Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/MewEVCD507qzq9E2xdOt_9bjJlQ.roa
File: MewEVCD507qzq9E2xdOt_9bjJlQ.roa (raw, json)
Hash identifier: Pwwvjhju3iJr6YzKq+8pmBhBFuAjM+gZZ/LQeFMU+c4=
Subject key identifier: 31:EC:04:54:20:F9:D3:BA:B3:AB:D1:36:C5:D3:AD:FF:D6:E3:26:54
Certificate issuer: /CN=5f1a427072b31d44784c375dfae42278e71fa836
Certificate serial: 01843EDE0B7542B544DAC5C1FCB649E7AB9A
Authority key identifier: 5F:1A:42:70:72:B3:1D:44:78:4C:37:5D:FA:E4:22:78:E7:1F:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxpCcHKzHUR4TDdd-uQieOcfqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/MewEVCD507qzq9E2xdOt_9bjJlQ.roa
Signing time: Thu 03 Nov 2022 19:00:49 +0000
ROA not before: Thu 03 Nov 2022 19:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39640
IP address blocks: 185.236.182.0/23 maxlen: 23
185.236.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3e:de:0b:75:42:b5:44:da:c5:c1:fc:b6:49:e7:ab:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1a427072b31d44784c375dfae42278e71fa836
Validity
Not Before: Nov 3 19:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ec045420f9d3bab3abd136c5d3adffd6e32654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:91:a6:d3:a0:74:05:11:83:e8:ba:43:a1:19:
3b:6d:43:42:30:3b:3c:77:47:1f:d8:14:25:18:40:
b3:95:95:11:89:2f:1e:a9:38:c3:0f:67:a5:07:ed:
9a:4c:95:37:f4:b6:1f:f1:61:15:94:43:fa:a8:ba:
74:71:69:6a:80:2e:0b:43:43:ed:79:25:c4:12:03:
c1:27:99:95:77:19:78:1d:3e:3b:33:c0:cb:77:9b:
6a:88:f7:b2:53:c8:ca:f3:e3:19:fa:d3:f1:6d:f2:
d7:aa:ec:54:2a:59:77:a6:b2:fd:8f:36:68:1f:7e:
a4:96:d9:51:9d:03:1e:15:ef:f0:d7:46:f0:3b:f8:
f1:70:ec:f6:e8:24:72:15:73:95:0f:77:95:a6:51:
df:3b:4a:d3:7a:12:c5:91:3c:55:6a:6d:c9:8b:e0:
50:38:7c:a0:9d:25:52:21:cb:c6:05:fe:a9:e3:bc:
16:77:91:e5:92:c2:09:8a:0b:8a:0f:d9:0a:78:b1:
c0:1b:a1:37:fd:32:3e:85:8e:de:ac:0b:d2:53:af:
0c:34:bf:1a:37:ca:1a:16:de:15:d9:84:31:f7:dd:
82:d8:ad:38:6a:c3:0a:5d:8f:f2:68:aa:11:8f:99:
92:9a:39:69:8e:84:c7:bb:87:af:d6:23:40:a2:27:
b9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EC:04:54:20:F9:D3:BA:B3:AB:D1:36:C5:D3:AD:FF:D6:E3:26:54
X509v3 Authority Key Identifier:
keyid:5F:1A:42:70:72:B3:1D:44:78:4C:37:5D:FA:E4:22:78:E7:1F:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxpCcHKzHUR4TDdd-uQieOcfqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/MewEVCD507qzq9E2xdOt_9bjJlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/XxpCcHKzHUR4TDdd-uQieOcfqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.181.0-185.236.183.255
Signature Algorithm: sha256WithRSAEncryption
81:82:8b:9b:49:f5:7a:c3:a0:8c:a3:7e:c1:7a:e6:93:fe:4b:
d9:3b:ac:93:d4:71:c4:2a:c4:49:a1:f7:c7:90:3f:bc:fa:59:
f2:5d:f6:b0:08:4e:f2:59:a4:9d:ba:c3:3b:8f:70:c8:21:b7:
cc:f8:44:e8:c4:5b:6e:65:7e:6b:c6:51:4d:97:e7:64:50:49:
1e:fc:13:54:08:8d:23:a0:75:76:0c:c4:14:34:84:bc:26:64:
7b:b2:fc:c0:8b:f5:86:47:ce:50:93:97:0e:b9:b3:bd:25:a0:
d8:a1:48:d9:c8:97:7e:d5:88:df:91:ee:89:1e:0e:0b:f4:8c:
ae:a3:8f:45:77:be:61:36:41:a3:85:fa:5d:58:23:82:ae:29:
5c:a6:04:35:e8:d9:1e:23:3e:71:cc:a6:f9:33:39:96:1e:a5:
3c:8e:28:95:0a:7e:b8:e3:1f:30:ee:29:b1:a9:86:53:7b:c4:
fd:87:01:ed:07:4d:d4:99:ee:77:4c:3e:a5:c6:96:c3:e7:f7:
d8:4c:bc:e5:6c:1f:f0:cb:83:c1:83:e1:98:c0:9e:89:45:09:
01:10:2c:5d:d8:0b:28:9d:8f:68:38:40:44:04:97:d9:cb:04:
c4:e3:f7:83:22:a6:ed:47:62:56:21:bd:0a:97:59:83:3a:0b:
e2:ab:8e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:00 2024 by rpki-client on console-fra.rpki-client.org