Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/mKkL0xSUp9W5xnwrc1Mavtss9uw.roa
File: mKkL0xSUp9W5xnwrc1Mavtss9uw.roa (raw, json)
Hash identifier: 1Iw2pSu5L6w/EXADiWCx8jmlmeXTcJOQN4+G7bsFjIU=
Subject key identifier: 98:A9:0B:D3:14:94:A7:D5:B9:C6:7C:2B:73:53:1A:BE:DB:2C:F6:EC
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 045C56C9
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/mKkL0xSUp9W5xnwrc1Mavtss9uw.roa
Signing time: Sat 19 Feb 2022 10:00:21 +0000
ROA not before: Sat 19 Feb 2022 10:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56909
IP address blocks: 185.244.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73160393 (0x45c56c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Feb 19 10:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98a90bd31494a7d5b9c67c2b73531abedb2cf6ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ca:a5:27:c8:ee:c2:f5:4f:d1:7a:a3:b9:2e:
1d:30:18:d2:54:7b:3f:b3:b3:81:01:2f:c8:00:05:
27:c1:63:35:56:5e:e2:c6:8a:9b:04:2d:96:c7:d8:
61:5e:d0:a2:9b:a7:27:b4:0c:c3:87:9d:61:a6:8c:
b2:2a:e7:de:a4:8f:ad:ee:e9:43:a1:f7:f7:f3:46:
26:d9:52:58:88:0d:e6:fe:3b:4f:89:9e:cd:ed:6f:
b9:6d:d0:29:c7:15:e9:25:62:eb:d3:77:04:87:49:
7f:66:42:48:a0:9a:b6:65:76:8e:6b:af:4c:81:09:
1a:34:7e:d8:9f:3b:fc:06:73:0b:5c:50:0e:79:8b:
db:d1:22:15:8f:93:78:df:76:ae:c3:bd:38:a2:d5:
80:87:56:ca:7b:fc:be:c3:2e:d3:c1:bc:34:bd:a7:
e7:5f:bb:5a:db:b1:51:a5:bd:cc:99:41:42:62:1e:
fc:b9:a6:3f:4b:a4:db:c9:9a:6c:a6:b6:70:24:9c:
48:ad:ae:6c:2b:4d:35:8e:e0:12:bd:3b:d3:10:fe:
2a:cb:be:8b:4c:41:81:d0:19:f0:8b:35:d4:4f:f5:
97:2a:33:1c:01:36:03:bb:ef:c5:ee:8a:ce:bf:cf:
c7:48:9f:2f:c5:9c:d9:e2:b2:08:c7:62:da:b9:25:
19:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A9:0B:D3:14:94:A7:D5:B9:C6:7C:2B:73:53:1A:BE:DB:2C:F6:EC
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/mKkL0xSUp9W5xnwrc1Mavtss9uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.234.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:fb:08:67:d6:89:f5:b9:3f:53:c8:b3:21:e1:6e:ae:d3:06:
4a:42:3b:f9:9b:e1:20:6b:5b:bd:d7:6c:f2:2e:41:0c:ff:c3:
d9:28:6f:41:f3:49:3c:ab:4b:38:c7:b6:4b:2f:79:82:34:66:
1e:59:47:d4:01:0a:bc:12:7b:9b:12:0c:38:21:d0:4d:89:e7:
4a:8f:0e:4d:19:59:cb:ca:16:48:d7:ac:93:d9:89:cf:f3:20:
25:93:f5:50:aa:ce:e2:3a:ea:eb:ba:f2:75:86:ef:17:d6:69:
0c:4c:a7:6b:44:94:ff:6c:15:24:03:9f:4b:1e:30:a4:53:47:
cf:f3:4e:2a:1f:b5:7a:9d:e2:96:32:c4:06:2d:58:84:4b:7f:
ce:0a:f4:b0:9e:bf:a3:69:d3:b2:4a:d7:db:51:b4:8c:06:ab:
b7:06:9a:42:f2:29:a6:c2:20:a5:34:13:d1:2e:ad:ae:32:eb:
30:c9:fd:6b:5f:70:7d:da:40:ff:8a:ec:6a:27:5c:58:31:13:
ba:06:0b:68:59:da:0b:ec:a9:32:77:06:cb:0c:89:c2:86:ca:
e7:d5:5b:0f:c1:40:5b:30:e7:72:c2:39:bd:0a:2d:e4:fc:ec:
13:77:c0:40:ef:9a:5b:39:9a:3a:46:25:ab:df:71:82:9c:2e:
20:7e:0b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org