Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mhL9EJ4Nh-v4BzLPtXmbz-NGUbk.roa
File: mhL9EJ4Nh-v4BzLPtXmbz-NGUbk.roa (raw, json)
Hash identifier: n757FQUg1HvxIvyW67rp9v6D8F7WqDR9PxgSqfqrGPE=
Subject key identifier: 9A:12:FD:10:9E:0D:87:EB:F8:07:32:CF:B5:79:9B:CF:E3:46:51:B9
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 05E08336
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mhL9EJ4Nh-v4BzLPtXmbz-NGUbk.roa
Signing time: Fri 14 Jan 2022 15:47:54 +0000
ROA not before: Fri 14 Jan 2022 15:47:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98599734 (0x5e08336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 14 15:47:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a12fd109e0d87ebf80732cfb5799bcfe34651b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bb:cd:17:48:da:ec:d5:34:3d:6f:a7:19:dd:
9b:1c:c5:5e:01:20:1b:8d:0c:92:c7:a6:5d:77:db:
66:f5:d5:e0:06:1d:b6:2e:f0:ba:05:b0:3b:12:83:
b7:f1:5a:6b:f8:d8:df:a7:1d:d7:a2:e2:71:06:61:
92:f4:cb:cf:eb:0a:72:89:41:45:3e:cb:7a:e8:06:
4d:af:dd:0e:7c:2a:97:ae:bb:c1:a4:68:ee:69:4a:
5e:bb:dc:d5:b8:55:e9:7f:c1:74:9b:1d:bb:49:b4:
22:88:71:3b:cf:2f:2c:97:5e:b0:db:9b:b1:a7:9c:
27:64:46:91:9f:65:93:fb:46:5a:0a:53:19:37:e8:
c4:72:90:aa:ff:e8:31:50:c6:79:94:a9:a8:e9:65:
06:d2:83:24:99:49:ab:df:b0:5e:66:c9:9f:d9:44:
6a:bd:e2:2a:c2:6e:7a:15:a2:d0:0c:80:c3:95:6e:
80:8a:cc:db:c9:ca:56:9f:ca:31:71:a9:84:1d:99:
f9:5e:2a:1e:82:d0:f7:1b:e4:b8:78:a0:72:28:38:
2e:ad:9e:61:a4:26:d1:bd:a1:73:0c:37:21:ba:7e:
6f:5c:62:7e:70:88:45:87:f3:ef:93:0c:ac:4f:fa:
77:cb:e3:a9:7d:38:dd:05:d3:9e:44:09:b0:6a:69:
8f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:12:FD:10:9E:0D:87:EB:F8:07:32:CF:B5:79:9B:CF:E3:46:51:B9
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mhL9EJ4Nh-v4BzLPtXmbz-NGUbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:97:79:0c:d8:c6:b0:6c:be:2c:cc:2b:e7:f5:8f:f1:25:9c:
ba:ce:0e:30:e9:a7:9a:47:fa:6d:7c:90:a5:38:76:e3:d9:28:
47:f8:9f:d4:b6:23:4b:df:cf:31:3d:a7:e4:19:9a:62:0b:a0:
20:c3:6a:54:17:f5:5d:74:79:a6:31:22:35:78:2a:5b:51:6d:
9d:a7:93:41:59:07:7e:37:6b:70:f1:68:00:f4:f9:a5:11:25:
7e:8a:90:03:20:05:99:bd:34:44:94:0d:d7:a5:a2:00:0e:e8:
e3:59:6d:63:ae:0d:f6:06:da:fe:be:6c:74:9f:c0:a7:4e:37:
8b:64:ad:fa:70:3d:df:8f:bb:dd:78:b8:82:be:a8:4d:41:85:
2d:86:3c:d7:1d:55:bf:0a:7f:d8:23:d3:3a:b2:42:f0:a1:ea:
7e:cc:e7:e4:29:0c:dd:25:a3:00:09:b3:d5:0e:fc:aa:f4:b2:
b1:6f:02:1e:3c:63:32:f2:8b:ba:24:97:09:16:19:ca:0c:b3:
91:e9:d7:a9:8a:6c:5f:61:44:6e:17:6f:7d:20:90:2f:1d:e8:
50:28:12:61:85:c7:3e:63:61:5d:24:71:23:cf:98:f3:91:4f:
21:24:f0:24:f7:a1:f2:9b:57:a3:ac:e7:a1:e7:b0:74:65:db:
8b:a0:10:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org