Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/MdsCbeEgsEPITYMix4mQ8e7JCVk.roa
File: MdsCbeEgsEPITYMix4mQ8e7JCVk.roa (raw, json)
Hash identifier: O665q4ek00G9tNaDG7EBMUp1Z2DcDY59k4J533XLLcg=
Subject key identifier: 31:DB:02:6D:E1:20:B0:43:C8:4D:83:22:C7:89:90:F1:EE:C9:09:59
Certificate issuer: /CN=01838307f79acdc59ad6eb82e8c8aaefa3d88289
Certificate serial: 0D945012
Authority key identifier: 01:83:83:07:F7:9A:CD:C5:9A:D6:EB:82:E8:C8:AA:EF:A3:D8:82:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYODB_eazcWa1uuC6Miq76PYgok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/MdsCbeEgsEPITYMix4mQ8e7JCVk.roa
Signing time: Sat 01 Jan 2022 04:55:07 +0000
ROA not before: Sat 01 Jan 2022 04:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13189
IP address blocks: 185.199.136.0/22 maxlen: 22
82.100.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227823634 (0xd945012)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01838307f79acdc59ad6eb82e8c8aaefa3d88289
Validity
Not Before: Jan 1 04:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31db026de120b043c84d8322c78990f1eec90959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:95:f5:08:35:59:4f:4c:9e:b6:5f:89:a4:c3:
44:a6:30:a1:7b:22:b3:a5:be:0c:11:fc:72:0c:47:
e0:c6:a5:02:9d:9f:71:fe:0b:d5:b3:b5:2f:16:3e:
62:77:b3:6e:7a:eb:df:11:93:3a:79:40:ba:48:c5:
26:34:94:83:b0:2d:01:eb:92:ca:6d:3a:b0:66:e2:
b9:27:c7:04:d5:53:28:a1:ba:95:2c:5d:25:11:9d:
52:92:6b:4a:ee:e0:90:59:77:b0:3c:9c:68:20:3a:
15:66:89:f2:4b:84:e1:c5:a5:b2:7e:da:28:cd:77:
ea:0b:49:85:e6:5d:9c:f7:d1:45:5e:af:06:e9:26:
65:8b:ee:b0:c9:f2:56:92:93:69:3c:09:ae:fc:54:
a0:58:b3:31:33:27:b3:84:73:d1:4d:b1:62:19:2c:
b0:a3:7b:e4:54:8d:b4:8e:f6:d8:b1:91:96:05:e1:
ce:12:91:74:f4:f3:3f:d5:14:33:3e:7e:bd:2b:f6:
c7:75:55:a5:1c:a5:6e:22:89:3f:e9:49:c9:e8:82:
12:02:bb:8d:cd:95:79:ee:ad:97:74:c3:bb:92:ef:
dc:56:3c:d7:03:40:a3:ab:97:61:fc:52:e5:4d:71:
3f:7c:33:53:db:e2:21:b9:0f:88:ac:9f:63:ef:d9:
05:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DB:02:6D:E1:20:B0:43:C8:4D:83:22:C7:89:90:F1:EE:C9:09:59
X509v3 Authority Key Identifier:
keyid:01:83:83:07:F7:9A:CD:C5:9A:D6:EB:82:E8:C8:AA:EF:A3:D8:82:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYODB_eazcWa1uuC6Miq76PYgok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/MdsCbeEgsEPITYMix4mQ8e7JCVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/9f61be-8c31-49ba-b424-ca3d4aae6f09/1/AYODB_eazcWa1uuC6Miq76PYgok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.100.64.0/18
185.199.136.0/22
Signature Algorithm: sha256WithRSAEncryption
98:c3:bb:64:6a:95:e6:fc:99:3c:1b:f0:bc:99:b5:f0:6c:a6:
0a:cd:ca:7e:c0:e0:fb:1e:1a:00:43:2d:81:77:34:11:89:ce:
4d:75:f3:dd:8c:a3:4f:1a:9c:2a:7d:fb:85:d3:00:a0:4f:fa:
e0:dc:d1:42:90:19:d4:f9:32:b8:11:95:af:c1:ab:a9:d7:a5:
fb:44:cc:ac:41:f6:56:39:ca:74:12:51:95:23:48:25:17:38:
6d:c9:9b:24:2f:17:61:ec:94:d0:d1:f7:29:79:9b:34:9f:aa:
0a:56:c7:01:5a:12:c0:21:c7:03:ee:70:a4:21:51:36:34:00:
71:6b:a2:f6:cb:69:6c:6b:f5:d0:41:5a:35:93:3e:eb:c6:f7:
74:20:fa:36:c7:8c:4c:0c:a7:d9:26:7d:45:53:c6:c0:13:d2:
e0:88:28:9f:e5:64:70:87:79:b9:6a:77:e8:c4:df:f1:64:dd:
99:89:44:82:85:7d:4c:67:b5:e6:9b:e6:90:9c:1d:47:d6:80:
63:1a:cf:0d:72:d4:b7:0b:83:e5:8b:27:d2:a6:51:48:da:07:
3d:7f:c7:80:47:b2:4d:f9:f7:5d:36:3b:e2:ff:9f:2e:0d:41:
03:c3:bd:e5:b1:c8:1c:8a:94:39:29:d7:d5:46:0f:9b:3a:66:
b8:cc:95:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:41 2023 by rpki-client on console-ams.rpki-client.org