Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/157299-9d1c-4c5b-9a41-c25fdc4ca2f6/1/MVi7y_1P3skZMpERwYTkTc8BlFM.roa
File: MVi7y_1P3skZMpERwYTkTc8BlFM.roa (raw, json)
Hash identifier: LSAKUawGMtED4wAELT0RBcjkQtCltOE6BdgiiRvOwYk=
Subject key identifier: 31:58:BB:CB:FD:4F:DE:C9:19:32:91:11:C1:84:E4:4D:CF:01:94:53
Certificate issuer: /CN=1713129ef4fa454e0f0ac407e008e957a1b795a0
Certificate serial: 0A1C9AC3
Authority key identifier: 17:13:12:9E:F4:FA:45:4E:0F:0A:C4:07:E0:08:E9:57:A1:B7:95:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FxMSnvT6RU4PCsQH4AjpV6G3laA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/157299-9d1c-4c5b-9a41-c25fdc4ca2f6/1/MVi7y_1P3skZMpERwYTkTc8BlFM.roa
Signing time: Sat 01 Jan 2022 00:58:22 +0000
ROA not before: Sat 01 Jan 2022 00:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13058
IP address blocks: 185.240.52.0/22 maxlen: 24
2a0c:7280::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169646787 (0xa1c9ac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1713129ef4fa454e0f0ac407e008e957a1b795a0
Validity
Not Before: Jan 1 00:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3158bbcbfd4fdec919329111c184e44dcf019453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:92:da:8c:95:72:74:0b:ca:b0:75:22:f5:4e:
b0:75:2e:a0:76:89:48:2f:15:e7:24:d5:f3:79:b9:
2b:2e:14:10:10:b7:14:85:b3:b3:24:6d:d1:a8:41:
ca:da:09:ce:7c:9a:f8:b1:e8:b4:13:ae:5e:89:9b:
3c:09:6b:60:aa:33:57:fa:5a:32:b2:84:d1:c0:e7:
60:6e:32:f6:b6:df:05:b2:4b:51:df:6a:78:11:ce:
20:54:d2:a4:f9:b7:0a:fe:03:af:d5:8a:ff:6f:ff:
ee:8b:8e:8b:16:49:2d:bb:b1:d7:7a:67:0b:03:a6:
8c:51:4c:70:5f:af:53:04:85:81:bc:82:22:82:cb:
d4:f1:5c:5f:01:b0:97:28:f7:7d:60:a7:cc:79:45:
5e:3b:83:8b:4e:6f:ff:6f:3a:ed:f6:6f:7c:3c:c5:
41:b6:1f:47:ff:66:ac:f8:7c:3b:22:45:59:03:a7:
89:f0:5a:27:23:8a:3d:16:01:84:56:da:d8:79:17:
ed:4d:d9:30:ef:7d:77:51:5f:aa:e5:fd:4b:f1:b8:
fd:7d:72:0f:1d:ed:4c:d4:98:03:86:28:a2:59:01:
7d:b8:5d:f9:9e:1e:39:be:e0:bd:23:74:06:1c:d5:
70:e2:2d:5e:0c:f5:50:30:3e:68:8e:9a:12:27:61:
81:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:58:BB:CB:FD:4F:DE:C9:19:32:91:11:C1:84:E4:4D:CF:01:94:53
X509v3 Authority Key Identifier:
keyid:17:13:12:9E:F4:FA:45:4E:0F:0A:C4:07:E0:08:E9:57:A1:B7:95:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FxMSnvT6RU4PCsQH4AjpV6G3laA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/157299-9d1c-4c5b-9a41-c25fdc4ca2f6/1/MVi7y_1P3skZMpERwYTkTc8BlFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/157299-9d1c-4c5b-9a41-c25fdc4ca2f6/1/FxMSnvT6RU4PCsQH4AjpV6G3laA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.52.0/22
IPv6:
2a0c:7280::/29
Signature Algorithm: sha256WithRSAEncryption
28:28:7a:d1:81:73:6d:c5:a8:7e:65:c9:f0:6d:38:55:ff:28:
24:d1:c1:bd:d2:d6:92:c1:d8:48:a8:1d:5d:44:1c:6b:3a:6f:
e4:08:90:f8:58:fa:fa:51:46:a3:ba:da:23:16:fc:f5:b6:99:
b9:36:39:42:a5:3b:13:9a:15:ba:7d:02:2c:cc:63:27:54:95:
5d:3f:d4:8a:ad:18:73:b1:4c:c3:f5:dd:6b:2e:e6:66:6e:b7:
a2:a5:c8:69:bc:69:b2:c4:3d:36:25:f5:83:63:61:1b:89:20:
21:15:3c:42:1c:e4:dd:8a:cd:11:1f:f4:3e:17:ad:25:53:48:
43:27:01:76:3f:d0:5f:47:c6:7e:b3:53:db:c9:d0:3a:1c:5e:
8d:b9:bb:f1:4b:e6:68:ce:b1:aa:09:9a:1e:75:c7:4f:77:3a:
a5:1d:a6:93:ff:fd:80:03:ce:71:49:30:b5:e6:4b:64:f5:72:
32:40:ce:2b:23:c9:54:3e:a3:3f:b4:19:9f:aa:22:01:ff:4e:
1c:90:d0:19:ea:8d:57:c8:21:16:23:c4:5a:aa:17:ca:d8:1b:
97:af:c6:96:f3:0c:d8:d4:69:b8:d0:a4:0c:6d:e6:71:13:1f:
82:d3:14:9b:ac:84:24:47:c0:66:ac:d6:d1:4a:b5:e3:fe:2f:
ac:3f:c4:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:05 2023 by rpki-client on console-fra.rpki-client.org