Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/Mn0mTwssiBSxdKR9GeXEKCsYsOI.roa
File: Mn0mTwssiBSxdKR9GeXEKCsYsOI.roa (raw, json)
Hash identifier: Z2rmEEmW5kN4xor/3jjbqhGoPuhxLvoHkXHBpmmLlSA=
Subject key identifier: 32:7D:26:4F:0B:2C:88:14:B1:74:A4:7D:19:E5:C4:28:2B:18:B0:E2
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 05010481
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/Mn0mTwssiBSxdKR9GeXEKCsYsOI.roa
Signing time: Sat 01 Jan 2022 15:59:16 +0000
ROA not before: Sat 01 Jan 2022 15:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.61.0/24 maxlen: 32
2001:7f8:9d::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83952769 (0x5010481)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Jan 1 15:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=327d264f0b2c8814b174a47d19e5c4282b18b0e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:7c:58:11:5f:0e:4f:96:f8:e9:b8:df:25:
50:b3:f7:4d:a2:78:63:8c:7a:b8:6c:2f:34:fc:72:
07:fe:c8:21:6b:8d:71:e2:22:bd:33:d1:04:eb:99:
0f:09:e0:b4:2c:fc:94:17:21:76:6f:c7:68:62:71:
22:63:07:e3:45:23:8d:66:bc:4e:33:72:d0:68:00:
33:85:96:17:21:2c:74:32:ab:7b:41:45:86:e3:1f:
45:2c:3d:1f:a3:50:fe:05:2b:15:9b:91:a0:8c:01:
4c:2b:7e:2e:24:58:1c:ca:6e:d0:52:c3:fb:c4:66:
c0:bf:56:cb:b5:1f:31:5f:a7:79:0d:d8:c3:8b:23:
15:bf:1e:3c:db:9e:cc:8c:cf:82:c9:26:c3:92:83:
8d:52:d0:c5:dc:36:11:8e:26:d9:95:da:b8:d3:cb:
58:83:69:08:e5:61:26:d0:1e:28:a6:15:60:f9:c2:
2d:de:a2:ed:0c:f9:c5:23:1b:c6:4f:ad:5e:e4:2d:
2c:74:8c:d4:d7:d9:e4:5b:7b:19:4f:f5:cc:83:85:
97:2e:b5:e2:aa:9d:05:4b:e4:21:89:d4:50:96:d7:
1a:45:e2:61:03:cb:e9:76:45:a7:42:63:26:65:4a:
bb:7d:41:0e:43:ad:c4:6f:24:c4:2c:3c:7a:25:4e:
b7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7D:26:4F:0B:2C:88:14:B1:74:A4:7D:19:E5:C4:28:2B:18:B0:E2
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/Mn0mTwssiBSxdKR9GeXEKCsYsOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.61.0/24
IPv6:
2001:7f8:9d::/48
Signature Algorithm: sha256WithRSAEncryption
47:66:7a:4b:63:a1:08:e2:9a:d3:c3:1b:60:5b:c5:e3:08:5c:
5b:ad:11:78:4e:67:3b:29:82:cb:56:4a:15:f5:b3:74:5c:a1:
41:32:25:f2:b8:56:89:e0:19:ac:56:d2:7c:8c:8c:f1:a1:6a:
3f:f2:77:f3:47:6a:e2:f7:56:ba:b5:fd:08:49:3f:30:3c:87:
a4:2b:08:9a:ea:d8:77:bf:60:c6:c8:23:b7:8e:35:6a:e5:d3:
71:56:de:7a:df:18:bd:5a:0b:82:bf:da:17:e0:14:c1:7a:ed:
09:08:7d:05:19:1b:25:78:23:8b:fd:43:f9:bd:7b:7d:3e:bf:
c0:a9:8b:44:96:8a:54:da:c0:f2:d9:68:26:d6:56:c7:dd:08:
64:7e:86:36:6b:58:eb:60:57:97:c3:5d:c8:99:fe:17:2f:bd:
5a:63:cf:69:f4:53:f2:ac:f7:ae:cd:5c:5c:ad:f4:3e:2b:75:
39:1f:7a:ab:dc:23:c8:61:ee:30:dd:4d:c5:91:95:11:ee:fd:
15:06:77:d0:91:bd:01:c6:6a:85:d0:c3:31:73:be:24:8e:b4:
12:34:e9:76:27:92:13:6c:ac:0f:2d:de:b1:1b:ba:74:c4:27:
68:90:4e:3d:73:50:d6:3c:0c:18:79:0f:78:95:8a:f9:92:e0:
7c:78:d1:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:41 2023 by rpki-client on console-ams.rpki-client.org