Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1df8e1-6e80-443c-b6e8-d9f905fdc89a/1/mewtBi2KIo4yYFlotaSVgJnWFIE.roa
File: mewtBi2KIo4yYFlotaSVgJnWFIE.roa (raw, json)
Hash identifier: 9+iWFhpnltu+jqx7rvr4qhqPE7tzI3a6XF4GPCN803U=
Subject key identifier: 99:EC:2D:06:2D:8A:22:8E:32:60:59:68:B5:A4:95:80:99:D6:14:81
Certificate issuer: /CN=2c11a53f6df6300b4912ce13f6fa9b100fce2488
Certificate serial: 03B33AED
Authority key identifier: 2C:11:A5:3F:6D:F6:30:0B:49:12:CE:13:F6:FA:9B:10:0F:CE:24:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LBGlP232MAtJEs4T9vqbEA_OJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1df8e1-6e80-443c-b6e8-d9f905fdc89a/1/mewtBi2KIo4yYFlotaSVgJnWFIE.roa
Signing time: Sat 01 Jan 2022 04:04:21 +0000
ROA not before: Sat 01 Jan 2022 04:04:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212562
IP address blocks: 185.108.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62077677 (0x3b33aed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c11a53f6df6300b4912ce13f6fa9b100fce2488
Validity
Not Before: Jan 1 04:04:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99ec2d062d8a228e32605968b5a4958099d61481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a2:1f:18:e9:91:da:e6:46:bf:f5:bc:0e:e6:
36:da:46:2e:f9:ba:8f:36:d1:84:24:7c:42:ea:64:
92:d6:8f:a9:79:1a:6b:ce:41:cc:56:be:68:22:81:
23:b0:47:67:59:8b:ae:4d:31:b4:af:56:0f:a9:df:
64:df:25:57:ff:cb:3b:82:1d:18:d2:cb:ae:16:0c:
55:16:4f:c4:0a:a9:26:f2:03:06:46:cd:b9:3b:78:
a1:6a:16:4a:8e:b7:93:e4:b1:ef:25:91:cc:e6:3d:
fb:43:ff:e1:31:a3:6c:94:db:18:0b:8c:c4:9f:d3:
57:e1:bb:ec:2e:8b:33:c4:0b:cb:64:d3:de:d9:56:
b9:d1:59:d1:e7:77:d2:2b:74:45:d4:cf:a3:16:0f:
85:b4:b9:90:04:cc:c8:04:f6:cb:4a:0b:cd:1d:31:
b6:2b:ab:b4:ad:ac:00:8c:14:71:a6:f7:55:95:60:
8f:80:95:d9:72:ec:f1:20:00:a8:49:3f:80:82:ba:
ce:ce:09:17:38:e7:5b:76:98:ac:7f:82:3d:a0:ee:
33:84:8d:f4:52:d7:e2:6c:a2:06:f0:be:32:a3:59:
46:ed:72:a9:fe:de:a4:51:ee:91:98:15:6f:98:54:
11:2f:40:cc:45:4d:81:3f:74:16:e1:06:29:38:34:
97:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EC:2D:06:2D:8A:22:8E:32:60:59:68:B5:A4:95:80:99:D6:14:81
X509v3 Authority Key Identifier:
keyid:2C:11:A5:3F:6D:F6:30:0B:49:12:CE:13:F6:FA:9B:10:0F:CE:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LBGlP232MAtJEs4T9vqbEA_OJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1df8e1-6e80-443c-b6e8-d9f905fdc89a/1/mewtBi2KIo4yYFlotaSVgJnWFIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1df8e1-6e80-443c-b6e8-d9f905fdc89a/1/LBGlP232MAtJEs4T9vqbEA_OJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.125.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:28:8b:76:dd:ca:32:db:44:9a:1d:08:dc:17:f0:2b:ce:f1:
55:4e:a6:b5:81:21:83:78:41:1d:46:52:d5:53:fc:12:47:41:
e5:9f:ff:a2:65:9f:aa:e2:b5:ae:f8:62:f0:0b:3a:a8:5a:0e:
f1:3d:ea:ab:93:cd:52:b7:2a:4f:22:8c:65:85:82:32:f5:84:
d2:dd:ee:8f:e1:64:0a:47:c3:62:3b:e1:55:a3:0b:37:89:0d:
16:26:9d:a3:bd:4f:dd:ae:6b:1a:e3:d8:07:fc:22:39:cd:dc:
be:97:4e:5a:c9:77:fc:76:f7:42:f9:ce:3a:f6:e6:1b:64:6e:
67:0d:5d:ee:b4:80:7f:aa:3a:ac:0b:8e:05:15:8f:15:44:29:
1e:29:4a:20:51:55:9f:64:f6:83:c3:55:62:e7:a4:06:de:4a:
4a:c9:34:36:f8:82:f5:69:16:2a:d7:1d:68:a3:46:0b:b6:44:
98:33:63:82:b9:4f:2c:1a:fd:77:cf:bc:65:66:42:7d:cb:00:
4e:8d:d7:7b:64:0d:c1:e6:47:d6:48:b4:c1:7f:4a:e3:d2:34:
18:2d:47:7e:40:24:3b:5b:11:40:ad:b7:b4:97:63:f2:c7:b6:
c6:1b:17:9b:3d:98:6c:d3:21:54:3a:8b:7a:65:f5:95:8c:97:
9b:a2:08:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:23 2024 by rpki-client on console-ams.rpki-client.org