Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/MQJ9gAmV_hHAv-RyIgUr0x_nXxw.roa
File: MQJ9gAmV_hHAv-RyIgUr0x_nXxw.roa (raw, json)
Hash identifier: aDzSVuKOMbVm6YLEyZSuyK7QHU6mdOQILI9RRiuXxMI=
Subject key identifier: 31:02:7D:80:09:95:FE:11:C0:BF:E4:72:22:05:2B:D3:1F:E7:5F:1C
Certificate issuer: /CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Certificate serial: 0149E7B4
Authority key identifier: AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/MQJ9gAmV_hHAv-RyIgUr0x_nXxw.roa
Signing time: Sat 01 Jan 2022 06:56:24 +0000
ROA not before: Sat 01 Jan 2022 06:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208887
IP address blocks: 185.242.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21620660 (0x149e7b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Validity
Not Before: Jan 1 06:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31027d800995fe11c0bfe47222052bd31fe75f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:d1:f0:58:8b:d8:ef:8e:38:42:cb:92:67:
b3:99:d3:62:4e:b8:da:ce:92:d2:f8:33:97:ca:04:
24:c9:9b:4e:c7:a7:da:8d:37:32:78:90:c5:1f:34:
48:ea:23:38:0b:d6:38:c2:1a:66:1f:99:6e:59:f8:
88:9c:10:b3:e2:8b:b8:1f:7c:06:5b:22:17:b1:93:
b1:95:bf:2a:f3:0e:a0:20:b4:e9:0f:43:01:28:88:
80:e9:fa:ff:8f:1e:12:39:d2:e8:2d:25:f5:6b:58:
42:8f:6a:4c:0d:fc:36:5e:6b:c9:b7:73:eb:80:70:
0d:11:2d:d2:9f:2c:34:25:aa:66:34:89:66:30:97:
58:7e:1d:e5:74:1f:4c:9e:d3:c0:7b:36:3b:53:fd:
7c:08:cf:c1:86:f3:01:b9:11:e6:d3:09:a5:b0:76:
1f:ca:b3:4e:d7:74:0a:9c:f6:bf:01:08:c2:fb:f6:
00:e7:82:1d:49:dd:e0:e3:32:24:06:cf:a2:52:12:
6d:67:4f:46:94:13:41:d6:fc:84:58:e3:70:ee:7f:
ac:1e:ce:f6:ca:f5:61:ad:5e:8e:56:53:41:cd:78:
93:7c:d5:e5:64:41:fd:c4:89:c4:53:57:a9:fe:3c:
71:bf:b3:31:41:dc:c9:bb:f7:f5:3e:3e:16:0d:b3:
19:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:02:7D:80:09:95:FE:11:C0:BF:E4:72:22:05:2B:D3:1F:E7:5F:1C
X509v3 Authority Key Identifier:
keyid:AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/MQJ9gAmV_hHAv-RyIgUr0x_nXxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.192.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:56:42:d6:75:16:ef:d3:01:6b:a9:84:d8:39:00:21:05:40:
38:5a:c6:33:78:4d:91:87:0e:d9:8e:e6:0f:a7:55:0d:cb:2f:
29:10:31:80:c9:d0:42:73:e8:fb:d8:30:a3:19:17:ff:29:e0:
ee:89:68:ec:66:3f:09:50:3a:62:4a:12:f3:01:6e:cb:44:4c:
9d:86:92:e4:1a:d2:04:53:ac:18:2e:14:c9:9e:dc:85:17:0e:
f6:e1:9a:14:0e:f1:e5:1d:24:ef:cc:45:91:97:5c:56:35:86:
bc:3f:1a:43:76:b8:4e:da:7e:5a:88:7f:1c:02:48:7f:9a:cd:
f6:b8:1a:20:47:61:e4:90:74:d3:c7:8e:a0:f1:f1:52:16:f9:
12:20:1e:54:f0:82:b8:db:27:b7:73:0a:b0:b6:7e:21:70:65:
c0:3a:4f:b4:7c:3c:0d:6a:b3:30:a4:0d:01:a6:e8:a8:2b:3f:
71:75:56:19:4b:85:b4:70:18:8b:1f:eb:e1:b2:96:d2:a8:f2:
a8:bf:d5:b7:da:f0:35:24:6b:7f:f7:f7:4e:d7:f0:1c:d8:ae:
f5:c6:7a:3d:c5:7a:44:ec:2d:90:cd:18:7b:23:a0:61:8f:63:
31:62:6b:5b:f5:33:a6:95:0e:57:7f:36:9e:69:4a:3d:b2:c1:
a8:65:53:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:23 2024 by rpki-client on console-fra.rpki-client.org