Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/aa7922-c2c0-47ae-9108-6030a9da3b89/1/mxNy-fljuea_quYyiP7_mglZPsw.roa
File: mxNy-fljuea_quYyiP7_mglZPsw.roa (raw, json)
Hash identifier: FV3dcBWH7UdRMoU7IXdjSLOU/7KT1se66uzKGZL1UdQ=
Subject key identifier: 9B:13:72:F9:F9:63:B9:E6:BF:AA:E6:32:88:FE:FF:9A:09:59:3E:CC
Certificate issuer: /CN=e1d7e9ff1278a14dc26ef33f9ff531d86eff5d03
Certificate serial: 03DCC732
Authority key identifier: E1:D7:E9:FF:12:78:A1:4D:C2:6E:F3:3F:9F:F5:31:D8:6E:FF:5D:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4dfp_xJ4oU3CbvM_n_Ux2G7_XQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/aa7922-c2c0-47ae-9108-6030a9da3b89/1/mxNy-fljuea_quYyiP7_mglZPsw.roa
Signing time: Sat 01 Jan 2022 11:58:22 +0000
ROA not before: Sat 01 Jan 2022 11:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43521
IP address blocks: 185.52.58.0/23 maxlen: 23
78.41.176.0/21 maxlen: 21
185.52.56.0/23 maxlen: 23
185.52.56.0/22 maxlen: 22
87.117.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64800562 (0x3dcc732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1d7e9ff1278a14dc26ef33f9ff531d86eff5d03
Validity
Not Before: Jan 1 11:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b1372f9f963b9e6bfaae63288feff9a09593ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e4:a3:c2:d3:79:55:7c:e6:50:56:2a:6d:0a:
6d:3a:76:cb:69:24:ec:37:ff:21:2e:bc:34:0f:53:
27:ca:6e:c4:45:61:d1:10:8e:7d:ea:44:63:a8:17:
c0:ae:e2:2b:f9:03:83:7f:71:fe:c6:e0:9a:48:94:
02:8a:48:ef:24:6f:c6:92:22:9e:ed:3b:fc:e5:5a:
47:c6:d4:ec:e8:6a:f1:f1:9b:66:c2:20:ed:da:2a:
ac:4b:89:13:4e:b3:c3:e9:03:c8:db:81:e8:15:5e:
7f:71:48:20:90:95:95:37:b5:56:6d:1b:49:71:66:
c2:8a:ad:8a:20:ee:13:2b:4f:54:ce:63:aa:d4:4e:
dd:e7:cf:94:e5:d0:db:63:83:21:9c:0a:f5:b7:bc:
fd:bc:4d:e8:0e:a6:e3:e4:c1:d8:34:f2:50:5b:f1:
35:94:cb:d0:fa:e3:6a:a2:e8:b3:9c:a1:3d:46:45:
07:2c:d1:2a:51:a9:11:b0:1c:02:31:13:eb:14:de:
49:d4:6f:d7:bd:1b:d4:a6:63:df:39:6f:44:59:09:
46:ce:1f:71:c6:11:66:c0:5b:d1:e2:07:c9:1f:ab:
c1:3d:cb:e5:f4:00:48:e1:b2:65:b0:db:fa:9e:61:
9e:2b:ac:21:28:e5:09:f5:f7:82:d3:9f:31:e7:67:
a2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:13:72:F9:F9:63:B9:E6:BF:AA:E6:32:88:FE:FF:9A:09:59:3E:CC
X509v3 Authority Key Identifier:
keyid:E1:D7:E9:FF:12:78:A1:4D:C2:6E:F3:3F:9F:F5:31:D8:6E:FF:5D:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4dfp_xJ4oU3CbvM_n_Ux2G7_XQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/aa7922-c2c0-47ae-9108-6030a9da3b89/1/mxNy-fljuea_quYyiP7_mglZPsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/aa7922-c2c0-47ae-9108-6030a9da3b89/1/4dfp_xJ4oU3CbvM_n_Ux2G7_XQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.176.0/21
87.117.152.0/21
185.52.56.0/22
Signature Algorithm: sha256WithRSAEncryption
21:e7:c6:26:4a:95:14:43:9b:83:f3:22:af:a4:3e:7b:1f:76:
78:d9:79:e4:49:45:5a:92:85:e3:40:4b:de:7f:de:99:75:c9:
64:bd:6b:f3:97:e5:a9:a5:4f:79:f3:ad:c6:ae:56:22:b8:9e:
ce:81:13:7e:fa:33:0f:b6:bc:bb:15:3b:af:13:b6:89:d5:cd:
bf:88:19:4c:65:81:64:e7:d7:86:5a:fd:42:2b:1f:5c:2d:87:
a4:a6:55:b2:31:dd:74:e2:cd:85:fd:8d:59:45:7c:a9:52:81:
1f:89:a1:73:8a:95:15:48:d5:bd:aa:12:22:b1:ca:3c:fc:ff:
cb:65:94:57:cd:5c:c1:ec:17:18:d9:15:72:3a:5a:5e:e1:69:
3d:6b:6c:4d:85:f3:d5:18:d5:8c:94:18:bf:79:b5:2e:49:64:
2d:41:16:aa:56:0b:70:a2:91:b7:3d:f0:60:ff:66:3f:76:45:
26:c9:38:d9:07:bf:d5:11:a7:3f:a8:0b:aa:fa:8a:c2:5d:1b:
91:61:45:31:ff:63:99:76:78:62:d4:87:3f:dd:cd:8b:23:42:
1a:6a:5d:42:bd:60:2e:52:04:15:55:2b:52:96:15:54:e5:9b:
ff:9f:68:70:7d:d6:a5:ad:96:e0:c6:35:6d:0a:dd:75:35:5a:
49:38:d7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:44 2024 by rpki-client on console-ams.rpki-client.org