Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/MZEraRCcAjj0CBcvm1Mb3C_ztok.roa
File: MZEraRCcAjj0CBcvm1Mb3C_ztok.roa (raw, json)
Hash identifier: yPujU84cB+wlPaF7e66uuYqwnDxvEALwU21qDLBH1Iw=
Subject key identifier: 31:91:2B:69:10:9C:02:38:F4:08:17:2F:9B:53:1B:DC:2F:F3:B6:89
Certificate issuer: /CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Certificate serial: 0BA7EEC9
Authority key identifier: 15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/MZEraRCcAjj0CBcvm1Mb3C_ztok.roa
Signing time: Wed 16 Feb 2022 08:43:51 +0000
ROA not before: Wed 16 Feb 2022 08:43:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203147
IP address blocks: 185.150.216.0/23 maxlen: 23
185.150.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195555017 (0xba7eec9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Validity
Not Before: Feb 16 08:43:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31912b69109c0238f408172f9b531bdc2ff3b689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0e:dd:2b:1b:38:b1:5d:8e:bb:33:e5:53:14:
14:6a:9f:5d:6b:4d:98:6a:05:fe:26:f5:e1:46:9c:
1c:2b:11:b8:75:5d:9f:61:95:7b:8b:68:12:b9:f7:
ff:9b:1d:35:9d:25:76:4c:e3:c9:6a:1b:0e:e8:23:
35:ea:ac:81:8b:4f:08:d5:e0:f0:97:1a:23:28:61:
29:21:5e:4e:41:8b:8a:b2:a4:fc:87:94:c3:99:92:
54:d0:4f:3e:b6:4a:f5:49:db:9a:cc:01:ee:19:58:
34:83:2f:b0:9d:95:e4:ef:ef:78:07:00:34:11:69:
fe:1d:40:8b:74:7b:37:fe:c1:20:9d:5d:54:94:d9:
af:da:08:87:21:c3:f9:84:83:3c:0f:ef:d6:9e:d7:
31:8c:68:55:59:09:28:16:c1:85:28:ff:e4:52:12:
05:4d:a1:df:a5:8d:a4:39:6a:5b:a0:b8:51:14:df:
d6:d0:8d:2b:02:db:c6:40:6f:ff:05:45:b5:b1:e5:
e2:ec:f0:ce:28:68:74:1f:68:82:89:49:37:f7:f4:
43:97:1d:20:f7:9c:f1:aa:bb:30:65:28:19:f3:a4:
1f:04:fc:db:ce:55:18:28:d2:bd:2e:2c:f4:76:ac:
d6:db:b8:bf:35:f6:c9:a5:f9:19:77:9e:ac:a6:3d:
b2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:91:2B:69:10:9C:02:38:F4:08:17:2F:9B:53:1B:DC:2F:F3:B6:89
X509v3 Authority Key Identifier:
keyid:15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/MZEraRCcAjj0CBcvm1Mb3C_ztok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.216.0-185.150.218.255
Signature Algorithm: sha256WithRSAEncryption
52:9e:0d:50:3f:80:6d:7e:57:f8:26:88:14:e1:eb:e5:85:a1:
d0:6b:8a:66:4f:ce:8d:f1:0d:9b:7d:60:8c:b1:9d:ad:36:2d:
50:e4:11:e0:af:35:e0:33:76:1a:4d:9b:f9:8f:a0:37:0d:18:
ee:2c:c2:c9:ad:cb:e9:13:f3:6a:d8:89:ef:53:c1:8a:b0:e2:
18:be:4c:68:36:ff:22:82:d7:02:af:dc:ab:90:7a:75:82:30:
ca:a1:e8:9c:88:41:33:b1:e2:23:0a:23:3c:a5:14:e4:98:bc:
e8:87:ac:5e:12:c6:fd:e5:ad:a9:14:39:ff:1c:57:44:45:bd:
fb:1d:b0:e5:b8:f6:10:38:97:dd:df:5a:18:4d:1e:4c:75:6a:
f7:53:a2:f2:70:10:6d:a0:88:d6:c3:1d:7b:13:7f:92:7b:7e:
eb:0f:d8:ef:f2:3e:63:95:b1:74:95:ca:a1:16:b1:02:87:e3:
46:cf:ea:8b:9f:60:ef:d6:d4:50:6a:55:0f:dd:f7:b1:54:a4:
61:a5:67:21:8f:95:6a:40:0c:93:1e:c3:42:ea:f5:f6:34:93:
fe:e9:95:05:d0:bd:db:c1:2c:40:1b:4a:b2:a2:05:f4:d1:11:
73:6a:f7:39:78:5b:78:97:a0:a3:80:68:51:52:5a:73:0f:ee:
e7:1d:31:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:33 2023 by rpki-client on console-ams.rpki-client.org