Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/m2XmANS6ET-p3N1vW-7PJ9ecsrs.roa
File: m2XmANS6ET-p3N1vW-7PJ9ecsrs.roa (raw, json)
Hash identifier: h0b1Rk5ZNnRKAU/Ge3j4av0bqGK6Meq3Fnq+/8bnPnA=
Subject key identifier: 9B:65:E6:00:D4:BA:11:3F:A9:DC:DD:6F:5B:EE:CF:27:D7:9C:B2:BB
Certificate issuer: /CN=36eaa00ea777098b1bf036756d640e9d31d63b3b
Certificate serial: 0A3472B4
Authority key identifier: 36:EA:A0:0E:A7:77:09:8B:1B:F0:36:75:6D:64:0E:9D:31:D6:3B:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/m2XmANS6ET-p3N1vW-7PJ9ecsrs.roa
Signing time: Sat 01 Jan 2022 02:58:46 +0000
ROA not before: Sat 01 Jan 2022 02:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204979
IP address blocks: 185.234.0.0/22 maxlen: 22
185.234.0.0/24 maxlen: 24
2a01:40:4949::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171209396 (0xa3472b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36eaa00ea777098b1bf036756d640e9d31d63b3b
Validity
Not Before: Jan 1 02:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b65e600d4ba113fa9dcdd6f5beecf27d79cb2bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:72:8a:6f:0c:3c:9c:2b:68:cd:17:9e:1c:86:
ff:7b:e2:f9:39:c7:c0:ee:91:12:d2:02:03:de:f9:
05:d2:81:5a:7d:db:04:70:50:02:8f:7e:5b:d8:db:
8f:27:21:f9:a3:25:ce:66:ff:1b:1a:3a:3b:d0:f6:
3f:8e:42:ad:33:56:c4:29:98:54:db:89:99:87:3a:
e3:4e:ed:40:b3:5c:45:b0:57:22:b8:f6:a8:2d:3a:
08:36:26:30:ea:30:2c:33:c5:6f:9d:12:e5:47:80:
4b:5c:c4:3c:c9:99:d0:d3:1c:19:4b:40:0b:bc:e1:
2b:eb:af:18:40:65:fc:7f:37:ea:d3:63:26:66:ac:
3b:30:73:79:f5:d9:9b:7b:f8:02:ba:69:10:e1:c6:
c4:1d:b2:06:cf:60:c1:18:d4:a4:70:38:bf:91:b5:
e5:96:6e:89:1f:4c:fe:a6:44:f6:da:f9:d6:2b:71:
73:17:3f:0f:9c:fb:f9:7c:f9:d3:4a:d0:bd:8a:01:
9d:26:b3:8f:06:a0:ca:30:ba:7d:00:53:e6:b7:19:
ef:50:3d:18:1d:96:2a:e7:dd:62:5f:56:a7:fc:b1:
cd:99:96:60:cd:ee:8d:c1:5d:eb:56:a9:08:23:1d:
84:09:e0:07:5e:34:1f:54:30:dd:51:dc:69:2e:e4:
6a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:65:E6:00:D4:BA:11:3F:A9:DC:DD:6F:5B:EE:CF:27:D7:9C:B2:BB
X509v3 Authority Key Identifier:
keyid:36:EA:A0:0E:A7:77:09:8B:1B:F0:36:75:6D:64:0E:9D:31:D6:3B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/m2XmANS6ET-p3N1vW-7PJ9ecsrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/410232-b1fd-4137-832d-bdb21313c3ec/1/NuqgDqd3CYsb8DZ1bWQOnTHWOzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.0.0/22
IPv6:
2a01:40:4949::/48
Signature Algorithm: sha256WithRSAEncryption
9d:3e:39:16:ab:cd:bf:a4:ff:59:79:57:6c:50:98:cc:f8:7e:
8a:32:e1:df:04:49:f4:89:24:69:4f:69:86:4c:82:57:c9:93:
75:e1:77:f5:42:8a:58:1d:20:7c:fe:a7:d5:ad:f3:bc:af:bd:
7a:8b:4c:52:15:77:92:70:76:0c:35:fc:9f:77:95:d1:b4:c3:
dc:70:3b:72:db:a6:12:42:0e:d5:05:6f:5b:fa:77:cb:9e:3f:
ab:53:a0:e3:3c:b7:cd:fc:a3:75:a9:3f:ec:c8:d2:50:bc:aa:
f1:a3:e4:ee:f9:58:23:90:a2:fc:c5:53:a4:51:0a:17:eb:49:
88:03:51:78:23:f7:70:61:c0:f5:2e:c9:b3:66:b0:0d:2a:27:
6f:dc:a0:50:17:65:54:1f:b9:a0:56:eb:58:82:aa:c3:bb:2e:
ae:49:5e:33:17:80:be:9f:2f:38:ac:bb:8b:d5:96:74:34:6c:
7e:86:d0:a3:d7:89:be:a5:35:68:95:81:e1:86:59:c8:40:e9:
6b:f8:47:a5:cf:62:3c:9a:f1:e8:81:25:67:fe:f9:69:68:50:
86:e1:9f:7a:84:26:73:e2:ab:3e:56:93:02:bc:d0:b7:f2:f2:
36:22:9e:05:18:1e:a7:95:31:25:cc:0b:51:3d:38:4a:79:2b:
55:3a:16:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:36 2023 by rpki-client on console-ams.rpki-client.org