Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/_MHL9wMclpwWdWRNR4Gk8xa2hVA.roa
File: _MHL9wMclpwWdWRNR4Gk8xa2hVA.roa (raw, json)
Hash identifier: dxTmBknh1vu5obpMmcmxp/4tfsnsAclMwjiSnDu5R4Y=
Subject key identifier: FC:C1:CB:F7:03:1C:96:9C:16:75:64:4D:47:81:A4:F3:16:B6:85:50
Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955
Certificate serial: 0BE3B3BB
Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/_MHL9wMclpwWdWRNR4Gk8xa2hVA.roa
Signing time: Mon 24 Jan 2022 17:59:13 +0000
ROA not before: Mon 24 Jan 2022 17:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211482
IP address blocks: 185.217.29.0/24 maxlen: 24
185.217.31.0/24 maxlen: 24
185.217.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199472059 (0xbe3b3bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955
Validity
Not Before: Jan 24 17:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcc1cbf7031c969c1675644d4781a4f316b68550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:45:97:a1:d1:4a:09:85:78:db:42:b9:6e:67:
1e:96:94:1d:16:4e:8a:79:32:81:c6:ac:0f:2f:b2:
40:d3:85:2e:d7:66:24:84:35:40:e8:6b:0e:94:ed:
1d:e1:fe:4a:69:d6:1e:c7:80:5a:d0:de:0f:a9:eb:
23:3b:fd:a9:d6:2f:87:04:99:bf:e8:d3:c7:2a:8e:
02:23:e9:36:54:85:8e:99:54:17:aa:c1:b6:4b:80:
13:b1:22:c3:a0:ef:bc:3f:23:a3:80:58:36:e5:49:
38:a7:bf:2e:a2:fc:b6:2c:82:ad:1f:7f:d5:c1:d7:
99:75:ed:46:b9:bc:bd:d2:ed:de:e8:8a:3b:a4:ce:
05:3d:39:eb:33:15:f3:b8:aa:0f:8a:6a:29:dc:d2:
d5:98:4c:fb:8a:76:59:5b:67:2b:93:7a:78:83:c2:
31:33:ff:bc:0d:ee:da:85:4d:68:8e:2c:d0:5f:23:
d5:32:22:70:c3:f4:e1:e6:56:e0:9c:2b:3e:e0:b5:
16:1a:bd:5f:bf:b7:27:bf:1c:fb:a3:84:18:88:7f:
fc:27:cb:38:d2:ad:26:5d:6a:27:c2:f0:56:e7:d6:
5f:8a:60:41:5b:a6:a3:eb:3f:d3:22:3a:94:4e:36:
04:1a:3b:d9:5b:cf:48:48:06:c7:7c:8a:c0:9e:95:
e5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C1:CB:F7:03:1C:96:9C:16:75:64:4D:47:81:A4:F3:16:B6:85:50
X509v3 Authority Key Identifier:
keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/_MHL9wMclpwWdWRNR4Gk8xa2hVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.28.0/23
185.217.31.0/24
Signature Algorithm: sha256WithRSAEncryption
57:37:8b:7d:66:44:60:71:c6:08:b0:d9:ee:54:12:b3:20:52:
9c:9c:e3:d1:7d:1d:99:30:05:a2:df:1a:e6:c1:8f:2e:7b:39:
ef:f8:4f:8d:2d:f6:d8:d2:8f:81:ba:74:27:a5:8f:67:92:3a:
b9:15:11:46:16:e7:a4:16:fc:ec:4c:cb:ae:fb:9e:fc:4f:09:
03:55:3e:3e:0e:36:50:d9:0e:4b:d7:09:72:5b:73:ad:10:fc:
23:da:2c:a7:d3:e4:95:d9:e9:fd:e0:3d:06:3e:b4:b4:a0:2e:
48:74:1a:2e:d9:fa:72:db:97:e1:7f:82:28:e7:07:dc:d1:7d:
43:97:68:a7:56:e3:31:da:d5:4a:3d:fa:af:33:db:c8:aa:34:
01:f6:02:d2:0e:a0:04:38:ef:9c:87:01:ba:ce:b4:dd:90:c0:
32:cc:c8:93:59:ed:a2:cd:ed:53:f5:48:4b:1c:f0:20:59:85:
ec:21:0a:6d:30:33:11:0d:43:fc:c5:37:83:ae:c6:ae:52:25:
5c:2b:c4:28:9e:3d:be:67:1d:6d:f0:69:57:df:5f:96:f3:81:
0b:98:6e:3f:50:d8:e0:99:b1:27:d0:e3:22:c8:d8:b3:d1:b1:
2b:b7:f7:15:9c:03:05:39:64:05:cf:f9:79:ee:30:06:0b:56:
2c:dd:17:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:42 2024 by rpki-client on console-fra.rpki-client.org