Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/MgSSkfR5tiFkwIlLpGW2iphC4dA.roa
File: MgSSkfR5tiFkwIlLpGW2iphC4dA.roa (raw, json)
Hash identifier: VjktmwBaN9SoMekf9BerBb/Vn2NPgQNZMV5xeCQH/S4=
Subject key identifier: 32:04:92:91:F4:79:B6:21:64:C0:89:4B:A4:65:B6:8A:98:42:E1:D0
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 380C6967
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/MgSSkfR5tiFkwIlLpGW2iphC4dA.roa
Signing time: Wed 23 Mar 2022 02:17:23 +0000
ROA not before: Wed 23 Mar 2022 02:17:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211715
IP address blocks: 185.11.142.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940337511 (0x380c6967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Mar 23 02:17:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32049291f479b62164c0894ba465b68a9842e1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b8:11:2d:b1:bc:41:3e:ac:70:88:d8:5f:1b:
89:0e:3a:8f:0b:8a:10:7c:41:21:69:0c:b0:49:1f:
b1:28:c9:8d:4d:a3:19:21:ad:8e:20:49:93:73:3a:
1a:73:80:8b:2d:e0:70:20:33:27:48:a8:0c:2d:81:
19:0f:eb:27:89:7f:d3:28:a3:3a:4a:d5:02:7f:98:
2e:34:c2:d7:e1:45:e6:58:e0:5d:0c:d2:80:82:64:
3c:25:01:60:cf:ea:af:70:78:8d:c8:93:bf:eb:1b:
43:89:d4:7d:97:a7:d6:be:91:e5:88:fa:2b:a1:b3:
73:3e:cc:c8:82:14:51:62:88:ba:9f:a7:4b:38:15:
f6:ed:53:45:f2:37:06:b2:b8:4c:83:34:e7:b5:dc:
f5:2e:1a:14:fe:48:b5:9e:4e:23:5a:9e:73:f0:eb:
f5:11:e5:7c:41:99:7f:95:7c:6a:aa:35:28:ad:15:
30:1f:64:14:29:93:9c:2f:a9:7c:8c:73:5d:d9:08:
d1:be:83:8e:f7:40:93:c1:ff:82:08:dd:3b:9b:83:
a5:30:0c:27:f1:ed:93:1f:54:8d:81:c8:33:2e:12:
2f:b7:7a:cb:cf:4e:d5:43:e3:5b:65:f1:47:0a:da:
6f:a9:1c:5a:23:9e:96:57:e6:3d:28:08:74:46:8e:
ea:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:04:92:91:F4:79:B6:21:64:C0:89:4B:A4:65:B6:8A:98:42:E1:D0
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/MgSSkfR5tiFkwIlLpGW2iphC4dA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.142.0/23
Signature Algorithm: sha256WithRSAEncryption
57:70:7b:d1:bb:b3:84:73:d6:ff:9b:fd:59:3d:74:ca:e9:3e:
24:17:80:20:7a:f9:7d:1e:d9:8b:2d:42:20:45:5e:c9:59:66:
a3:c9:90:f4:d3:59:44:1f:3c:eb:79:42:c1:84:c3:20:7b:18:
f3:10:cb:44:b1:d1:c8:4b:a1:04:ea:bc:f1:1e:54:48:69:d1:
a3:2f:75:ca:12:15:9a:b2:7f:52:b7:54:5a:36:c0:5a:db:06:
0e:d4:2f:ec:f2:0b:e5:17:3c:90:cc:d2:c0:95:b8:29:56:83:
ea:a7:eb:e9:94:28:37:95:d2:49:82:4b:c0:61:bb:e4:f5:23:
ed:4e:73:b5:e5:43:a9:e6:76:db:56:a5:f4:48:e0:0b:65:b7:
9b:a7:cb:7a:d4:ba:42:81:ce:45:8f:a0:3d:7b:75:dc:2a:6b:
3f:82:a3:28:f8:fb:26:16:06:40:8e:d6:00:b3:79:b3:42:06:
17:f5:ff:2e:f3:71:a5:5d:d4:56:88:e7:e6:80:2b:41:7b:2c:
71:9e:ff:6f:ba:49:41:e0:63:1e:9a:c9:b5:39:ee:1b:76:c5:
9a:b5:33:8d:98:cb:d9:31:06:90:1f:72:bf:52:ac:34:c4:19:
ea:e1:25:01:58:e8:ba:3e:12:bd:de:ca:8d:5a:de:27:da:61:
a3:a5:0e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org