Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/M2dwnbXzV4b1LGhU8-znLAJCqT0.roa
File: M2dwnbXzV4b1LGhU8-znLAJCqT0.roa (raw, json)
Hash identifier: Pz16p1NMjvSOtzFy9RC2IMVZX8vg1YOJlyfEHStdP2g=
Subject key identifier: 33:67:70:9D:B5:F3:57:86:F5:2C:68:54:F3:EC:E7:2C:02:42:A9:3D
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 08B14C32
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/M2dwnbXzV4b1LGhU8-znLAJCqT0.roa
Signing time: Sat 01 Jan 2022 13:02:03 +0000
ROA not before: Sat 01 Jan 2022 13:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52179
IP address blocks: 185.138.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145837106 (0x8b14c32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 13:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3367709db5f35786f52c6854f3ece72c0242a93d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e7:03:6c:d2:aa:8c:e7:6b:78:39:b4:eb:76:
13:d0:c9:2a:06:78:e1:1b:e6:68:6e:fb:f1:f7:32:
e9:2a:cf:58:5b:45:2e:68:07:51:dd:3f:f2:f6:2b:
d6:f2:69:4c:f3:4f:1f:9f:9e:95:e4:18:a6:50:2b:
d9:5a:f7:27:ef:6c:b1:72:a3:d9:40:8b:c9:19:8f:
c0:92:b3:9b:0f:71:6d:53:be:07:b0:4d:28:4f:2f:
f9:c6:8e:f2:df:e1:34:bb:35:eb:2c:d4:aa:bb:f2:
b0:42:ec:14:b1:f6:7a:11:df:b5:74:dd:fa:36:3a:
ea:c3:47:64:71:c7:04:93:af:e8:47:d0:9b:ef:f1:
b2:78:65:ea:b5:ec:f7:da:ea:d3:f2:42:ab:0f:f3:
2d:02:c7:0d:d2:b3:a0:f8:b6:6f:7c:20:de:35:80:
78:0b:32:33:6e:73:72:ca:be:13:81:a6:ed:0c:75:
5a:32:00:ae:6c:b8:e4:35:25:ea:91:d1:8e:66:5f:
35:26:c2:fe:76:57:c1:6e:92:b5:7f:e9:37:43:4c:
c9:7a:b2:56:e0:b8:62:ae:2c:e3:67:37:4c:fe:36:
c7:97:10:a2:bc:61:af:ac:f1:30:0a:53:92:4e:29:
f6:c4:18:d1:82:97:33:bc:d4:f2:95:e7:68:e8:57:
4e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:67:70:9D:B5:F3:57:86:F5:2C:68:54:F3:EC:E7:2C:02:42:A9:3D
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/M2dwnbXzV4b1LGhU8-znLAJCqT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.229.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d9:d3:09:64:46:61:65:4f:03:c7:9c:0e:5b:22:72:c9:21:
26:88:b1:a0:f0:ea:f7:c1:1a:30:7b:f3:a1:ef:35:bb:f4:15:
8e:37:12:79:81:d0:43:55:5f:1f:c6:b2:0f:c5:2c:72:9f:fd:
0a:f5:33:c6:2f:e7:63:6d:df:51:46:f8:b0:ee:ac:9d:6a:71:
dc:66:21:b7:b5:77:af:10:f4:fc:6b:7b:eb:97:c9:82:1d:33:
79:42:42:ea:7f:a8:4d:82:02:4e:40:f3:e8:a7:fe:ba:50:88:
af:d8:02:99:96:e8:06:71:4e:58:b9:ec:33:4d:5b:f4:8c:60:
b5:c1:29:ff:97:b3:61:f1:0f:53:95:65:e2:54:3d:51:c6:9c:
cc:0c:e2:1c:d5:2c:85:ee:21:76:63:c1:6f:ed:05:a1:bb:44:
4f:45:66:43:f1:f6:de:82:d1:fd:b9:2d:cf:4c:1a:93:c8:05:
c2:f0:a2:79:d0:3f:51:71:22:b2:d1:05:b8:8f:85:54:96:b6:
41:e9:83:d2:95:b7:ab:4c:fa:3e:0d:df:53:b6:d0:23:53:c7:
0e:96:b0:c3:e7:ae:e7:74:15:87:74:6d:60:08:e5:91:40:76:
89:25:46:56:1c:d9:c2:8f:28:d1:77:b9:7d:2b:c2:50:b6:6d:
ec:c9:4c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net