Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/cc8e7a-e413-43ff-aa59-0914ad24a3e4/1/MuhEgNQIplu9iCfEaW-V8JKHyas.roa
File: MuhEgNQIplu9iCfEaW-V8JKHyas.roa (raw, json)
Hash identifier: KsmX2mCAHNkH8jChMsRwXA+Y5Ro1pF919cFbdRYGZOQ=
Subject key identifier: 32:E8:44:80:D4:08:A6:5B:BD:88:27:C4:69:6F:95:F0:92:87:C9:AB
Certificate issuer: /CN=a3c71c86459de74bbd35a3ccbfd8ae5d9cb4d2d8
Certificate serial: 5D67B7
Authority key identifier: A3:C7:1C:86:45:9D:E7:4B:BD:35:A3:CC:BF:D8:AE:5D:9C:B4:D2:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8cchkWd50u9NaPMv9iuXZy00tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/cc8e7a-e413-43ff-aa59-0914ad24a3e4/1/MuhEgNQIplu9iCfEaW-V8JKHyas.roa
Signing time: Sat 01 Jan 2022 03:01:51 +0000
ROA not before: Sat 01 Jan 2022 03:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211080
IP address blocks: 185.182.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6121399 (0x5d67b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c71c86459de74bbd35a3ccbfd8ae5d9cb4d2d8
Validity
Not Before: Jan 1 03:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32e84480d408a65bbd8827c4696f95f09287c9ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:52:ae:2d:fb:31:f6:0e:72:a9:98:0a:83:74:
d3:37:59:d4:8e:cc:a3:73:32:0d:f5:80:79:8b:04:
69:c3:97:cf:e2:45:a0:6f:b5:be:05:1d:56:e4:0e:
cf:fc:90:41:ea:78:9b:44:8b:1b:16:33:0b:b7:c8:
ec:4e:f9:e6:72:cd:9e:95:f2:c6:7f:41:ad:ae:af:
b3:23:43:4a:3f:dd:af:48:0d:fb:fb:48:58:33:d8:
a8:00:f9:d3:00:dc:7a:96:42:30:7a:df:18:62:2c:
b2:45:7a:34:2b:aa:79:1b:a0:1b:06:6f:b6:14:14:
aa:b3:04:16:f6:52:34:93:9b:0b:59:e7:22:c8:63:
f7:ca:58:f3:20:33:00:6a:87:bd:a0:32:e5:27:f3:
f4:ab:42:0d:a9:55:82:7e:64:cf:0a:ce:56:0e:bc:
9d:0a:b7:21:79:39:b3:63:a7:cc:3a:41:85:ab:d9:
07:94:7c:95:80:80:54:58:05:cc:a0:0e:8b:98:55:
b5:3d:4d:77:cd:e6:90:db:fb:98:e6:50:11:5c:51:
90:1e:68:8a:78:ad:19:a4:29:76:8f:93:fc:cb:80:
41:aa:a8:63:75:b5:17:15:10:31:ff:be:7f:f1:28:
06:fe:da:2a:0b:34:58:19:e2:ac:d2:1c:02:34:e2:
ce:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E8:44:80:D4:08:A6:5B:BD:88:27:C4:69:6F:95:F0:92:87:C9:AB
X509v3 Authority Key Identifier:
keyid:A3:C7:1C:86:45:9D:E7:4B:BD:35:A3:CC:BF:D8:AE:5D:9C:B4:D2:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8cchkWd50u9NaPMv9iuXZy00tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cc8e7a-e413-43ff-aa59-0914ad24a3e4/1/MuhEgNQIplu9iCfEaW-V8JKHyas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cc8e7a-e413-43ff-aa59-0914ad24a3e4/1/o8cchkWd50u9NaPMv9iuXZy00tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.158.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:32:b4:81:8f:4c:bc:36:b7:9a:e9:93:8f:5d:e4:e0:a2:48:
21:e0:f8:20:64:33:d6:fb:c9:57:e1:04:c6:e5:ff:6c:15:77:
b8:47:5a:f1:5b:f0:1f:38:c6:ae:b2:14:6b:4b:05:d1:83:10:
05:52:5b:f0:19:7c:51:a1:2a:d4:6c:6b:2e:d7:f2:24:ec:3d:
d9:2a:7b:d0:22:5f:4b:5f:a4:5f:b9:87:46:aa:8b:0f:7f:19:
ab:81:6e:c3:89:5b:0a:ff:bb:63:f0:32:ea:fd:76:ba:2e:c9:
88:7a:24:92:dc:8b:65:74:fa:ec:8a:c2:e6:82:7f:e6:8a:fb:
fd:39:f1:9d:81:a9:2b:1d:f2:9e:36:67:7a:17:40:74:1d:da:
29:2d:5f:53:4d:8c:9e:9d:ce:5d:b4:d1:61:d2:c3:70:a6:e5:
fe:0d:d6:97:a9:ea:9c:1a:a4:5e:d2:ab:f1:68:0b:26:d0:e5:
a2:9c:12:a1:93:37:24:68:bc:74:de:1b:aa:d9:34:f4:eb:71:
fd:36:e3:8c:52:b6:cb:19:91:ae:f5:2e:76:00:68:58:16:dd:
cf:3c:e9:4b:2a:af:b9:a7:f1:6d:76:82:8e:34:05:57:c4:b7:
15:87:a3:60:1f:bf:a1:07:02:fc:e0:23:69:58:6d:fc:bf:af:
40:aa:6c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:42 2024 by rpki-client on console-ams.rpki-client.org