Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/MYMKrhPTp8ucUyGR6ABd4MdDgnA.roa
File: MYMKrhPTp8ucUyGR6ABd4MdDgnA.roa (raw, json)
Hash identifier: zK10E0vqVHzmVglAz4rx7mndfa8Ispz9qfHnfdG/dkQ=
Subject key identifier: 31:83:0A:AE:13:D3:A7:CB:9C:53:21:91:E8:00:5D:E0:C7:43:82:70
Certificate issuer: /CN=b4f115424c181c67966ccc2467ede69d060ccf53
Certificate serial: 03F7AA23
Authority key identifier: B4:F1:15:42:4C:18:1C:67:96:6C:CC:24:67:ED:E6:9D:06:0C:CF:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPEVQkwYHGeWbMwkZ-3mnQYMz1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/MYMKrhPTp8ucUyGR6ABd4MdDgnA.roa
Signing time: Sat 01 Jan 2022 13:56:53 +0000
ROA not before: Sat 01 Jan 2022 13:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212552
IP address blocks: 185.202.113.0/24 maxlen: 24
195.248.240.0/24 maxlen: 24
195.248.243.0/24 maxlen: 24
195.248.242.0/24 maxlen: 24
195.248.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66562595 (0x3f7aa23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f115424c181c67966ccc2467ede69d060ccf53
Validity
Not Before: Jan 1 13:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31830aae13d3a7cb9c532191e8005de0c7438270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:96:5e:c6:b5:16:3f:f9:ce:fe:23:49:29:12:
13:af:2e:d6:9a:b1:b0:6d:77:f8:90:65:d8:ba:4a:
69:68:d4:50:8e:2a:34:2f:46:85:66:24:99:c2:d3:
69:82:25:fb:3d:a5:f4:92:fd:a9:fd:21:a1:a5:c9:
a3:3e:ec:15:2e:26:21:2b:a7:5c:35:c7:c8:a3:a7:
f3:15:bf:fd:4a:3b:7a:10:d7:48:7d:02:21:b3:14:
24:2d:a7:cc:ec:5f:16:7b:01:75:f9:75:d1:9c:5a:
4f:11:0a:7a:11:7c:3f:a2:ea:03:a4:97:d2:0c:77:
3d:b6:0a:cf:63:3f:3b:be:26:d6:d8:dc:fb:a3:e6:
08:25:9c:d1:bd:ea:bb:fc:c3:1a:ae:c0:14:86:45:
eb:f4:23:81:cd:81:8b:ae:19:6e:76:db:e0:a6:09:
00:17:f8:cd:25:e3:7c:34:f3:c3:df:76:0a:ea:83:
2c:61:8b:e1:2e:71:45:d4:05:6b:25:79:b5:52:78:
5d:8c:6a:58:3c:59:4f:a4:70:cf:7c:bc:6b:bc:cc:
f1:03:ca:ab:7c:cc:58:f5:10:c3:9c:f2:1f:42:1c:
31:f8:8b:3e:06:8c:d2:bf:03:79:7f:06:60:60:ba:
00:ca:02:21:1d:88:cd:45:0a:51:df:1b:e8:47:e1:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:83:0A:AE:13:D3:A7:CB:9C:53:21:91:E8:00:5D:E0:C7:43:82:70
X509v3 Authority Key Identifier:
keyid:B4:F1:15:42:4C:18:1C:67:96:6C:CC:24:67:ED:E6:9D:06:0C:CF:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPEVQkwYHGeWbMwkZ-3mnQYMz1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/MYMKrhPTp8ucUyGR6ABd4MdDgnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/869214-16d4-45e0-b87e-32e932d6fd0e/1/tPEVQkwYHGeWbMwkZ-3mnQYMz1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.113.0/24
195.248.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:7e:44:92:b4:31:5a:03:3c:f7:2e:a8:55:4f:44:1a:32:86:
78:48:05:51:22:9d:a2:17:5b:d2:f6:2d:d1:47:e3:9d:a5:cd:
ba:fb:3a:76:9f:d7:0a:db:dc:bf:35:58:33:1a:f5:7d:e3:02:
49:9d:cc:0e:93:c3:f9:1e:b6:e6:1f:77:b2:3f:89:38:73:28:
3b:e3:d2:a0:cc:3f:51:34:6a:28:1e:8a:6f:b2:28:f6:4f:ab:
c3:b1:01:7c:bf:a0:f7:80:7c:8e:3c:32:52:fb:e3:84:cb:b4:
70:32:dc:f8:43:ac:e8:fe:b9:8e:62:06:85:eb:51:d9:20:f2:
ad:6f:03:da:c9:ae:af:c3:93:a6:4f:ea:ff:03:51:0e:61:c4:
c3:3b:9d:64:dc:cf:aa:22:ee:20:01:64:ce:4c:15:34:19:80:
08:40:2b:6b:d9:0e:99:eb:32:9c:76:67:9c:d7:3e:f7:88:42:
7b:34:f4:1b:37:c8:13:d1:6a:77:d6:c8:60:eb:d1:6a:9e:10:
ba:68:cb:4b:3b:ee:22:b2:c4:88:c5:fc:5b:88:39:23:f3:00:
cb:f9:89:95:47:f2:dc:7a:51:c1:d9:36:0b:8b:0d:5f:01:48:
a8:ff:aa:7c:78:a6:f9:2d:f0:d5:56:aa:34:1c:14:93:42:14:
d9:16:bc:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:40 2024 by rpki-client on console-ams.rpki-client.org