Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mBQQMlzQmnTIxCeeYadCYinLLsU.roa
File: mBQQMlzQmnTIxCeeYadCYinLLsU.roa (raw, json)
Hash identifier: uNQZoQVHkl2lDdBk5VLlgD5JALcGBHzDU9I6/N2M73o=
Subject key identifier: 98:14:10:32:5C:D0:9A:74:C8:C4:27:9E:61:A7:42:62:29:CB:2E:C5
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 066C763A
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mBQQMlzQmnTIxCeeYadCYinLLsU.roa
Signing time: Sat 12 Mar 2022 13:13:19 +0000
ROA not before: Sat 12 Mar 2022 13:13:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.81.28.0/22 maxlen: 24
185.179.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107771450 (0x66c763a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Mar 12 13:13:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=981410325cd09a74c8c4279e61a7426229cb2ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f3:8d:b7:f1:bc:60:73:91:46:b5:12:a6:bc:
5b:15:f8:89:b6:74:8b:9a:f3:98:30:a6:a7:a9:9b:
a5:a2:3c:ed:6d:05:a7:15:67:00:9b:30:7a:ca:a0:
ac:22:46:ef:cc:37:18:a6:8b:8b:63:8a:22:08:15:
f2:b6:a9:9c:1e:38:01:0f:bf:e1:67:01:96:2d:4d:
79:1f:4f:c6:58:bb:38:92:23:e9:97:07:1b:68:df:
6e:fe:38:0d:c8:7b:6b:87:71:c5:6b:54:c2:5e:95:
4f:5e:93:6b:e9:dc:6d:54:07:20:e4:0d:19:51:82:
3d:ce:94:b1:30:5c:20:77:6f:89:5f:42:47:a9:55:
11:29:04:9f:91:43:88:c2:16:7e:27:4d:d0:78:72:
ae:6b:f2:f6:8c:50:b3:da:87:4d:80:b3:65:92:9e:
29:a8:bd:91:21:48:07:52:de:05:58:05:61:cd:39:
3f:c4:0f:28:a7:a8:15:2f:97:44:05:de:4d:f4:16:
a6:20:cc:a4:50:c7:73:5d:b7:ec:03:34:76:6c:99:
38:fd:30:67:03:c3:79:1a:6f:db:06:bc:52:46:85:
e0:81:3d:ae:ac:1e:b8:7a:ad:64:ab:dd:be:d9:7d:
07:9b:f4:e0:ea:39:ec:09:df:9e:4d:5a:91:42:a7:
d2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:14:10:32:5C:D0:9A:74:C8:C4:27:9E:61:A7:42:62:29:CB:2E:C5
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mBQQMlzQmnTIxCeeYadCYinLLsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
185.179.216.0/23
Signature Algorithm: sha256WithRSAEncryption
53:48:ae:60:2a:39:dd:57:75:b2:38:e8:13:f1:02:4a:5a:56:
2f:25:f0:a9:30:7d:ab:dc:a2:e5:4d:05:dd:b5:24:c5:d6:88:
b6:d7:8e:7a:08:e6:eb:f8:fd:47:0e:01:ad:94:99:db:61:3e:
d6:70:b1:c1:d8:0c:01:9c:aa:76:1b:36:e0:4c:83:cc:c1:e7:
bc:de:9f:a0:67:3c:49:6b:c7:05:04:c4:fc:3c:6e:b2:97:7e:
7c:a9:9f:f5:2e:31:59:70:49:59:1b:05:18:e1:4e:fb:09:35:
6e:27:ac:08:cd:cb:29:75:bb:6f:71:33:df:fd:c4:3b:7d:d0:
78:07:c2:6a:2d:58:32:63:43:af:93:b1:56:70:f5:ea:31:98:
65:cb:3a:7e:25:32:f0:d7:10:1e:22:5f:0c:cf:39:47:f8:44:
13:97:6b:d5:50:56:87:f8:e9:aa:33:0d:89:aa:f1:c2:f1:27:
7a:41:89:a2:28:d0:94:5c:3d:16:d1:7c:c1:f4:58:d4:2b:11:
75:41:51:88:8d:51:a9:14:c7:4a:b0:00:e7:97:4e:d6:25:44:
8a:00:e1:fe:3c:75:a9:56:1c:c8:68:ea:fb:1a:14:e6:7a:2e:
7c:34:92:62:88:f8:0a:9b:a8:46:18:2c:2e:be:b7:53:7b:04:
29:a3:8a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:40 2023 by rpki-client on console-fra.rpki-client.org