Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/MofCCC1r3kASerMq9j984qq8FjI.roa
File: MofCCC1r3kASerMq9j984qq8FjI.roa (raw, json)
Hash identifier: r6wxxd/arswaXhzjiw1RqDp0q0Q42CZcfNpSGRJyYv4=
Subject key identifier: 32:87:C2:08:2D:6B:DE:40:12:7A:B3:2A:F6:3F:7C:E2:AA:BC:16:32
Certificate issuer: /CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Certificate serial: 04278E92
Authority key identifier: C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/MofCCC1r3kASerMq9j984qq8FjI.roa
Signing time: Thu 20 Jan 2022 06:40:23 +0000
ROA not before: Thu 20 Jan 2022 06:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136744
IP address blocks: 185.192.20.0/23 maxlen: 23
185.192.22.0/24 maxlen: 24
185.192.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69701266 (0x4278e92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Validity
Not Before: Jan 20 06:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3287c2082d6bde40127ab32af63f7ce2aabc1632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6d:60:7d:3b:af:f4:79:75:ea:99:8a:bc:42:
53:48:af:c1:2d:9f:81:76:44:80:26:91:82:d4:c9:
81:ec:c1:dc:71:b8:fc:d1:c3:48:d9:a7:bf:f4:ea:
5f:56:2f:03:a4:2a:55:f7:93:88:88:c6:9d:bd:92:
fc:09:b8:5a:44:6f:46:3d:6b:62:5a:dd:31:0e:3e:
7a:53:6a:f0:24:1a:aa:39:17:a0:18:cc:49:d5:1a:
07:c0:2b:6c:e9:9f:73:43:af:89:0c:14:01:28:46:
3e:c1:62:36:5e:2c:87:0c:ce:8e:86:55:11:cf:6a:
bc:16:70:d8:85:e8:70:17:44:21:33:e8:3c:ec:ec:
8a:ae:c2:57:33:6b:77:9e:fb:aa:b4:63:d7:96:7a:
56:78:4a:b8:02:b2:29:0f:e3:bf:c6:71:b2:d4:d3:
0d:86:22:3b:8a:26:72:e6:9e:ec:e1:d6:c3:f5:07:
1c:6c:88:f7:b5:9c:8b:e0:da:60:ec:14:ea:e7:5e:
bc:4f:de:a5:f2:45:07:47:64:af:40:9f:c1:86:58:
58:2a:52:95:22:42:00:14:7e:a0:68:7c:02:ad:f0:
f1:22:b7:84:b2:4c:62:d1:fc:68:dd:fb:c2:45:db:
83:f8:ef:bb:bb:44:4f:33:1c:70:01:93:29:58:11:
3a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:87:C2:08:2D:6B:DE:40:12:7A:B3:2A:F6:3F:7C:E2:AA:BC:16:32
X509v3 Authority Key Identifier:
keyid:C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/MofCCC1r3kASerMq9j984qq8FjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/xhaXFtCuZAaHAxQKo3MON4j91MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.20.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:e0:99:dc:e3:84:72:54:c3:0b:00:98:fe:14:28:68:91:45:
69:aa:b1:5a:9b:57:c8:ce:d6:82:a6:f3:88:76:97:58:b1:c3:
25:4d:b7:dd:e1:07:5b:bf:fd:8e:42:04:c9:43:40:e8:63:07:
5c:6d:0b:e7:ad:89:2c:1a:fc:f0:43:88:76:ea:12:50:77:48:
df:5c:82:fb:03:2d:62:4f:e1:74:62:d8:ab:d0:33:4d:5a:55:
a0:ff:78:4d:d4:fc:73:25:50:d5:84:47:61:5c:3d:d1:81:f7:
db:e7:6b:88:ae:ce:66:59:3f:0a:c4:9d:09:40:68:cb:71:06:
0c:c4:8a:23:ff:72:df:9f:75:66:e8:9c:81:8f:bd:36:6c:a2:
7d:69:ba:6a:62:48:91:f3:5c:f6:68:ab:d8:8b:c6:c6:9b:e9:
b8:c4:fa:4d:92:43:6d:4e:f4:93:81:f7:35:40:6a:a4:78:e2:
70:50:ad:cb:ba:be:dc:93:fc:8b:ff:64:4e:b5:ba:fb:6e:02:
b3:00:3c:d0:fc:55:67:60:7b:02:02:8a:20:67:49:51:97:be:
66:b4:f9:5b:f0:b1:10:d2:5b:5a:39:b7:ce:05:d0:b3:6b:b1:
47:6c:1a:6b:70:10:ef:e9:e5:d6:4c:8b:4b:37:2b:b2:00:94:
de:70:ad:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:04 2023 by rpki-client on console-ams.rpki-client.org