Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/8e206b-e987-461a-ad00-fbbc76ea96d5/1/UL4F9-ZpJ8VQBuQZvuhkW3ZBZGs.roa
File: UL4F9-ZpJ8VQBuQZvuhkW3ZBZGs.roa (raw, json)
Hash identifier: dXO5zt5hLsOqfiJpry0y513igrQ1dHsEdGK7sq5Pav4=
Subject key identifier: 50:BE:05:F7:E6:69:27:C5:50:06:E4:19:BE:E8:64:5B:76:41:64:6B
Certificate issuer: /CN=b3d307a986092cd65fc93419863e03d98944011a
Certificate serial: 018434C49803D4EABE2D143A4E977B0655B3
Authority key identifier: B3:D3:07:A9:86:09:2C:D6:5F:C9:34:19:86:3E:03:D9:89:44:01:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9MHqYYJLNZfyTQZhj4D2YlEARo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/8e206b-e987-461a-ad00-fbbc76ea96d5/1/UL4F9-ZpJ8VQBuQZvuhkW3ZBZGs.roa
Signing time: Tue 01 Nov 2022 19:56:49 +0000
ROA not before: Tue 01 Nov 2022 19:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48551
IP address blocks: 185.74.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:34:c4:98:03:d4:ea:be:2d:14:3a:4e:97:7b:06:55:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d307a986092cd65fc93419863e03d98944011a
Validity
Not Before: Nov 1 19:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50be05f7e66927c55006e419bee8645b7641646b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a3:6a:28:66:41:57:83:51:be:55:bb:e0:26:
d3:81:fe:0d:84:5b:a2:87:8c:97:57:04:99:5b:fb:
15:ca:4f:05:9e:e2:d4:cb:90:6b:64:8c:3b:7c:0b:
85:53:18:cb:d0:11:7b:9f:99:9b:35:dd:51:1c:69:
5a:8f:b3:4c:f1:bb:8f:9d:ec:b7:47:16:ee:f3:e8:
51:42:99:5e:a7:a1:47:12:36:0b:88:46:d9:b4:ca:
03:37:eb:de:5a:87:90:0a:e3:09:de:a6:ce:d3:94:
c2:83:3d:33:42:39:f1:7a:00:33:b1:31:4f:a4:bc:
cc:51:12:16:5d:93:9e:bf:51:e9:93:0b:f1:ac:7e:
90:df:7d:4a:cc:07:a7:f1:86:1a:90:05:03:31:ae:
8b:1d:21:3c:d9:a9:42:d2:9a:9f:b1:0b:37:f4:ae:
e4:a9:8e:1a:5b:6a:21:f6:2f:0b:04:11:48:b7:88:
e3:ad:03:6a:89:ca:57:42:05:1c:21:c7:28:84:c0:
e1:63:72:98:9c:4e:a1:07:18:3f:09:33:87:4d:62:
fd:80:4e:ef:c1:20:a7:e9:72:40:ab:3b:1c:55:df:
6a:fb:a9:95:05:bd:ab:dd:c7:7c:5f:3f:c7:aa:d3:
93:fb:13:c9:44:74:b6:f6:3d:d8:fd:b8:45:c9:a9:
be:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BE:05:F7:E6:69:27:C5:50:06:E4:19:BE:E8:64:5B:76:41:64:6B
X509v3 Authority Key Identifier:
keyid:B3:D3:07:A9:86:09:2C:D6:5F:C9:34:19:86:3E:03:D9:89:44:01:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9MHqYYJLNZfyTQZhj4D2YlEARo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/8e206b-e987-461a-ad00-fbbc76ea96d5/1/UL4F9-ZpJ8VQBuQZvuhkW3ZBZGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/8e206b-e987-461a-ad00-fbbc76ea96d5/1/s9MHqYYJLNZfyTQZhj4D2YlEARo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.221.0/24
Signature Algorithm: sha256WithRSAEncryption
39:44:62:1c:01:61:d9:c6:2b:8e:e2:2d:6a:d1:54:72:40:e7:
7b:0f:e7:69:ce:d6:d2:74:a1:d9:58:d1:a9:cb:d6:6c:90:bf:
9a:99:2c:37:c1:6c:6e:2c:9c:b0:ff:47:51:99:ce:69:0c:55:
8e:50:fe:24:d3:28:02:a3:84:c5:85:31:4f:e5:b3:b0:5e:c1:
52:77:42:db:a1:02:79:38:50:46:af:47:17:86:0f:a3:f5:d8:
f0:28:fd:77:b2:7a:cc:ed:cf:62:bb:79:8d:2a:f2:ef:0a:1f:
9e:d2:cd:1a:7a:9e:91:78:bf:ff:5a:57:e4:39:34:cc:d7:43:
26:13:8b:64:0a:8a:3c:50:e6:0d:c5:c5:4d:4e:30:f6:ba:2e:
2b:f7:2c:a1:a1:12:4a:3b:c3:aa:b4:66:d0:64:6a:4a:a2:51:
cd:cc:30:a7:b9:59:1a:08:75:6c:f0:e6:bf:cf:59:b3:07:72:
15:5c:ba:69:3c:e2:a3:ef:0f:32:cc:c7:4d:90:8d:1a:c4:21:
9e:d3:08:9f:41:88:a1:49:ee:8f:dc:4e:c0:3d:1c:08:e3:0b:
82:af:57:65:af:98:f1:c8:1a:eb:4e:fc:87:d1:9f:77:13:95:
4a:96:c1:39:ca:60:53:1c:12:10:d2:92:5b:46:ab:cc:7f:f1:
1a:7d:c2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:38 2024 by rpki-client on console-ams.rpki-client.org