Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/uWOHOkzL5UmA8zSBCsaqx94Ar30.roa
File: uWOHOkzL5UmA8zSBCsaqx94Ar30.roa (raw, json)
Hash identifier: bZ6aPQfM+QdPqcfRCaEm/pz2FL43uVyQBpTCMfVlZ2k=
Subject key identifier: B9:63:87:3A:4C:CB:E5:49:80:F3:34:81:0A:C6:AA:C7:DE:00:AF:7D
Certificate issuer: /CN=4e2a299f182a1fd51d4b0362997af7aaae0d6be9
Certificate serial: 16345E35
Authority key identifier: 4E:2A:29:9F:18:2A:1F:D5:1D:4B:03:62:99:7A:F7:AA:AE:0D:6B:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TiopnxgqH9UdSwNimXr3qq4Na-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/uWOHOkzL5UmA8zSBCsaqx94Ar30.roa
Signing time: Sat 01 Jan 2022 06:02:38 +0000
ROA not before: Sat 01 Jan 2022 06:02:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2094
IP address blocks: 185.4.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372530741 (0x16345e35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e2a299f182a1fd51d4b0362997af7aaae0d6be9
Validity
Not Before: Jan 1 06:02:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b963873a4ccbe54980f334810ac6aac7de00af7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f5:c5:39:2b:01:d3:dc:8a:e8:a9:91:60:2d:
4d:a9:58:a2:54:bb:d3:43:f4:58:4a:aa:d0:fa:34:
79:91:0f:91:b6:2e:14:d8:df:ad:7e:3e:6f:6b:8e:
2b:0f:06:db:eb:f1:47:db:52:55:5b:a9:47:95:c6:
3f:0d:9f:2d:35:96:fd:f2:1d:90:f4:de:dd:3e:c2:
5a:00:e4:f1:97:8b:82:d4:98:21:de:27:c6:11:73:
e1:d6:8a:38:ce:2c:00:54:f5:39:4a:53:4a:2e:cc:
83:2f:d1:d2:23:9d:42:b5:50:83:7c:9d:50:43:f6:
4f:8d:03:df:23:6b:c1:a4:0f:0e:60:ec:fa:ec:55:
43:a2:0f:94:0c:a3:01:55:a6:ee:f6:44:e4:1d:68:
a3:d7:13:05:e1:b2:e1:74:8f:77:5d:05:33:bb:be:
33:cc:a6:27:6a:38:c5:49:8c:bd:2d:58:ff:2c:91:
80:bc:d9:32:36:77:1d:e7:8c:74:ca:8a:81:10:4c:
be:35:63:92:66:06:4e:7f:33:da:ea:3a:37:37:d6:
0a:3b:c5:6b:c4:21:3f:fd:b9:0e:ff:56:ea:0e:4b:
4e:88:a8:d8:65:81:0b:ab:cd:27:3e:9d:92:07:df:
27:1c:07:2a:cc:30:59:ee:4d:2c:47:2b:3f:33:a6:
95:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:63:87:3A:4C:CB:E5:49:80:F3:34:81:0A:C6:AA:C7:DE:00:AF:7D
X509v3 Authority Key Identifier:
keyid:4E:2A:29:9F:18:2A:1F:D5:1D:4B:03:62:99:7A:F7:AA:AE:0D:6B:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TiopnxgqH9UdSwNimXr3qq4Na-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/uWOHOkzL5UmA8zSBCsaqx94Ar30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/TiopnxgqH9UdSwNimXr3qq4Na-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.250.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:fc:70:d4:21:b3:75:73:74:bd:7e:fe:44:04:7c:fc:e6:3d:
ae:c2:49:73:4a:34:5e:01:97:96:52:eb:f3:d1:10:1d:79:e2:
b9:b8:7d:77:e3:9c:75:db:28:25:c1:fe:88:42:86:36:c0:64:
2f:c6:43:f3:fe:ec:ad:e3:da:c3:aa:69:a9:fb:61:a2:8e:25:
86:db:f7:de:33:27:c9:75:f4:4b:58:6d:62:ed:2c:82:56:ed:
83:18:4c:25:8d:d0:5c:97:65:ca:0f:d2:0c:03:1a:85:15:e4:
f4:46:ab:0a:47:87:c4:7e:2d:40:a6:b0:a1:97:10:02:82:ae:
7c:ed:79:36:18:0b:c3:85:cb:eb:a2:a7:80:14:1d:50:39:41:
92:8d:50:8b:ac:5c:4e:b2:1e:f1:26:53:db:aa:6a:43:ef:fd:
42:e0:7a:e6:0e:ba:2c:cb:e7:f6:b1:b6:89:b8:95:94:03:f3:
81:5f:6a:aa:ee:30:77:9d:8d:49:e0:00:34:54:02:2f:8a:d5:
08:b1:dd:3d:e5:2d:32:5f:2c:67:9a:d2:c3:eb:70:ac:8c:98:
0b:9f:96:82:03:57:62:68:01:d0:05:50:2f:a7:c5:6f:3f:4f:
e4:54:4d:18:e9:6a:df:ff:0c:4a:69:1d:f8:78:89:df:59:df:
44:ef:59:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:02 2024 by rpki-client on console-fra.rpki-client.org