen: 18
185.69.169.0/24 maxlen: 24
2a05:2241::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378003028 (0x1687de54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=682c842dfa2a1e714727bccb95f165347103f277
Validity
Not Before: Jan 1 09:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31c0646b302521d715dad816a9ef81d707246518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:62:32:9c:8d:b9:8f:0b:f2:ee:9c:23:75:0a:
d3:17:62:41:f4:27:bc:38:a5:f5:d3:72:71:fb:ac:
ae:ee:dc:ac:cb:1f:bc:16:ac:7b:14:4a:56:1d:f4:
a1:34:50:b8:05:f9:15:cc:12:66:c7:e4:8b:d7:eb:
1c:d8:57:37:91:aa:aa:da:f9:ec:05:1e:c4:6d:a7:
f7:64:19:f2:f0:a6:76:ea:a7:b9:4a:85:3f:93:6c:
07:5c:b2:33:3b:31:30:ae:10:e6:ca:f5:23:39:86:
03:35:39:4d:dc:83:c7:9f:bf:cb:23:63:b3:43:af:
9d:c1:d6:1d:46:8e:ab:37:e6:fc:a6:40:68:1a:98:
09:d9:53:25:e5:d7:6a:c4:4f:78:39:60:51:e3:1a:
79:a2:16:ee:bf:09:d5:46:40:63:ac:69:25:f1:08:
b4:55:cd:aa:66:da:de:82:9d:73:21:40:76:a2:90:
ea:d8:c0:f0:6b:fe:26:cc:36:2d:0b:ef:e4:e4:74:
81:3b:c6:8d:44:f1:61:52:f2:dd:41:94:00:05:57:
56:73:c2:69:6f:c3:c7:8b:3a:62:83:77:89:94:ea:
7e:ab:d7:f2:3e:2f:d4:be:a0:93:39:c1:67:97:11:
3d:02:1f:6e:cd:a2:07:73:77:dc:cc:51:76:12:d3:
3f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C0:64:6B:30:25:21:D7:15:DA:D8:16:A9:EF:81:D7:07:24:65:18
X509v3 Authority Key Identifier:
keyid:68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/McBkazAlIdcV2tgWqe-B1wckZRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/aCyELfoqHnFHJ7zLlfFlNHED8nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.80.128.0/18
185.69.169.0/24
IPv6:
2a05:2241::/32
Signature Algorithm: sha256WithRSAEncryption
14:bf:22:0f:37:a2:54:c4:82:4a:ee:30:6f:ac:a4:c9:f3:cd:
ac:92:c1:28:0d:15:03:a9:cc:88:f0:18:d1:fd:71:fd:9d:cb:
69:bd:90:ae:8e:98:f4:dc:fb:ca:71:59:96:b2:80:fa:88:94:
d3:e0:00:f2:00:0f:0b:d1:2a:36:a5:0b:ba:1f:fb:d4:3f:11:
fb:2a:9b:b2:ca:db:9b:24:33:a2:a4:5b:99:e2:ae:cf:72:80:
8e:4b:15:37:b9:e0:e7:3d:57:fc:2e:f7:cd:cd:fb:a4:ae:79:
95:50:ad:ab:1a:f4:73:ce:3b:97:50:cc:16:99:dd:8d:7a:fc:
68:14:2c:c4:a3:d9:c9:d4:db:c8:f9:9e:a7:f9:99:2a:e7:d6:
5b:41:7b:d0:bb:60:f9:ca:91:ad:f9:03:52:5b:64:cf:b3:0c:
f1:ae:bc:30:85:70:76:b1:e2:d6:43:11:ca:2d:bc:dc:3b:3e:
9f:1b:90:44:dc:7b:91:09:13:6d:f5:82:ec:d9:22:b1:2a:98:
c2:90:2b:89:5b:6e:64:92:d4:1e:30:83:d6:5b:9b:75:3d:50:
02:f0:d9:59:c6:fb:90:c4:c1:7f:5a:a7:5d:87:48:62:e3:07:
cf:4a:12:bf:46:e1:14:e3:48:0c:c6:fd:56:22:92:c4:4b:4f:
2a:75:db:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-fra.rpki-client.org