Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/e59ba1-3d5b-4299-a852-37c86e355267/1/mSpQ29fEYy_kcFZeXjKAdAmYwfk.roa
File: mSpQ29fEYy_kcFZeXjKAdAmYwfk.roa (raw, json)
Hash identifier: 5dx0oT/MZPk5LF3yX3m3i/7nqwOf3EN7vvLIymfkXiM=
Subject key identifier: 99:2A:50:DB:D7:C4:63:2F:E4:70:56:5E:5E:32:80:74:09:98:C1:F9
Certificate issuer: /CN=7b8985faea08598c05cc30b82e282306af793316
Certificate serial: 43E538
Authority key identifier: 7B:89:85:FA:EA:08:59:8C:05:CC:30:B8:2E:28:23:06:AF:79:33:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4mF-uoIWYwFzDC4LigjBq95MxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/e59ba1-3d5b-4299-a852-37c86e355267/1/mSpQ29fEYy_kcFZeXjKAdAmYwfk.roa
Signing time: Sat 01 Jan 2022 02:00:36 +0000
ROA not before: Sat 01 Jan 2022 02:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203352
IP address blocks: 185.131.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4449592 (0x43e538)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b8985faea08598c05cc30b82e282306af793316
Validity
Not Before: Jan 1 02:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=992a50dbd7c4632fe470565e5e3280740998c1f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:dc:97:a7:15:75:43:d6:b9:66:d1:d9:bb:77:
6b:22:14:62:c7:76:e9:e0:a3:71:24:c4:b1:5b:be:
4f:b6:1b:2e:37:84:64:27:b1:99:f3:55:18:01:c9:
00:56:36:bf:b8:88:cb:3d:1d:78:f1:c9:3b:e4:1c:
00:12:27:fe:ed:c6:91:bd:2b:f0:96:1d:6d:e5:58:
83:f8:5f:8c:ec:ac:32:fa:ea:66:70:05:90:b7:bf:
d6:dd:1b:20:aa:a7:51:b1:39:0f:c0:1c:d2:86:98:
9c:92:6e:00:16:43:0f:d9:98:65:ec:fe:79:db:8d:
9d:55:db:1f:8f:c1:4f:f4:3c:ff:fe:3a:a7:81:b8:
1f:fa:1c:6e:2f:a6:14:70:54:55:25:8d:52:55:e3:
07:3b:ed:b6:a5:89:0b:0c:a7:50:80:ee:60:22:9b:
09:da:66:2e:82:bc:4c:7b:97:f2:b3:eb:24:19:48:
6f:86:82:81:26:61:3f:0c:8c:9e:b1:ee:2a:91:48:
32:c3:94:ff:3c:21:c1:47:fe:c5:3d:2d:bc:3d:5c:
be:dc:97:c7:38:2d:52:50:e2:0a:76:da:24:9e:ee:
d9:5f:1d:68:e3:c7:f4:14:6b:df:6d:6f:bf:90:6c:
fe:bc:11:b2:17:63:2b:08:cb:00:5c:34:7f:35:6d:
3a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:2A:50:DB:D7:C4:63:2F:E4:70:56:5E:5E:32:80:74:09:98:C1:F9
X509v3 Authority Key Identifier:
keyid:7B:89:85:FA:EA:08:59:8C:05:CC:30:B8:2E:28:23:06:AF:79:33:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4mF-uoIWYwFzDC4LigjBq95MxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e59ba1-3d5b-4299-a852-37c86e355267/1/mSpQ29fEYy_kcFZeXjKAdAmYwfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e59ba1-3d5b-4299-a852-37c86e355267/1/e4mF-uoIWYwFzDC4LigjBq95MxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.80.0/22
Signature Algorithm: sha256WithRSAEncryption
56:d5:a7:20:bc:fe:6d:fa:b3:98:8c:01:03:bc:41:70:9f:ee:
ef:8e:f0:ee:96:e2:3b:f4:38:81:2a:cc:6d:d3:66:8d:c0:08:
75:b1:b3:a0:b6:53:5a:bf:19:8c:93:2e:8b:7d:c5:f6:6d:62:
1b:c9:32:d1:9d:f6:3b:44:2b:db:ba:10:64:49:f1:9c:9c:bc:
fd:ab:6e:ee:16:8f:7a:75:6a:bb:60:5d:02:88:19:d1:54:1f:
70:85:5a:a2:6d:14:3c:6c:93:82:d5:b4:5d:db:02:f4:94:30:
04:8d:77:f5:a6:20:9a:d7:a6:4e:99:ce:b4:1c:3b:07:61:34:
35:c9:a6:8d:8a:db:12:5c:87:f3:5c:9b:ad:1d:bf:ff:e2:83:
57:78:d5:6a:a0:a9:c9:26:a6:5d:a7:9a:5c:c5:e8:6f:eb:7f:
20:03:1e:b2:89:70:61:8f:44:fc:f7:9c:66:31:23:e8:86:94:
0e:a6:e1:2c:2a:97:49:62:f7:6a:16:2d:de:54:3a:4e:30:16:
2b:b1:27:7f:91:a3:8e:66:85:e3:f6:ad:77:43:36:ed:16:01:
62:92:66:49:e8:b3:57:5d:80:b6:ec:b8:91:35:af:55:5c:84:
4c:53:87:33:a4:06:43:22:20:39:5f:bf:03:a3:b7:7e:e0:e8:
28:b3:d2:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:01 2024 by rpki-client on console-fra.rpki-client.org