Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/MTZtholgTvNpNcGmBH81N4FsE-k.roa
File: MTZtholgTvNpNcGmBH81N4FsE-k.roa (raw, json)
Hash identifier: vZowZ4Ww67GBn9GL6annQfm1JszUwH5lXMHwuoSZJmo=
Subject key identifier: 31:36:6D:86:89:60:4E:F3:69:35:C1:A6:04:7F:35:37:81:6C:13:E9
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 0181DE814A7111CEB3A21AF12A38CF27D41D
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/MTZtholgTvNpNcGmBH81N4FsE-k.roa
Signing time: Fri 08 Jul 2022 15:50:23 +0000
ROA not before: Fri 08 Jul 2022 15:50:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 395901
IP address blocks: 185.213.222.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:de:81:4a:71:11:ce:b3:a2:1a:f1:2a:38:cf:27:d4:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Jul 8 15:50:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31366d8689604ef36935c1a6047f3537816c13e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fd:85:c0:10:60:9a:69:35:3f:6d:94:a1:dc:
79:85:c6:39:fb:8c:92:fb:ed:93:b8:a9:6d:67:f1:
83:9e:30:33:54:9c:02:e2:5e:8a:bd:db:d0:8f:7c:
6f:81:a0:6c:cb:35:12:04:af:23:de:8e:7c:d1:78:
cf:f3:33:9a:f2:7a:3b:a3:da:34:9c:59:be:c1:f8:
a9:41:15:3a:08:46:27:13:ab:9e:e0:84:73:2d:64:
2f:aa:bc:00:49:8c:69:e7:aa:9c:4b:94:c0:1c:17:
cc:7b:e4:84:b5:d7:46:03:8c:e0:88:62:03:25:4f:
a7:54:e1:fd:4c:62:23:2c:d8:58:f2:cd:6f:19:61:
48:3a:b9:2a:c5:bf:94:c6:d0:6d:3c:85:fc:28:3f:
df:5b:52:64:ee:df:dd:1f:8a:11:32:ba:58:f2:4e:
da:60:87:a1:4e:9a:f5:a8:57:be:a8:b0:4d:74:02:
c5:1c:cb:51:bc:76:22:16:3c:83:4f:07:a7:c8:10:
30:9a:67:3d:3d:42:2f:97:e6:22:bf:a3:b5:35:16:
d8:82:f6:9b:bc:41:54:fa:b4:0f:1e:d2:d8:3b:4e:
19:42:5b:86:92:2c:45:17:ea:e1:a4:f9:76:3e:a0:
37:67:b7:9c:b2:08:77:f8:3e:d8:41:ca:80:b6:87:
ad:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:36:6D:86:89:60:4E:F3:69:35:C1:A6:04:7F:35:37:81:6C:13:E9
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/MTZtholgTvNpNcGmBH81N4FsE-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.222.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:30:83:48:54:c4:10:3a:f6:c9:ef:cb:2f:69:8f:31:f9:da:
18:5e:f1:70:f9:f8:51:25:f8:49:68:13:f7:3f:3b:7c:e3:6d:
6a:18:83:e9:a0:cf:84:e5:c7:95:9f:81:f1:c8:86:35:69:29:
3b:f7:71:c7:ea:2f:81:55:76:b5:43:02:2a:cb:97:e1:74:1f:
9b:c9:c9:5a:6e:3d:6c:63:25:8c:ee:6d:fd:68:cd:e7:1d:c8:
9c:10:e8:15:9c:3a:85:d9:9e:ad:ac:9d:bf:ea:1d:25:c3:dc:
89:8a:57:be:f5:d1:0e:76:f4:4f:a3:82:7b:45:bc:96:f7:59:
62:ba:80:01:b1:0f:c6:62:7a:d5:55:13:bd:95:e0:b3:cc:56:
12:ea:53:f3:55:62:9a:70:20:13:86:8e:22:3c:bf:0b:d3:ab:
f4:d6:b2:3c:89:1c:1e:d2:f3:1f:f7:86:8c:36:fa:dc:75:48:
e7:59:38:ce:33:f4:ba:36:38:de:54:b6:28:d8:92:a3:0f:0b:
65:31:68:ec:5d:22:b1:e0:68:20:b5:c4:63:42:0b:fd:db:e2:
6c:1c:21:ef:6a:bf:f7:28:10:9c:fb:16:c6:d1:ea:db:79:39:
44:92:6c:60:38:98:64:f8:ad:a7:b2:99:a2:11:ca:fd:01:df:
2a:b1:4b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:23 2024 by rpki-client on console-fra.rpki-client.org