Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/mss8ZxcneWgP5VsuSeGIhbtvQu4.roa
File: mss8ZxcneWgP5VsuSeGIhbtvQu4.roa (raw, json)
Hash identifier: fdayyxHapEoik1hjPkyXj3Nq6AA3nL8O2XdQvkFnCpw=
Subject key identifier: 9A:CB:3C:67:17:27:79:68:0F:E5:5B:2E:49:E1:88:85:BB:6F:42:EE
Certificate issuer: /CN=3eb1788fe220e46434692d1cc437072d792d7888
Certificate serial: 01847860D9840FBFA8414CCB02813F7C8BCD
Authority key identifier: 3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/mss8ZxcneWgP5VsuSeGIhbtvQu4.roa
Signing time: Mon 14 Nov 2022 23:02:03 +0000
ROA not before: Mon 14 Nov 2022 23:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.189.0/24 maxlen: 24
2001:7f8:103::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:78:60:d9:84:0f:bf:a8:41:4c:cb:02:81:3f:7c:8b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eb1788fe220e46434692d1cc437072d792d7888
Validity
Not Before: Nov 14 23:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9acb3c67172779680fe55b2e49e18885bb6f42ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:3c:79:39:d7:29:9a:41:2d:b4:64:b2:a9:
b1:e9:f1:da:d1:1a:e2:4f:33:f5:95:a5:89:32:0e:
2a:54:a0:5b:9a:37:ec:32:90:38:06:0e:51:cf:01:
e1:0e:53:27:f5:54:ae:46:fd:e9:3d:c4:b9:00:cf:
83:bc:45:70:5b:41:d1:55:d0:87:4b:80:e2:f7:42:
36:cf:82:87:74:ed:c7:8d:c2:08:7e:b6:23:a9:1b:
fe:6c:7e:0c:fb:26:7d:6a:4c:f9:1f:db:99:25:4f:
6f:bc:2d:25:f1:cd:6f:64:68:59:9f:bf:7d:2d:ff:
4f:f2:de:da:30:d7:f9:fa:31:df:44:c9:75:24:f4:
73:37:e6:fd:7e:63:9d:bb:aa:90:a0:2e:06:b2:d2:
b3:92:25:11:56:47:16:09:1b:4d:b5:04:46:94:cf:
b3:64:96:9b:5a:8a:95:9a:b6:2d:f9:57:43:67:8f:
49:2f:32:68:ec:35:7c:4f:c2:9b:75:04:ca:0f:9c:
85:96:07:1d:f9:0f:02:72:99:36:98:1d:d9:ba:10:
fc:eb:93:fc:86:31:9b:cf:2a:55:cb:d6:46:b2:04:
77:33:c0:fc:53:12:d7:b0:2a:a4:df:28:75:8f:b9:
f1:98:7b:c3:9c:14:a6:c0:e4:45:21:fa:46:14:3e:
77:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CB:3C:67:17:27:79:68:0F:E5:5B:2E:49:E1:88:85:BB:6F:42:EE
X509v3 Authority Key Identifier:
keyid:3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/mss8ZxcneWgP5VsuSeGIhbtvQu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.189.0/24
IPv6:
2001:7f8:103::/48
Signature Algorithm: sha256WithRSAEncryption
88:76:f9:5c:b7:71:3c:07:52:52:bd:8f:c0:a9:5a:55:56:e7:
1e:91:aa:6c:5d:83:f1:c8:5e:e7:84:46:67:d0:1a:17:3b:00:
4e:40:1d:f5:5e:29:22:90:ee:1f:9d:11:72:ac:8f:42:d6:f8:
0f:20:0a:3e:16:39:7c:d6:b3:a5:9b:8b:2e:b4:54:8f:9d:28:
6b:6e:04:1f:2d:84:94:c3:37:fd:a8:13:02:9d:b4:be:ce:73:
17:f3:81:ab:ed:05:70:87:c5:3c:be:e4:ff:38:26:41:c3:f0:
d1:eb:e3:f3:83:3a:1b:62:1c:ab:5a:36:f5:d6:fc:eb:b4:04:
b6:30:e5:c8:57:73:08:e2:de:db:fb:9c:06:34:24:1d:f4:7c:
a6:68:6a:3a:80:66:be:79:f0:41:be:cf:80:d5:55:bf:e4:1e:
63:05:c5:eb:ab:a0:da:11:31:a8:e1:fd:98:c1:67:fa:7b:8e:
08:aa:07:2f:7f:4d:53:11:15:e2:8b:97:8e:d1:fc:41:ed:4a:
87:db:a9:cc:7b:95:27:94:a9:bd:17:40:ec:21:62:87:5a:23:
50:89:75:cf:17:68:df:62:1b:18:c8:44:e4:7d:4b:d3:2c:8c:
c3:b8:22:0a:0c:14:87:e3:b2:25:5c:aa:db:42:42:b0:38:b0:
18:db:47:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:17 2024 by rpki-client on console-ams.rpki-client.org