Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/MfbbMK5T9FmPCVp1NIY2rd9JhsY.roa
File: MfbbMK5T9FmPCVp1NIY2rd9JhsY.roa (raw, json)
Hash identifier: g7UtHXc8M0NFiHo9/5tsFdLm5ZmVu6F0Hl1iDqMckR4=
Subject key identifier: 31:F6:DB:30:AE:53:F4:59:8F:09:5A:75:34:86:36:AD:DF:49:86:C6
Certificate issuer: /CN=005f0d44b221f4b11c89db68969f97c3c7154906
Certificate serial: 1283FA0E
Authority key identifier: 00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/MfbbMK5T9FmPCVp1NIY2rd9JhsY.roa
Signing time: Sat 01 Jan 2022 11:58:26 +0000
ROA not before: Sat 01 Jan 2022 11:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203099
IP address blocks: 185.142.60.0/22 maxlen: 22
2a07:2a00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310639118 (0x1283fa0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005f0d44b221f4b11c89db68969f97c3c7154906
Validity
Not Before: Jan 1 11:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31f6db30ae53f4598f095a75348636addf4986c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3e:b4:b7:68:71:00:8e:ab:e6:cc:ac:f4:02:
a4:3b:19:18:cb:bb:04:c0:0c:a5:0d:09:64:bd:8d:
c6:94:5e:86:81:a0:41:4c:13:8f:40:e1:95:ea:b5:
02:dd:e8:1e:ab:7d:23:82:76:fb:a2:4c:37:94:45:
02:f7:9b:2e:4b:61:a9:54:b5:75:a7:e7:36:f4:a5:
5d:a0:f8:99:fe:e3:18:1f:38:63:05:d1:57:40:d4:
87:d4:2d:33:0c:20:11:df:32:e2:c9:7b:c6:19:42:
90:5a:cc:8d:4a:64:9a:63:f0:ac:b4:e9:7b:c1:3c:
c3:05:f5:a5:1f:e1:04:99:4f:ff:22:f5:eb:8a:12:
5b:3a:52:42:69:13:d0:5f:5e:ef:d5:0b:0c:37:79:
da:b0:8b:4e:ab:ba:0b:72:88:20:20:68:b5:2c:fb:
28:1d:0a:d5:03:ad:e8:16:a1:f5:77:ef:77:5a:19:
ff:5f:e7:7c:9b:6b:51:c8:2d:c7:0b:95:a6:bf:b8:
b1:d0:43:97:91:5e:03:74:f0:fb:5d:ec:2f:b7:fa:
9d:4d:db:97:11:1d:de:7e:36:21:e1:14:e6:d8:6a:
f9:2f:24:55:5d:d8:6f:cd:de:b3:f9:30:9f:fd:46:
ad:f3:cf:fe:6c:33:82:11:42:51:2f:3c:93:f5:3b:
5d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F6:DB:30:AE:53:F4:59:8F:09:5A:75:34:86:36:AD:DF:49:86:C6
X509v3 Authority Key Identifier:
keyid:00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/MfbbMK5T9FmPCVp1NIY2rd9JhsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.60.0/22
IPv6:
2a07:2a00::/29
Signature Algorithm: sha256WithRSAEncryption
1d:2f:d1:d3:2f:91:5a:0d:1d:18:c7:23:1d:37:15:14:34:8f:
31:ee:05:5f:19:4c:9f:8f:f1:67:79:67:ab:40:7a:0f:7e:27:
14:d6:0c:ca:f5:7a:0b:56:ba:43:21:99:36:29:20:bf:d4:77:
dc:a7:74:85:06:fa:d4:12:35:18:16:ac:8a:49:cf:8d:11:5a:
65:55:96:cf:34:27:b9:98:7b:96:0d:1f:e0:27:0e:8f:8a:c4:
53:91:66:ff:75:29:ff:cb:a9:54:7e:77:1a:38:63:fe:e6:48:
f9:43:f4:7d:0b:27:c3:f3:a2:ee:35:38:36:07:c3:8f:10:79:
40:9f:82:ba:1f:43:76:4d:09:e9:dc:a1:5f:d5:ed:1f:c0:0a:
98:96:33:f0:83:6f:ac:c4:8c:6a:13:99:66:e6:11:83:1a:c7:
57:1c:d2:80:33:5b:e7:12:7f:1f:90:32:01:db:eb:18:f2:1c:
eb:35:7b:a5:c2:ad:49:6b:e1:da:cf:8e:af:41:47:35:70:84:
c4:ab:65:52:fd:19:c4:a3:d6:a3:1c:16:96:83:c7:d3:92:5d:
af:88:1e:f8:9f:93:44:10:25:9c:4b:9c:6b:e3:2c:27:d7:aa:
b6:63:22:66:a7:10:c8:62:4f:63:b3:e2:28:d3:46:19:c5:03:
b1:50:65:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org