Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/mkuXVtgL9ww_oNQrY_PCKa0sYqI.roa
File: mkuXVtgL9ww_oNQrY_PCKa0sYqI.roa (raw, json)
Hash identifier: RbInfMnp0zdZ1KjhhnVFx7oPG3xV763mfMizKxQwO2M=
Subject key identifier: 9A:4B:97:56:D8:0B:F7:0C:3F:A0:D4:2B:63:F3:C2:29:AD:2C:62:A2
Certificate issuer: /CN=3ee770f47fd903925d80ac58e05e076f3baa110b
Certificate serial: 07B8E8DD
Authority key identifier: 3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/mkuXVtgL9ww_oNQrY_PCKa0sYqI.roa
Signing time: Sat 01 Jan 2022 03:59:30 +0000
ROA not before: Sat 01 Jan 2022 03:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62113
IP address blocks: 185.38.27.0/24 maxlen: 24
194.31.164.0/22 maxlen: 24
45.136.36.0/22 maxlen: 24
185.38.24.0/22 maxlen: 24
2a00:fbe0::/32 maxlen: 48
2a00:fbe0:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129558749 (0x7b8e8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee770f47fd903925d80ac58e05e076f3baa110b
Validity
Not Before: Jan 1 03:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a4b9756d80bf70c3fa0d42b63f3c229ad2c62a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:68:62:37:fb:3c:ac:82:3a:ce:14:5b:b2:b0:
48:c2:a4:e5:5e:57:68:db:54:77:ce:92:b1:95:6c:
fa:94:25:59:36:c4:63:dc:e6:96:08:6f:1a:a5:44:
1f:e0:3b:74:cd:2b:e9:08:de:72:c5:a7:ed:6f:61:
fd:94:37:1a:3c:dd:65:f8:17:27:19:ed:4d:4b:08:
f6:fa:99:4c:20:12:45:b2:68:ea:35:97:5f:aa:14:
4d:e5:17:14:b7:f9:05:14:f4:40:ca:2c:2f:d6:af:
4d:5f:c9:a7:23:40:bd:7b:59:09:d2:97:1d:0c:29:
d8:4a:f3:13:f8:4e:ac:b0:b7:62:c4:68:95:c1:6d:
de:af:4c:d3:35:1e:44:7b:18:5a:58:d8:40:ee:ae:
49:3f:f8:5b:82:c5:35:31:88:87:5e:2b:f6:ef:8e:
a0:91:99:dc:71:70:c4:cc:ef:74:14:d4:08:83:df:
c1:44:e3:38:63:00:76:dd:cc:ef:24:84:8c:ff:25:
f6:e9:26:a7:2e:1b:9d:9c:15:41:e8:a8:fe:51:73:
db:51:e2:07:ac:77:0a:f1:03:0f:69:5b:a4:04:a7:
d0:87:1e:87:73:52:af:6d:14:8c:a8:b6:7f:93:41:
3e:f7:21:96:e5:28:fb:4c:58:41:57:b3:cf:5d:f0:
2a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4B:97:56:D8:0B:F7:0C:3F:A0:D4:2B:63:F3:C2:29:AD:2C:62:A2
X509v3 Authority Key Identifier:
keyid:3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/mkuXVtgL9ww_oNQrY_PCKa0sYqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.36.0/22
185.38.24.0/22
194.31.164.0/22
IPv6:
2a00:fbe0::/32
Signature Algorithm: sha256WithRSAEncryption
9a:16:1e:25:2b:08:69:9c:3c:de:99:1b:a7:65:31:6a:f7:5d:
6e:19:b5:ba:bd:17:53:9a:f6:74:7e:e5:85:1b:2e:4a:44:20:
62:92:3a:78:9f:61:70:a0:a2:99:d9:8d:51:eb:91:ac:7a:bb:
7d:e0:00:36:93:bc:91:ef:c5:18:05:6d:dd:96:3b:94:81:fb:
3c:44:f0:67:cb:7f:b6:74:0b:c1:99:e8:41:3a:09:ca:8e:5e:
1f:69:e4:58:45:57:da:00:d6:f7:22:5c:0a:80:e9:3a:27:3c:
d1:2f:20:e5:17:68:96:ee:0e:aa:ce:a9:1c:f6:51:e9:f2:08:
5d:71:83:bb:c5:75:97:38:37:ff:f3:da:41:25:45:88:7a:fa:
04:95:56:d8:b6:2f:96:0a:cc:c8:f8:63:85:e7:e4:32:03:2e:
d7:e5:99:70:b3:b8:c7:de:7d:62:87:1f:ee:e6:25:cc:e5:ff:
f4:ce:a1:be:5d:9d:91:0f:b7:53:6c:23:19:1a:bc:46:68:8c:
b8:f9:ef:fb:cf:b2:65:b6:4f:18:98:c5:f8:37:8d:df:d7:d3:
3f:ce:e0:b5:fa:30:d1:81:67:1e:b2:18:9a:ca:93:43:f8:1a:
f7:5c:86:e9:0c:e5:2b:e4:ae:c0:a3:b9:f6:88:7f:e9:7b:eb:
97:4b:02:f4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:32 2024 by rpki-client on console-ams.rpki-client.org