Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/M8NQjgEywPYuiytVRgs6pAbnOjQ.roa
File: M8NQjgEywPYuiytVRgs6pAbnOjQ.roa (raw, json)
Hash identifier: b5tou8H48A4e2mKSbBNvUCYhkQSo99Lj6ORwnhdb5wE=
Subject key identifier: 33:C3:50:8E:01:32:C0:F6:2E:8B:2B:55:46:0B:3A:A4:06:E7:3A:34
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17AD3D55
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/M8NQjgEywPYuiytVRgs6pAbnOjQ.roa
Signing time: Sat 01 Jan 2022 04:54:09 +0000
ROA not before: Sat 01 Jan 2022 04:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43308
IP address blocks: 185.182.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397229397 (0x17ad3d55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33c3508e0132c0f62e8b2b55460b3aa406e73a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:74:29:d7:a3:08:8e:eb:f6:7d:7c:4b:1d:15:
26:9b:27:4f:fc:0c:32:2c:f4:02:5a:a5:0c:88:6b:
98:ce:5d:dd:96:6d:26:b3:61:ac:af:e0:43:fe:69:
8a:81:aa:ab:75:26:6d:02:64:4f:61:48:9f:64:4a:
b0:55:a4:50:f5:e8:94:e1:fe:8b:dc:d8:aa:ff:e5:
91:3e:8c:e1:f2:dd:9c:71:af:aa:f5:29:ae:26:65:
fb:b0:db:f7:38:e5:d4:f3:c6:c8:74:52:68:89:7d:
6d:4c:89:fd:a1:54:a4:2e:3c:88:34:04:6b:de:43:
e8:af:e9:04:d9:07:63:97:0b:6b:7a:40:f9:35:2f:
73:c1:29:1c:0c:4f:83:22:6a:f0:e2:8b:7a:94:f7:
0f:12:cc:96:56:41:ed:ff:b6:b3:b6:aa:e8:1e:5f:
fe:c5:3b:80:ca:08:3b:27:7a:a1:ea:21:c6:e5:6c:
ae:89:fd:a7:aa:08:93:00:cd:08:96:56:13:f1:87:
b4:81:f3:3b:af:93:b0:7a:6e:03:28:72:39:a6:35:
76:25:d3:c0:a6:44:45:e8:01:f0:ab:4e:d1:9c:7d:
0b:20:e9:6b:81:90:ed:e2:b9:71:3d:cc:38:2d:ee:
6d:e2:c5:14:94:c8:18:ed:9e:df:d1:24:8a:98:ca:
45:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C3:50:8E:01:32:C0:F6:2E:8B:2B:55:46:0B:3A:A4:06:E7:3A:34
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/M8NQjgEywPYuiytVRgs6pAbnOjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.61.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:b3:5d:e8:60:c8:5d:ca:fd:28:8f:39:ac:f1:09:5b:f4:46:
30:c7:79:31:4b:b4:b2:b4:56:62:04:58:f9:0c:0f:5f:d2:67:
23:4a:ec:f2:1b:c1:8b:96:3b:be:54:b5:69:60:53:f5:26:b0:
a6:7a:98:54:ac:b7:a6:5a:d5:04:1d:b8:36:d5:be:b0:a0:66:
ef:5f:86:34:08:a3:53:96:00:8d:88:7e:9d:5b:e4:2b:d3:b4:
db:76:71:d1:61:07:c6:01:98:13:1c:9c:e7:f3:a6:3a:92:ed:
08:9a:a2:f6:0f:c4:e7:52:f0:c5:e0:2a:09:58:a3:3b:e0:b9:
0c:4c:4f:1e:42:c8:d2:38:bf:c3:c7:b8:a2:08:3d:b2:2a:97:
79:34:fe:64:dc:a9:d5:bf:66:ba:33:12:00:8a:12:ba:8f:31:
96:74:5a:1b:5f:0a:a1:53:18:21:98:43:e4:a9:c5:05:73:59:
4e:30:c0:d2:b9:a6:3a:4f:85:6c:95:3c:15:d7:2a:e2:28:6c:
b9:16:b0:00:1f:27:4d:29:13:82:ac:89:fc:6a:31:08:73:67:
92:c4:38:67:f2:5d:6d:6f:ca:b0:cc:ac:85:08:31:f3:40:5f:
2e:2e:b8:cf:0e:ff:91:4c:3d:73:7e:c8:04:c8:7b:22:1a:d6:
16:d4:8d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org