Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/uhb9SSE1CDq7JEjtXLZcDkQ7ytQ.roa
File: uhb9SSE1CDq7JEjtXLZcDkQ7ytQ.roa (raw, json)
Hash identifier: f3GD+YfY9LqADD4zagCVaG5ACcprYRgRGCaM4f6U1Po=
Subject key identifier: BA:16:FD:49:21:35:08:3A:BB:24:48:ED:5C:B6:5C:0E:44:3B:CA:D4
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 0171F9
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/uhb9SSE1CDq7JEjtXLZcDkQ7ytQ.roa
Signing time: Thu 28 Apr 2022 12:34:40 +0000
ROA not before: Thu 28 Apr 2022 12:34:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6730
IP address blocks: 194.56.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94713 (0x171f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Apr 28 12:34:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba16fd492135083abb2448ed5cb65c0e443bcad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6c:16:1f:49:11:8a:e4:38:05:87:cf:ea:2e:
7b:d0:a1:fa:16:eb:60:19:43:5b:92:79:3a:fd:a1:
1a:b3:89:98:a3:bb:40:22:0d:d8:8e:25:ed:a0:31:
98:0e:c3:aa:0a:74:77:85:bc:4a:84:fc:2b:4b:75:
e0:2f:8e:e8:c0:b8:ad:0f:07:d7:b5:45:68:45:a0:
93:73:3a:72:7d:9e:cf:ac:d2:78:62:9f:49:56:56:
e8:ed:04:0a:fb:c4:d5:91:a5:af:2c:0f:68:a4:5f:
f4:d1:31:83:10:2d:94:7c:4c:b9:d3:fb:00:96:30:
db:0c:38:38:14:ba:8b:89:1c:ed:9c:9c:51:9c:43:
1f:51:4b:5a:e5:5b:ef:9f:84:fc:21:83:12:24:6c:
c7:bd:46:81:33:c3:9b:6a:4b:fb:2d:1d:90:6a:59:
bf:72:42:78:83:28:07:f6:5e:d4:50:e2:01:2c:39:
3d:04:49:0f:e3:4d:a7:b3:09:62:2d:1a:ac:41:10:
5e:78:65:99:7e:e8:34:1b:5f:88:71:f9:85:bf:e6:
b5:37:db:fa:b9:d3:c0:2f:45:93:70:7f:2a:38:87:
81:de:ad:44:04:f4:ab:e7:b3:a2:b1:1e:74:45:04:
40:c2:f3:e2:be:1c:92:71:c6:b3:05:ce:67:67:6d:
dd:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:16:FD:49:21:35:08:3A:BB:24:48:ED:5C:B6:5C:0E:44:3B:CA:D4
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/uhb9SSE1CDq7JEjtXLZcDkQ7ytQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.8.0/24
Signature Algorithm: sha256WithRSAEncryption
32:a7:22:6b:45:57:fe:c2:de:b6:02:ae:67:e9:98:bc:36:d9:
e6:c7:8c:df:2b:6d:39:83:43:61:1c:d0:d8:46:b4:92:de:c0:
38:f2:67:5f:d5:c9:2a:83:c6:c3:77:07:ec:a9:21:0e:c6:06:
2a:d1:66:a6:4d:ae:8e:2f:cf:a2:4a:6f:6d:d2:f0:93:81:e1:
97:2f:1b:b0:49:f0:c6:ef:2f:6d:20:c1:e6:ff:c4:d7:1a:c2:
99:9f:d7:ed:cc:ee:f6:49:f5:05:fc:41:5a:9f:9e:96:3e:8f:
84:bc:94:0e:4f:65:85:c1:31:60:74:aa:7e:c4:93:2c:d0:ca:
45:ba:18:4f:b0:3f:d6:1e:af:ee:bd:6e:6c:28:d4:cf:fb:e9:
2f:d6:c3:eb:d4:c6:19:b1:3d:fc:37:a9:f3:90:91:10:68:35:
e0:a6:73:6e:f9:dc:bc:56:c6:7b:40:73:9d:48:9b:b4:40:fe:
fb:28:60:c5:4d:0a:fb:80:f1:33:c7:56:52:c1:f3:e1:4a:b9:
f9:9c:44:ba:74:ac:70:70:bd:d0:a5:15:14:9b:22:4c:14:c2:
81:52:02:b8:58:a1:9f:db:ee:e0:1e:b5:84:9f:5b:57:28:77:
05:74:4f:62:f8:76:90:cd:c6:42:4c:24:63:50:43:58:13:eb:
20:4d:06:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:00 2024 by rpki-client on console-fra.rpki-client.org