Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/MbTnJv8R9NjxaKdIxmpyW3OU5Bg.roa
File: MbTnJv8R9NjxaKdIxmpyW3OU5Bg.roa (raw, json)
Hash identifier: AsbJZ/JpujWW6Gz/MV/SmMiinklE9SAv4IPTD3Mk2Lk=
Subject key identifier: 31:B4:E7:26:FF:11:F4:D8:F1:68:A7:48:C6:6A:72:5B:73:94:E4:18
Certificate issuer: /CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Certificate serial: 0182FCB9AA9555A7B765DE9A49357C7A55B6
Authority key identifier: 1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/MbTnJv8R9NjxaKdIxmpyW3OU5Bg.roa
Signing time: Fri 02 Sep 2022 05:43:22 +0000
ROA not before: Fri 02 Sep 2022 05:43:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20542
IP address blocks: 185.55.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fc:b9:aa:95:55:a7:b7:65:de:9a:49:35:7c:7a:55:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Validity
Not Before: Sep 2 05:43:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31b4e726ff11f4d8f168a748c66a725b7394e418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c7:bc:eb:7b:1d:24:8c:a1:38:3b:88:5f:ca:
3d:29:bb:9c:42:7d:8e:b3:c1:8f:0a:ba:a3:99:ef:
41:f5:18:7c:3b:0f:4e:89:06:23:7c:ed:0a:ab:71:
4f:97:5b:40:ff:5e:cf:8b:3c:9a:47:1f:71:0e:0c:
41:f3:5c:c4:b1:ce:cd:c3:af:61:c5:66:bb:e6:3c:
0a:0b:59:02:b8:1b:1c:b8:f2:eb:01:b7:90:04:33:
dc:1f:d6:98:f0:b5:cf:68:c2:5f:1c:cd:a5:53:ba:
aa:57:51:ae:e6:4c:c9:78:44:ba:52:6c:45:21:4e:
51:48:f8:4c:54:52:49:1a:4f:3e:e3:f2:32:0f:22:
45:54:a2:b6:be:08:54:92:94:6b:0f:9d:5d:0d:7e:
e2:46:d8:3b:86:84:31:6a:88:78:fb:84:66:c2:e9:
00:15:3e:4f:48:4c:40:65:f8:52:34:a6:a5:96:c1:
38:20:ac:d4:e9:e6:bc:26:a7:eb:36:0f:14:a1:7f:
e2:8f:b9:2d:b1:3c:cc:e3:73:ae:ae:20:2e:30:5c:
e3:71:da:d8:1d:d7:31:a0:d2:37:22:f5:fd:d1:ba:
dc:db:20:61:6a:a8:0a:cb:b2:ea:71:07:2f:83:9f:
17:fc:ac:30:4d:8f:64:6c:b4:d2:c5:ae:ff:d4:a7:
3b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B4:E7:26:FF:11:F4:D8:F1:68:A7:48:C6:6A:72:5B:73:94:E4:18
X509v3 Authority Key Identifier:
keyid:1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/MbTnJv8R9NjxaKdIxmpyW3OU5Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/H9X-9pK0wtIr3QMfq_pxELezboE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.32.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:2d:f3:e2:32:a9:ef:de:e3:f6:7d:8a:fa:c3:02:61:6a:f0:
2b:31:6c:30:c5:1e:8c:a6:70:26:17:24:60:f0:8b:cd:14:83:
ec:31:c6:66:2f:cc:bb:90:a2:cb:21:59:7c:14:06:c4:fe:1f:
55:92:36:09:0d:d4:6b:e8:f1:3f:10:69:94:c1:4f:95:68:c4:
59:94:d5:37:1c:69:f0:fe:47:de:66:d8:6f:46:f2:11:95:41:
04:18:a5:d2:2e:45:df:9e:a5:90:0c:bd:df:57:0c:7d:59:6a:
f0:66:08:91:6d:3a:d3:83:ff:9e:e7:d5:2b:9c:3b:1d:81:ef:
93:8c:08:9b:c1:00:6c:51:6e:35:d8:72:89:4d:41:23:2d:7e:
5f:47:e5:1d:98:62:39:2a:ee:df:82:21:d0:26:a9:c1:43:49:
fe:ea:fb:6a:cd:67:8d:86:11:0b:91:77:c1:23:ef:59:9a:a0:
cf:d4:5c:29:c8:47:00:b3:48:f2:f1:ba:77:86:f2:3f:71:19:
47:f0:aa:b3:80:63:d9:e5:4f:c5:05:44:e2:c0:00:91:23:4e:
ea:28:b5:26:b0:1d:33:9a:9f:79:70:49:14:2e:99:af:8a:f1:
5a:0d:09:ac:9b:47:51:8e:bd:c2:e7:89:5d:e4:0a:25:cd:ee:
39:37:b9:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-ams.rpki-client.org