Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/MkWuG8sSwTWIoSCegqumSYzeghA.roa
File: MkWuG8sSwTWIoSCegqumSYzeghA.roa (raw, json)
Hash identifier: pMiSDisEAXfLvuEOnSsy9dhdHa60tfjvD1781Udhk1I=
Subject key identifier: 32:45:AE:1B:CB:12:C1:35:88:A1:20:9E:82:AB:A6:49:8C:DE:82:10
Certificate issuer: /CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Certificate serial: 1A93C42A
Authority key identifier: 7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/MkWuG8sSwTWIoSCegqumSYzeghA.roa
Signing time: Sat 01 Jan 2022 01:57:03 +0000
ROA not before: Sat 01 Jan 2022 01:57:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9002
IP address blocks: 185.45.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445891626 (0x1a93c42a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Validity
Not Before: Jan 1 01:57:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3245ae1bcb12c13588a1209e82aba6498cde8210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:20:b2:1d:8f:78:1e:11:1c:66:af:6e:5f:
37:26:aa:49:bf:74:11:bb:03:b6:a8:55:4b:2e:14:
2a:4e:9c:5d:63:2f:2d:1d:32:1e:a1:e2:85:a6:00:
e4:19:6e:eb:11:80:dc:06:62:9e:9d:7d:bc:24:66:
1f:b6:05:ea:13:08:ed:e5:d9:0a:b9:21:0a:b5:02:
47:98:a6:a5:47:f0:f4:d6:fb:94:b3:d6:66:28:94:
14:86:8c:b8:bc:11:b9:ae:48:42:db:18:72:00:58:
e1:1f:20:4c:a6:9f:50:e0:61:a0:bb:f7:d9:2c:95:
38:b9:f1:f2:98:8c:8a:db:1f:35:50:8b:58:8e:30:
51:97:99:7e:a7:6f:a0:16:81:6c:5b:60:e1:18:36:
bb:16:ce:26:d3:2e:e4:af:62:68:fc:59:1e:2c:4f:
2f:48:c5:07:fa:87:ee:40:a0:78:e7:03:8c:7a:cc:
cb:79:fc:1d:6a:17:79:08:ac:ce:2a:49:5e:f6:dd:
bd:e3:6d:f6:34:c1:86:3a:9c:b3:22:71:5f:81:ee:
f7:03:b2:4d:fb:b7:1d:54:98:d4:c1:1e:e9:f9:88:
54:3a:8b:15:7b:fb:c6:77:07:3d:a6:94:35:42:9a:
d9:11:ad:e1:cb:fc:24:c6:76:13:53:f5:ff:77:f2:
16:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:45:AE:1B:CB:12:C1:35:88:A1:20:9E:82:AB:A6:49:8C:DE:82:10
X509v3 Authority Key Identifier:
keyid:7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/MkWuG8sSwTWIoSCegqumSYzeghA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/fUOw7HmVHV1VgBM-UympDy_uHFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.80.0/24
Signature Algorithm: sha256WithRSAEncryption
28:62:20:3c:d1:b6:3c:80:cf:83:c9:f5:92:f4:80:52:bc:97:
78:d0:b8:fc:ce:c2:5a:c8:23:22:61:1a:8b:7f:c3:56:bd:9b:
5a:29:1a:c7:91:c0:38:fd:33:f4:62:9a:ce:98:4f:c7:a3:99:
d9:37:b0:42:00:f2:50:93:24:cd:f0:f8:39:d4:74:f5:33:7c:
35:ed:4d:d3:d2:6a:1c:ca:25:a5:3d:5a:06:8a:4a:58:b7:51:
41:fe:0c:35:83:3a:9e:cd:71:5d:77:e5:09:c2:95:a9:60:2f:
96:45:da:45:a2:dc:9b:ba:d0:47:35:dd:a1:68:e3:60:71:3f:
18:35:7a:3e:41:10:88:58:79:aa:cb:b1:0c:bc:ae:85:19:4c:
24:21:40:a9:db:a9:9c:b9:b8:53:a6:6d:3d:70:20:61:79:5e:
5d:d6:d3:c9:df:a3:df:09:34:2e:a7:df:83:63:0c:2e:9c:10:
f8:09:3e:7a:fd:ca:8d:82:8c:ce:71:2a:5e:d5:7c:6a:15:f7:
fc:c1:c6:7d:a5:40:6a:b1:c7:ab:4d:84:f9:56:5c:fe:5a:06:
a8:86:a5:d5:2d:0a:2f:f3:9e:c3:2e:3a:03:0d:72:e5:71:dc:
63:01:a2:78:b4:3e:02:8a:7f:cc:a2:d2:c2:9a:ea:44:1d:86:
a8:c6:6a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:10 2023 by rpki-client on console-ams.rpki-client.org