Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/mLhwL9cvwlN4tF-8seGnT5309IU.roa
File: mLhwL9cvwlN4tF-8seGnT5309IU.roa (raw, json)
Hash identifier: dXZkHEtGUjBGqfwPbUe0lKCqyUyKx3gHBKKn0GlUTeA=
Subject key identifier: 98:B8:70:2F:D7:2F:C2:53:78:B4:5F:BC:B1:E1:A7:4F:9D:F4:F4:85
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 0FD2021F
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/mLhwL9cvwlN4tF-8seGnT5309IU.roa
Signing time: Sat 01 Jan 2022 14:07:24 +0000
ROA not before: Sat 01 Jan 2022 14:07:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42962
IP address blocks: 185.192.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265421343 (0xfd2021f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 1 14:07:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98b8702fd72fc25378b45fbcb1e1a74f9df4f485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a9:53:9d:2b:d6:5f:48:c7:eb:30:e5:b2:cb:
d8:51:42:5e:e7:c9:35:c6:21:4d:86:c6:be:39:77:
92:98:80:c3:e9:c2:c8:75:90:8e:35:3f:97:1e:56:
b2:1e:f4:c2:6f:79:6e:ba:d5:23:8b:5b:ec:ab:ca:
20:84:7b:60:46:95:09:9c:8c:b3:ea:66:1a:4b:01:
6c:d2:9f:76:81:ba:f4:31:5c:eb:9e:4f:ad:0b:09:
45:0c:43:7d:04:8c:68:60:52:dc:33:07:6e:89:d4:
0d:da:9f:0e:8f:b2:c9:03:f2:4f:52:a7:12:9c:d1:
73:e0:34:80:bc:93:b6:a8:c4:36:6a:36:36:82:81:
e6:30:bd:c9:38:e7:be:bc:87:02:6b:8a:b7:7d:29:
42:a1:9f:a4:06:16:fa:ed:c3:79:80:73:fb:43:fd:
02:3a:29:9e:7c:e7:c7:5f:97:11:fb:60:a9:52:9e:
38:a1:7c:88:9a:ed:2f:e6:bf:53:6f:4f:dd:04:e0:
1d:cb:07:ab:6d:dc:ef:bd:c6:22:72:29:31:24:41:
2a:94:bd:e0:12:5b:90:29:79:48:15:29:95:cb:82:
b8:93:0a:6a:b7:a1:ab:b7:94:ae:65:7b:48:05:09:
47:35:d9:ea:bb:59:02:6f:7e:24:45:1f:e2:38:13:
bc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B8:70:2F:D7:2F:C2:53:78:B4:5F:BC:B1:E1:A7:4F:9D:F4:F4:85
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/mLhwL9cvwlN4tF-8seGnT5309IU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.56.0/22
Signature Algorithm: sha256WithRSAEncryption
60:7b:14:27:8a:67:72:bb:d4:2c:d4:9a:dd:bc:e8:69:9e:8e:
d3:56:c3:2b:df:7e:c4:13:03:98:c5:72:be:85:8e:4d:ad:72:
d2:1e:4f:20:c5:78:76:49:12:32:cf:9d:5e:c5:88:25:88:83:
76:38:ff:4d:03:31:79:1d:78:b5:0e:c9:7b:8f:68:49:13:2f:
79:c4:d5:d7:51:74:ee:b1:f6:95:67:a0:ee:94:08:1e:bb:73:
59:c7:2c:1c:73:a9:26:4e:ae:d0:73:5b:0e:24:86:17:93:79:
c8:76:6c:b6:92:9b:42:63:a5:ef:e5:1e:be:53:68:f0:03:4d:
96:d2:d5:9e:b7:98:82:05:da:7b:7a:2d:0a:4f:2c:c1:bb:68:
a4:e4:9d:6e:dd:05:8c:6e:25:63:f4:c2:06:25:52:1e:28:2a:
bc:a0:43:33:bc:d2:d7:fd:ba:4f:4f:8c:75:cf:13:23:58:3f:
2a:3a:85:a0:81:20:46:f5:b3:b9:a7:c7:1e:ae:04:0f:df:fe:
d9:19:ee:f4:72:ed:e6:46:86:f7:c8:5a:a5:97:89:3c:f9:79:
f2:1f:74:85:75:78:c1:12:58:5f:30:49:4a:23:51:a0:0c:09:
76:11:35:57:95:95:56:c8:91:c3:b6:3f:6c:56:a6:64:50:cf:
76:bc:ee:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-fra.rpki-client.org