Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/bM_TskBNPiyWnuuLcAQj3xkav4s.roa
File: bM_TskBNPiyWnuuLcAQj3xkav4s.roa (raw, json)
Hash identifier: Qv85OiB2Iw1ChjMTCqJZVjxDvIfB2AJDEBFQLwHPpAM=
Subject key identifier: 6C:CF:D3:B2:40:4D:3E:2C:96:9E:EB:8B:70:04:23:DF:19:1A:BF:8B
Certificate issuer: /CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38
Certificate serial: 0B62F83A
Authority key identifier: 31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/bM_TskBNPiyWnuuLcAQj3xkav4s.roa
Signing time: Thu 27 Jan 2022 15:02:26 +0000
ROA not before: Thu 27 Jan 2022 15:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.255.11.0/24 maxlen: 24
202.22.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191035450 (0xb62f83a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38
Validity
Not Before: Jan 27 15:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ccfd3b2404d3e2c969eeb8b700423df191abf8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0a:12:e3:c6:02:68:73:b9:07:d7:1d:5f:35:
e8:dc:5f:11:2f:5c:a3:e8:1c:d9:c2:0d:72:37:b9:
df:ad:99:cf:0f:69:14:8d:1c:1a:af:60:7f:96:e3:
c2:7f:b9:24:18:0d:5e:d9:88:59:bd:4e:37:25:f4:
d2:aa:dd:f5:55:92:0a:94:a1:ae:77:44:64:eb:d0:
87:0f:3d:fe:b4:14:b0:01:0e:ac:1a:a8:19:47:bc:
19:bb:89:dd:10:7c:ab:28:46:6b:00:0f:47:2e:69:
7a:88:15:2f:b2:99:38:0d:79:ae:2a:11:07:d3:8e:
6c:c8:ee:66:bc:de:0d:79:b4:c7:8b:2f:57:e7:c6:
3c:8c:89:f9:39:2d:ac:a9:1c:14:21:d2:87:39:5c:
87:a0:62:ce:87:3f:93:a2:e2:3e:5d:a6:08:34:8b:
8d:f8:e3:a2:d1:4e:5a:21:89:e4:59:9c:31:81:5c:
08:37:df:44:29:59:bd:e1:a5:96:b5:d7:80:60:43:
e9:89:26:ad:02:3e:1e:6f:d8:b4:c1:80:52:a3:5d:
79:c5:7d:23:bd:97:76:e1:d6:88:26:42:16:e8:f5:
07:35:17:d2:6d:a9:cd:8a:5a:29:8a:65:f6:c3:e1:
fe:33:9d:0a:61:1c:b9:04:29:b3:fa:00:1a:42:d9:
7e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:CF:D3:B2:40:4D:3E:2C:96:9E:EB:8B:70:04:23:DF:19:1A:BF:8B
X509v3 Authority Key Identifier:
keyid:31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/bM_TskBNPiyWnuuLcAQj3xkav4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/MeubLbSjvd-MkvxQuXEwQ91W3Dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.11.0/24
202.22.167.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:bd:7c:1a:dc:5d:47:a6:62:7a:ed:bd:79:8d:02:2a:74:4e:
03:08:cf:18:c5:fa:45:18:0d:65:16:87:48:46:da:2e:66:86:
5c:19:f1:7b:36:10:a9:90:a6:4d:f8:a3:b7:d6:ed:c9:0d:91:
db:8e:2f:dc:f3:af:4f:29:e9:15:1c:75:4f:6c:06:e5:7d:c7:
d5:20:be:79:7b:38:59:84:5a:0c:f3:c2:18:0d:0e:1a:d2:ea:
3e:d3:8c:87:e1:65:a3:8f:ef:2e:25:48:55:90:4f:d0:56:ef:
f1:ce:c8:bd:a5:db:01:ac:90:9c:cc:27:7f:8e:3b:1b:7b:b6:
b4:c0:a4:51:05:02:dc:fb:06:b2:28:c5:b3:c4:93:48:41:b0:
08:52:20:c2:43:a8:af:5c:eb:8e:14:41:62:84:3d:da:19:5a:
2b:96:57:bc:7d:72:e3:c2:a6:0e:d5:5e:a0:11:65:96:6f:75:
73:34:48:24:f5:9c:65:d3:8f:40:1f:47:24:b9:aa:a5:6d:fd:
01:55:14:c2:cf:25:b3:29:20:72:79:d1:54:d7:c9:1b:07:61:
aa:ad:d0:02:94:23:b7:a0:21:25:e1:0d:54:10:76:23:21:aa:
4a:9b:de:44:12:e8:44:fd:29:74:c6:4b:71:df:aa:a0:fe:62:
e8:8a:67:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:18 2023 by rpki-client on console-fra.rpki-client.org