Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/MzUHKxdMPFsu_nTP43msHotnhxI.roa
File: MzUHKxdMPFsu_nTP43msHotnhxI.roa (raw, json)
Hash identifier: DZANsy1JW+Q2LxlxaGbIyB5hfQSqgRbE7q0ii5qdtfc=
Subject key identifier: 33:35:07:2B:17:4C:3C:5B:2E:FE:74:CF:E3:79:AC:1E:8B:67:87:12
Certificate issuer: /CN=1fa12d687c627a182f81d4cccb3f32201861f677
Certificate serial: 1965D95D
Authority key identifier: 1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/MzUHKxdMPFsu_nTP43msHotnhxI.roa
Signing time: Wed 13 Apr 2022 07:09:29 +0000
ROA not before: Wed 13 Apr 2022 07:09:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212572
IP address blocks: 185.50.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 426105181 (0x1965d95d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fa12d687c627a182f81d4cccb3f32201861f677
Validity
Not Before: Apr 13 07:09:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3335072b174c3c5b2efe74cfe379ac1e8b678712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d1:5f:85:9d:5e:46:f7:12:8a:63:de:7b:d8:
9a:1b:5d:76:16:e6:dc:15:5f:c7:b3:d0:1b:ee:c0:
e9:a7:e8:8c:85:b0:7f:22:0c:de:3a:6c:28:60:ef:
04:1a:ad:28:dd:4e:16:d4:df:45:75:5a:ce:dc:6e:
f9:24:56:89:57:ac:fe:94:0d:36:a7:5c:92:2b:db:
1d:48:bf:57:ef:11:b8:df:66:b9:8f:17:b8:23:63:
7b:69:1f:62:32:7e:d3:24:e7:b8:cc:2d:46:ba:ca:
dd:4c:94:b7:a0:4c:01:94:f8:95:da:5c:40:69:ce:
57:1b:19:fc:60:b6:19:c3:f3:73:8e:f4:c4:1e:3c:
8f:5f:be:15:d2:61:c2:e4:3d:f8:1a:bb:8b:57:4c:
08:2e:3e:a9:4c:0a:7c:22:1b:ee:67:77:fe:48:08:
f3:0f:46:8c:b8:65:10:92:e0:ab:a5:79:01:b0:f4:
86:c4:70:ff:70:3f:9e:1e:0a:9a:58:c1:08:f1:17:
00:2d:b7:c5:70:83:de:cb:ec:75:58:05:4a:98:54:
8a:dd:b0:5c:33:10:27:cf:e8:1b:92:f0:4e:32:a7:
39:3b:72:15:77:48:51:54:32:e9:7c:2c:c3:6d:9d:
b2:c7:79:cc:4f:3c:c1:57:51:dd:8c:6b:bc:fd:32:
a3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:35:07:2B:17:4C:3C:5B:2E:FE:74:CF:E3:79:AC:1E:8B:67:87:12
X509v3 Authority Key Identifier:
keyid:1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/MzUHKxdMPFsu_nTP43msHotnhxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/H6EtaHxiehgvgdTMyz8yIBhh9nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.56.0/22
Signature Algorithm: sha256WithRSAEncryption
94:f8:27:9c:56:b2:be:3d:00:80:31:cd:34:e2:51:89:f0:8b:
6e:00:86:4c:1d:20:8d:d8:f2:12:50:65:04:5d:ee:1b:40:de:
71:a1:d0:9a:02:13:10:6f:52:dc:df:21:d9:77:56:ee:fd:9b:
9f:b1:0a:a6:e7:b6:75:3f:6e:bd:1a:9d:d6:3a:a5:9e:20:bc:
85:be:0a:31:f4:47:ae:f2:87:47:22:a7:e1:5f:0a:4d:42:d5:
dc:3f:97:29:25:05:17:2d:16:49:12:71:8c:91:bf:56:e5:e8:
73:9d:73:20:6d:43:f8:60:90:e7:33:59:b4:46:ed:6f:ee:a6:
f0:b4:b7:1e:65:9d:e2:af:dc:0e:ae:02:ee:89:18:f8:e0:c0:
c4:0c:82:75:e5:4f:12:e4:25:7b:79:e6:89:14:4c:f3:50:8e:
9c:71:0f:1f:11:94:39:f0:31:cb:24:fe:85:6c:de:f3:3c:18:
30:28:03:3d:ce:09:91:16:ba:69:da:b5:06:6a:33:88:12:90:
dd:cf:b0:35:37:05:78:f0:fe:90:67:cc:20:67:b6:af:ed:39:
4b:02:ba:15:5b:6c:82:67:cd:99:8f:d3:f6:bc:29:b4:18:90:
bc:cb:77:de:62:28:72:82:56:49:5e:f4:c3:62:b6:dd:f7:8f:
57:80:4f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:20 2023 by rpki-client on console-ams.rpki-client.org