Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/X3MSLQcA6kv_4hnLmpw7gthkaSo.roa
File: X3MSLQcA6kv_4hnLmpw7gthkaSo.roa (raw, json)
Hash identifier: tdRxvmHaxtNjpyzHe7PgsRPSSqy5VLrwjHY0KR44tvw=
Subject key identifier: 5F:73:12:2D:07:00:EA:4B:FF:E2:19:CB:9A:9C:3B:82:D8:64:69:2A
Certificate issuer: /CN=6fdbbe7e978029c6ceaa557b4a76da68074311b1
Certificate serial: 013A8301
Authority key identifier: 6F:DB:BE:7E:97:80:29:C6:CE:AA:55:7B:4A:76:DA:68:07:43:11:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b9u-fpeAKcbOqlV7SnbaaAdDEbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/X3MSLQcA6kv_4hnLmpw7gthkaSo.roa
Signing time: Sat 01 Jan 2022 15:56:12 +0000
ROA not before: Sat 01 Jan 2022 15:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197588
IP address blocks: 185.191.244.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20611841 (0x13a8301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fdbbe7e978029c6ceaa557b4a76da68074311b1
Validity
Not Before: Jan 1 15:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f73122d0700ea4bffe219cb9a9c3b82d864692a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f4:b6:04:b2:3f:cc:fe:31:1d:4a:da:ec:2a:
ab:84:c4:a6:9d:09:a4:60:e9:c9:f3:41:1f:b8:d3:
40:df:c1:b3:19:e2:6f:1d:a1:3d:83:d4:b8:d1:1f:
0b:ee:7b:44:b7:5e:cc:d2:8c:62:96:15:c5:e1:74:
8d:d5:79:2a:86:e7:26:6e:81:b9:6e:d8:27:b0:55:
ba:c6:f8:ba:1b:2f:f2:7e:df:a2:c4:2b:0e:30:42:
83:91:cf:cd:f9:51:f3:68:93:3c:b3:b5:4d:08:ff:
f9:0b:01:95:6f:a4:dc:e7:ab:df:90:ea:a3:3b:df:
52:21:3d:ab:f1:fc:c8:6e:ec:50:e7:7c:5a:22:c1:
6c:93:ab:07:c9:9a:1d:0b:ea:fe:ff:b0:32:11:ae:
9d:c0:8a:2b:c0:7a:e2:69:25:f3:9e:41:65:39:03:
ba:cc:e8:03:be:bf:9d:59:43:51:87:86:ab:8b:f8:
da:c1:7f:4d:88:6e:7d:b9:8a:30:91:e0:9d:e4:b6:
12:97:23:d4:0c:e9:c9:b1:10:72:f2:47:ab:42:1f:
5b:8f:33:a8:ae:d6:95:d1:ab:3a:45:05:8e:99:a2:
a9:73:58:4e:4b:d0:e0:74:6e:89:bc:69:da:8e:b0:
62:25:bc:28:c5:b8:25:c1:02:0a:17:c0:d1:df:5f:
d1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:73:12:2D:07:00:EA:4B:FF:E2:19:CB:9A:9C:3B:82:D8:64:69:2A
X509v3 Authority Key Identifier:
keyid:6F:DB:BE:7E:97:80:29:C6:CE:AA:55:7B:4A:76:DA:68:07:43:11:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9u-fpeAKcbOqlV7SnbaaAdDEbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/X3MSLQcA6kv_4hnLmpw7gthkaSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/72a4e3-f793-4f9a-ba4e-0590394a2efa/1/b9u-fpeAKcbOqlV7SnbaaAdDEbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.244.0/23
Signature Algorithm: sha256WithRSAEncryption
13:32:18:3c:3c:23:e6:cc:31:40:c2:e4:80:ad:47:23:a4:25:
24:c4:47:a9:a3:ac:fc:c2:44:89:d5:52:b3:45:73:97:31:9e:
18:34:6b:2f:04:21:f7:b6:74:4c:33:93:36:c2:56:86:38:78:
2c:99:19:ed:f6:83:8d:dc:24:12:5c:b4:76:4e:0e:de:3b:c3:
7b:37:d5:b4:6f:a9:6a:dd:b5:01:6e:cc:b5:4d:f3:9f:78:c0:
9d:75:0e:be:f0:0a:0b:a1:32:54:f0:d0:ac:c1:70:71:cf:be:
01:f5:07:15:0a:6c:a9:b7:4c:17:e0:60:fd:8a:be:39:90:96:
b9:5f:c7:5e:30:e0:6d:c3:8a:e6:71:cd:45:7e:f6:d3:40:46:
0d:f4:a8:60:fd:94:b2:06:d7:81:76:f2:1e:41:8d:6d:fe:f6:
ea:c1:19:18:92:8c:3a:a4:98:cc:23:eb:2b:1f:38:69:c8:68:
0f:7f:26:9f:90:d3:45:35:89:1e:8c:e3:fc:a9:ea:b6:12:45:
dc:e8:d6:4d:20:3c:89:4f:c4:2f:b2:cd:ff:16:0d:7e:48:e2:
89:aa:4e:85:5c:99:f2:6a:09:73:7f:33:f8:1e:8f:49:46:64:
06:f7:8a:61:b2:35:a2:5e:db:6d:20:9d:92:25:e5:f3:13:60:
cb:7d:a3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net