Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/M1719efAl-pEv55hmPkiYMuMqF4.roa
File: M1719efAl-pEv55hmPkiYMuMqF4.roa (raw, json)
Hash identifier: 5W/Bl5iYV87p/Icls+AaFmTFY9JMtCduyUrrVo2Fuc0=
Subject key identifier: 33:5E:F5:F5:E7:C0:97:EA:44:BF:9E:61:98:F9:22:60:CB:8C:A8:5E
Certificate issuer: /CN=52e02224ffb971172e4935ed7dd965d1155089b6
Certificate serial: 010CD623
Authority key identifier: 52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/M1719efAl-pEv55hmPkiYMuMqF4.roa
Signing time: Sat 01 Jan 2022 07:52:42 +0000
ROA not before: Sat 01 Jan 2022 07:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3223
IP address blocks: 185.121.16.0/24 maxlen: 24
185.121.16.0/22 maxlen: 22
185.121.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17618467 (0x10cd623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52e02224ffb971172e4935ed7dd965d1155089b6
Validity
Not Before: Jan 1 07:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=335ef5f5e7c097ea44bf9e6198f92260cb8ca85e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:92:a0:d2:ea:67:ff:35:ba:e3:8e:7c:0b:de:
ce:cc:55:c4:5e:33:d1:ae:88:fa:bd:31:78:29:fa:
d7:a3:3e:7c:31:ee:69:c0:f0:16:0e:df:3d:38:18:
dc:10:9d:03:60:09:23:9a:c5:3b:d9:2c:82:92:f7:
e7:f1:04:f5:b7:c3:e8:78:34:e4:d3:c3:36:2b:65:
1f:34:d1:e7:28:53:42:9c:ea:a8:89:d1:52:e9:d4:
e8:f8:61:1a:5d:0b:e7:88:65:3d:17:64:3b:7f:e3:
c7:67:17:4e:a9:58:f7:cb:05:3d:f7:79:97:3a:9c:
b7:8a:b5:43:eb:c8:46:3a:68:81:9d:2c:33:05:33:
59:79:e0:9a:29:b6:1a:d7:c6:af:f3:61:97:a2:16:
00:b8:5f:a2:4e:b6:34:d3:b0:71:00:8d:13:f1:f7:
75:40:6c:c1:e3:8e:d7:78:04:7a:1f:7a:27:b3:4d:
30:69:51:a1:21:82:45:07:f9:4a:48:ef:1f:2b:30:
7f:a4:62:57:b4:ce:43:3c:4b:7e:79:a6:c4:37:db:
c7:23:05:14:bf:be:c3:92:5c:fe:b0:37:8c:d7:d6:
1b:ae:af:7a:e5:78:96:ea:bb:c1:a6:87:75:16:70:
36:e4:4b:d6:7d:15:06:16:ba:0d:f1:a1:7e:ea:44:
45:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5E:F5:F5:E7:C0:97:EA:44:BF:9E:61:98:F9:22:60:CB:8C:A8:5E
X509v3 Authority Key Identifier:
keyid:52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/M1719efAl-pEv55hmPkiYMuMqF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.16.0/22
Signature Algorithm: sha256WithRSAEncryption
10:30:b6:ff:be:91:06:71:2e:14:d4:e9:46:0b:06:69:d9:5e:
a6:40:01:e6:eb:d6:0d:71:2b:a1:1d:fc:2b:b2:51:e4:6f:2c:
f0:a5:66:a6:83:fd:e8:42:4a:97:cb:50:b1:93:cb:ee:b3:7a:
aa:f8:e4:cc:b7:23:a5:47:15:7b:66:a7:9d:f0:bd:15:23:c5:
82:80:a9:50:a0:0c:6a:e2:4d:2c:59:db:4c:78:2c:f8:fa:2b:
02:ff:e2:aa:d6:d7:8d:60:b5:d6:9b:f5:f3:c6:ae:85:24:b2:
79:00:cb:4d:7f:67:15:5c:18:b6:62:05:74:ca:6e:dd:a9:3b:
b9:35:0c:77:0a:c5:23:3d:eb:7a:b4:01:6b:da:f0:b7:a5:e5:
59:07:0b:e3:e7:c2:39:83:16:0c:00:73:0c:b4:5e:05:3d:f8:
7a:e1:f0:d3:30:f5:98:de:6a:7c:25:b9:4b:3a:ef:26:70:f8:
ee:c5:27:87:48:06:6f:2e:f3:ce:bd:74:2d:46:09:41:dd:79:
30:fd:36:36:41:8a:4b:45:c1:fc:d8:84:c7:d9:f6:7c:e1:c9:
54:71:a9:bd:98:8b:c2:0f:a9:08:00:6d:b0:4b:6e:e0:83:59:
ca:b8:27:9b:56:29:65:19:85:e6:91:e3:a5:00:ba:e3:f6:89:
1b:96:ba:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:21 2024 by rpki-client on console-ams.rpki-client.org