Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/MCWUqVctoIebx2GmugljjeIMvTg.roa
File: MCWUqVctoIebx2GmugljjeIMvTg.roa (raw, json)
Hash identifier: ECYVbn6WkDPSaMS4aJ0F35ZfyVmVvmkjd6NB4xikXiU=
Subject key identifier: 30:25:94:A9:57:2D:A0:87:9B:C7:61:A6:BA:09:63:8D:E2:0C:BD:38
Certificate issuer: /CN=63e24977993c15bcc134b174937f41b2129f56d1
Certificate serial: 0210BE
Authority key identifier: 63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/MCWUqVctoIebx2GmugljjeIMvTg.roa
Signing time: Fri 13 May 2022 19:47:40 +0000
ROA not before: Fri 13 May 2022 19:47:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210771
IP address blocks: 185.208.144.0/24 maxlen: 24
185.208.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135358 (0x210be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e24977993c15bcc134b174937f41b2129f56d1
Validity
Not Before: May 13 19:47:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=302594a9572da0879bc761a6ba09638de20cbd38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f7:1b:51:6c:7b:64:d1:d6:fb:9c:f3:0e:2b:
0c:d2:88:57:1d:7c:ea:13:4d:df:d7:d0:db:da:7b:
b6:66:7c:3a:e8:5d:04:04:92:cf:92:76:18:2c:25:
89:e9:2c:88:cb:4e:f0:1d:c3:47:8d:4b:be:23:fb:
65:66:5f:0d:3d:d4:e5:37:41:2c:bd:73:c6:dc:48:
bd:dd:cc:7b:9f:0e:e1:05:0f:47:47:e4:dd:ea:f0:
39:1f:1d:88:2b:ff:ec:f1:90:f3:e7:50:b6:d5:0d:
ba:be:57:bb:8b:7f:8a:b2:43:7e:72:af:5b:c2:a5:
a3:76:23:d0:89:ed:a0:15:d9:b2:54:64:58:67:b2:
2e:ff:f9:6e:23:4f:52:2f:7b:6c:9e:29:7e:bf:46:
c7:45:bc:97:5e:80:6a:f7:47:7f:18:a1:c2:fe:e3:
58:2a:15:37:56:8b:2d:43:7c:18:d1:31:df:97:44:
f1:8d:29:9a:87:72:14:81:a3:2f:89:16:f1:30:73:
25:d0:53:7b:d7:02:e2:d3:33:fd:56:b3:8d:b7:d2:
32:cd:38:e0:57:78:96:26:fa:65:72:24:26:70:a8:
1f:b5:50:aa:8c:90:52:22:82:37:c4:e9:7f:dc:f5:
69:3f:5d:06:83:ac:7b:3a:42:4b:e0:20:a6:e2:0f:
e3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:25:94:A9:57:2D:A0:87:9B:C7:61:A6:BA:09:63:8D:E2:0C:BD:38
X509v3 Authority Key Identifier:
keyid:63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/MCWUqVctoIebx2GmugljjeIMvTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/Y-JJd5k8FbzBNLF0k39BshKfVtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.144.0/24
185.208.147.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:64:b3:9e:8f:d5:cf:e7:de:00:13:15:cf:58:c1:98:22:2c:
d6:26:14:9e:d5:16:9b:f7:97:7c:33:e7:33:9b:92:9a:3e:8e:
6e:21:b9:7a:73:2e:6d:8e:6f:a2:72:47:33:0c:de:64:3a:a7:
9e:55:b5:e0:fa:8a:37:1d:4f:68:20:72:2d:98:fd:a2:72:33:
77:bd:2d:27:70:72:f5:fd:57:ab:df:30:16:66:0a:5c:a9:bc:
b8:9c:8e:5b:dd:0b:4c:a6:ae:a1:78:22:8c:1e:be:2c:23:e0:
85:25:85:52:25:2c:06:2a:c5:8c:71:8e:8a:81:dd:a5:53:9b:
0c:d0:d5:e9:15:23:05:73:ba:14:b3:37:e5:a4:94:c4:da:c5:
5b:d0:2e:ae:57:12:d8:29:3d:67:a3:c0:4f:ea:4b:a7:c1:97:
1f:02:b2:03:9d:b4:54:83:0c:ac:cf:6b:b1:43:4f:f2:9d:f7:
20:20:fd:e8:07:0f:c0:a0:2c:24:49:c6:9c:9d:cc:97:27:ee:
b1:a8:37:e4:d1:3e:e0:ed:dc:d2:d7:da:c3:71:73:1d:0d:52:
04:33:bc:bc:f9:85:c7:2d:3e:62:54:d4:94:80:78:33:65:45:
ac:64:06:29:b6:5d:d3:a9:ac:bd:9c:f0:4f:ba:8d:c1:a7:e0:
63:4f:e2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:13 2024 by rpki-client on console-fra.rpki-client.org