Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/MXws_GDRydNo-SslbzvefFPerVk.roa
File: MXws_GDRydNo-SslbzvefFPerVk.roa (raw, json)
Hash identifier: AwR7Mc02ADuNKB4Xmfjl7sam94cLQgT/0hcHh6MmieE=
Subject key identifier: 31:7C:2C:FC:60:D1:C9:D3:68:F9:2B:25:6F:3B:DE:7C:53:DE:AD:59
Certificate issuer: /CN=3ba1782b6afba7c6bcf070b93fed4cc84af41352
Certificate serial: 0E29B14C
Authority key identifier: 3B:A1:78:2B:6A:FB:A7:C6:BC:F0:70:B9:3F:ED:4C:C8:4A:F4:13:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O6F4K2r7p8a88HC5P-1MyEr0E1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/MXws_GDRydNo-SslbzvefFPerVk.roa
Signing time: Fri 13 May 2022 14:49:41 +0000
ROA not before: Fri 13 May 2022 14:49:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205312
IP address blocks: 185.17.169.0/24 maxlen: 24
37.220.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237613388 (0xe29b14c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ba1782b6afba7c6bcf070b93fed4cc84af41352
Validity
Not Before: May 13 14:49:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=317c2cfc60d1c9d368f92b256f3bde7c53dead59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:59:e7:e7:22:41:f1:09:4f:3c:d1:64:d0:e4:
ba:9a:04:17:fc:f3:13:d0:de:0b:35:d4:cb:12:8e:
eb:fa:cb:b8:87:95:8a:8c:c8:9c:12:0d:a0:d1:c2:
b7:5f:5a:8e:ed:f8:e2:97:4e:c3:43:7e:ea:60:20:
00:98:42:77:3a:00:e1:a0:a6:0c:26:fe:0a:db:24:
d7:70:ea:0a:1b:bc:ff:41:aa:73:24:ce:5a:4a:9e:
bc:49:27:6e:d0:2c:9f:5d:27:fd:32:64:a7:28:2d:
c5:81:b6:0d:cc:a6:d3:0a:7b:8b:45:ed:af:60:65:
5b:c7:1c:5d:23:d3:f3:65:a5:99:1a:35:1d:c6:8c:
a1:19:8e:aa:5e:82:a7:87:56:2e:82:99:50:fd:d5:
0f:5b:9c:e7:d1:f2:d0:c9:83:06:74:0b:bb:d1:4a:
70:23:ab:7a:61:26:15:c9:89:04:9e:45:b7:45:fe:
c7:53:4d:bc:70:47:ac:a8:74:7e:2f:06:ca:bd:fc:
62:17:2d:e3:80:39:13:17:17:9f:6d:81:e7:15:da:
96:98:9b:bb:8a:d6:19:81:06:2b:42:95:a0:83:d0:
01:c1:9b:db:a8:9f:5c:d3:91:fb:8e:c4:2e:22:b4:
53:fa:15:28:77:da:b4:d0:a4:08:3c:15:a4:73:32:
83:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7C:2C:FC:60:D1:C9:D3:68:F9:2B:25:6F:3B:DE:7C:53:DE:AD:59
X509v3 Authority Key Identifier:
keyid:3B:A1:78:2B:6A:FB:A7:C6:BC:F0:70:B9:3F:ED:4C:C8:4A:F4:13:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O6F4K2r7p8a88HC5P-1MyEr0E1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/MXws_GDRydNo-SslbzvefFPerVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/O6F4K2r7p8a88HC5P-1MyEr0E1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.164.0/24
185.17.169.0/24
Signature Algorithm: sha256WithRSAEncryption
07:70:f5:e4:03:5e:59:f8:b6:0f:a9:67:f0:34:5b:64:28:c5:
46:e0:18:7f:85:68:d8:f1:09:f4:37:59:91:7f:c7:f6:51:fe:
95:dc:e0:b2:e8:7e:e5:f1:77:2b:b6:32:bc:ac:69:88:6e:91:
b2:ad:5a:4f:b4:2a:e0:59:68:20:9a:09:a4:74:62:1f:d8:a6:
28:ea:57:e7:19:fc:bc:49:7d:62:45:bc:41:7d:77:ec:43:3d:
f3:a3:11:62:06:7d:fd:b2:c0:03:7a:c6:1a:f7:17:7a:cc:fc:
0c:72:25:01:cc:6c:80:25:87:0a:ef:95:8c:48:cd:e9:1d:77:
2a:89:12:49:2e:86:8d:79:79:2d:a4:f2:54:53:38:f8:ce:c5:
98:e6:e0:ce:c5:1a:92:48:89:52:81:76:f6:e8:8d:51:4a:df:
97:03:2c:b0:b9:09:6b:31:02:c1:bd:8a:80:41:8d:c1:ed:f8:
49:0a:6f:e7:f4:0a:ff:00:33:68:56:2f:cd:d5:08:48:7c:15:
65:f5:53:1b:94:b9:17:c5:da:ff:7f:f2:e7:74:91:13:ee:da:
61:c4:b1:ed:cc:fc:8b:d0:1a:16:95:2b:f0:c0:f5:09:b6:bc:
0e:b4:d5:fa:46:66:b2:7b:78:7d:09:b0:56:64:73:57:ce:b7:
27:75:65:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:16 2024 by rpki-client on console-fra.rpki-client.org