Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/MBtLYPvbMNUTNV56rippQ1aZsWQ.roa
File: MBtLYPvbMNUTNV56rippQ1aZsWQ.roa (raw, json)
Hash identifier: lSswIyfdsDvUWe78G7n75CxHct2qXJN0VLvTIyBZI/E=
Subject key identifier: 30:1B:4B:60:FB:DB:30:D5:13:35:5E:7A:AE:2A:69:43:56:99:B1:64
Certificate issuer: /CN=b9df156ee18b6958d4306b6311b4a086763eff62
Certificate serial: 0458549E
Authority key identifier: B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/MBtLYPvbMNUTNV56rippQ1aZsWQ.roa
Signing time: Mon 30 May 2022 13:59:13 +0000
ROA not before: Mon 30 May 2022 13:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60798
IP address blocks: 37.156.244.0/24 maxlen: 24
185.116.60.0/24 maxlen: 24
2a0c:79c0:3::/48 maxlen: 48
2a0c:79c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72897694 (0x458549e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9df156ee18b6958d4306b6311b4a086763eff62
Validity
Not Before: May 30 13:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=301b4b60fbdb30d513355e7aae2a69435699b164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:57:37:df:44:40:da:c8:ab:e0:7c:98:9d:3a:
48:89:da:c6:09:9e:37:5c:c6:cb:8f:14:67:66:9d:
d5:c7:82:22:87:0d:0b:6b:b6:f3:c6:7b:50:ea:43:
90:25:56:1e:ef:e0:8b:7f:be:76:30:6b:be:31:e8:
c7:60:ff:d3:8f:39:e5:c5:98:bc:2b:ae:a2:1f:35:
99:13:b6:a7:a4:10:d8:23:4a:39:fa:be:f2:aa:54:
27:28:79:6d:ea:5a:a4:cf:91:d6:4b:60:11:98:d9:
58:65:98:2b:6c:46:c0:80:58:30:e0:6c:df:7e:e7:
41:2b:3e:d4:dd:77:ef:21:78:64:41:b2:12:6a:cf:
27:dd:d3:a2:06:c0:c4:e6:8b:14:da:50:f9:b6:a1:
04:59:80:09:bc:8a:96:54:1b:e7:20:cc:50:ef:94:
6d:db:3a:b2:c6:4d:f3:b7:c5:6f:5d:73:0f:c9:91:
df:27:48:d9:cd:d5:5b:3c:2c:de:9b:bf:a6:fb:f4:
24:4b:46:eb:ec:e5:a4:d5:fa:f8:d1:14:b7:51:cc:
cb:80:47:2e:0f:d4:cf:92:2c:c2:6a:c4:d9:07:4a:
85:65:00:f3:67:ab:22:99:93:de:98:b0:cf:f6:01:
7b:db:82:c2:db:7d:4a:a0:83:26:68:3b:3a:13:28:
c3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1B:4B:60:FB:DB:30:D5:13:35:5E:7A:AE:2A:69:43:56:99:B1:64
X509v3 Authority Key Identifier:
keyid:B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/MBtLYPvbMNUTNV56rippQ1aZsWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/ud8VbuGLaVjUMGtjEbSghnY-_2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.244.0/24
185.116.60.0/24
IPv6:
2a0c:79c0:1::/48
2a0c:79c0:3::/48
Signature Algorithm: sha256WithRSAEncryption
b5:b8:63:61:3b:ce:cd:b4:a9:9e:fd:de:fd:f7:0c:18:d8:34:
6a:35:af:5d:e0:d2:93:e9:20:ad:6a:77:98:f5:68:b5:5a:e0:
55:72:3d:6d:35:a0:52:5a:9e:0e:8e:38:fa:e4:4c:71:53:e3:
92:eb:c8:91:23:4f:61:94:47:e5:80:5c:0c:bf:25:6d:ad:d0:
df:d9:33:2c:dc:19:0a:7a:0d:bf:22:fe:3c:31:ca:93:13:3e:
f0:bf:45:a5:7b:98:2e:4e:ed:e9:84:46:a4:1f:dd:f6:1c:2b:
d2:cd:5c:92:40:ab:d3:3d:9b:96:00:54:a2:29:47:00:43:5d:
ae:8e:48:6a:43:f2:2b:e5:e5:ca:0a:0c:0e:f5:d0:bb:2d:9b:
1d:10:25:9b:e8:aa:ee:3b:b9:82:2c:ef:2a:4f:0e:d4:a8:98:
25:af:bb:0c:85:d8:20:e8:1e:00:4a:ad:4d:63:fa:47:fa:31:
1b:65:9f:a5:10:3d:de:92:86:1c:16:a2:49:27:2b:8b:0a:25:
ea:74:6b:dc:b9:f8:83:2e:45:5f:5a:34:4f:63:dd:6b:f3:7b:
39:35:40:91:76:20:f2:a6:4b:5e:ae:12:84:6a:2e:10:41:4f:
7a:1f:bd:e3:0c:ba:2a:5c:18:2d:75:a8:d5:40:b2:5e:2c:9a:
d4:d2:b0:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:01 2023 by rpki-client on console.sobornost.net