Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/MrOK1rHdYoQIvCBrRsHvL8wwNKc.roa
File: MrOK1rHdYoQIvCBrRsHvL8wwNKc.roa (raw, json)
Hash identifier: nx7wPVPmvobweQGpBU+KV/61oQ4Rr2HrGgQsKeg5d9I=
Subject key identifier: 32:B3:8A:D6:B1:DD:62:84:08:BC:20:6B:46:C1:EF:2F:CC:30:34:A7
Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial: C8C530
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/MrOK1rHdYoQIvCBrRsHvL8wwNKc.roa
Signing time: Sat 01 Jan 2022 02:54:05 +0000
ROA not before: Sat 01 Jan 2022 02:54:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39868
IP address blocks: 85.112.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13157680 (0xc8c530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Validity
Not Before: Jan 1 02:54:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32b38ad6b1dd628408bc206b46c1ef2fcc3034a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:69:73:cc:fe:e4:39:51:15:14:31:90:b4:6d:
34:d1:41:a5:85:39:3a:42:58:29:7c:8b:eb:f2:32:
71:9d:4d:23:02:00:fb:3d:04:18:69:fd:7f:b9:4a:
0a:2f:ca:0a:2f:1a:e2:3e:f1:4a:83:25:06:33:77:
8e:1f:e9:34:f6:69:ff:9a:b0:31:a5:05:d2:20:a1:
88:de:26:aa:09:c7:0d:fc:52:3f:0a:0d:62:cc:82:
88:f0:80:fe:a2:9f:5a:5f:2e:cc:18:c7:b2:37:13:
37:2e:2e:f4:47:e7:47:51:62:7b:6a:de:60:cf:1a:
99:7e:6b:2a:b3:64:3c:75:0d:6b:72:8d:62:ec:34:
df:4f:19:a8:92:02:28:a0:9d:b8:a6:f7:91:e3:78:
b5:a0:fa:82:bc:81:d0:b2:3a:57:0e:2c:52:cd:b0:
dd:0a:49:7c:85:5f:95:a6:1c:0f:ab:6a:69:68:53:
b2:36:d6:e0:87:23:d0:b1:80:7d:07:c0:b0:b3:bc:
49:cb:b0:3d:bf:3c:7b:d8:65:5b:74:a5:a2:55:41:
11:c5:cf:0d:80:4d:72:b3:f8:de:22:bf:0f:fa:90:
c4:b6:f8:70:16:90:65:b3:3c:60:9b:bf:15:c3:f7:
d1:4f:d9:c0:08:d1:1a:10:40:b1:2d:a1:38:71:95:
c7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B3:8A:D6:B1:DD:62:84:08:BC:20:6B:46:C1:EF:2F:CC:30:34:A7
X509v3 Authority Key Identifier:
keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/MrOK1rHdYoQIvCBrRsHvL8wwNKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.112.79.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:db:ab:4a:c6:d1:3b:df:b7:13:1a:f4:06:4c:40:4e:3d:b5:
82:82:f8:23:06:f7:db:13:91:c2:46:cd:b0:5a:f5:e3:f1:8a:
c6:96:ba:56:1c:40:a8:e1:0f:77:99:87:4c:10:61:9b:4f:62:
0b:48:6c:ad:6b:9d:4b:0d:58:c8:d9:7f:02:08:f3:62:1a:ce:
f0:0a:d9:de:d0:31:dc:c6:2e:15:e1:26:13:74:92:b2:9b:aa:
64:3b:39:74:90:dd:da:9b:ce:da:fc:dd:ba:95:07:f3:1e:35:
ac:82:ef:00:c9:5e:92:73:26:65:28:14:27:76:c4:6b:4f:8b:
4a:57:b3:60:95:94:c5:8c:89:52:ea:e2:44:90:ff:e9:ef:26:
53:fd:10:d8:13:ba:59:83:ee:70:7a:8b:2a:84:22:91:02:7f:
e6:1e:4f:eb:0f:c5:61:44:76:da:35:9f:75:ca:af:a4:c5:22:
91:ed:a3:aa:7f:0a:fe:2f:15:b4:6f:36:e5:e3:b4:53:af:64:
12:4e:80:98:d1:d2:e5:60:04:d4:c4:af:e4:85:42:1d:1b:cc:
ec:6c:f4:7b:6d:3b:83:bb:31:21:04:e5:f6:be:e5:e0:5e:4e:
6c:14:a7:c8:9d:48:67:45:5d:de:d5:4a:cd:04:e8:d6:a9:2b:
05:91:72:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:24 2024 by rpki-client on console-ams.rpki-client.org