Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/UwdsQzQFOTJ0fySRbHDJbl7FnXU.roa
File: UwdsQzQFOTJ0fySRbHDJbl7FnXU.roa (raw, json)
Hash identifier: cr/3gBzqwkAuqjw9zZ846Xl3+fwOpAliK6CKzWxX828=
Subject key identifier: 53:07:6C:43:34:05:39:32:74:7F:24:91:6C:70:C9:6E:5E:C5:9D:75
Certificate issuer: /CN=f7aa039b886b226578bdb6a42781bf59044bb138
Certificate serial: 387754E3
Authority key identifier: F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/UwdsQzQFOTJ0fySRbHDJbl7FnXU.roa
Signing time: Tue 26 Apr 2022 07:22:35 +0000
ROA not before: Tue 26 Apr 2022 07:22:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35000
IP address blocks: 185.7.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947344611 (0x387754e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7aa039b886b226578bdb6a42781bf59044bb138
Validity
Not Before: Apr 26 07:22:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53076c4334053932747f24916c70c96e5ec59d75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9b:5d:a4:90:6e:4f:e5:16:b6:6e:07:63:90:
82:8c:d7:1e:2d:ee:73:46:2e:c7:88:3d:1a:f8:23:
fe:5c:f3:7e:f2:02:35:2d:84:46:74:1a:cd:f0:e5:
f0:e8:55:57:7d:22:8e:e6:b1:4d:51:bd:ce:13:e4:
cb:7b:cd:85:c4:01:4c:bb:f7:ed:ee:e0:1a:84:37:
b5:4b:40:c8:14:d3:83:2d:b5:5f:f6:56:49:f0:fc:
12:99:c7:f4:9f:7f:6c:7c:98:fb:c9:ce:2b:e7:f8:
b7:4c:39:36:68:65:f5:24:27:67:ab:d4:0e:13:30:
5f:0b:3a:53:13:72:cb:25:24:c4:20:f4:4c:8c:a9:
42:fd:05:bf:53:7d:b0:11:44:46:0f:92:da:52:e3:
ce:a3:cd:d6:58:a6:fa:3f:37:ee:ff:81:fb:aa:4f:
e1:a8:84:bf:a0:7b:fe:bb:25:c0:02:99:dd:80:ce:
70:79:73:9b:bd:4f:a2:9e:16:ae:87:dc:32:d1:99:
e0:da:37:3d:d9:bb:e0:30:d0:fd:36:b0:b0:92:8f:
6b:c4:77:42:65:dc:14:0e:49:42:9e:6a:66:68:31:
5f:92:01:08:42:71:19:bc:84:2c:4e:c1:e3:ad:8b:
0a:e7:51:a2:80:26:f7:cd:95:56:23:96:bd:69:52:
e6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:07:6C:43:34:05:39:32:74:7F:24:91:6C:70:C9:6E:5E:C5:9D:75
X509v3 Authority Key Identifier:
keyid:F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/UwdsQzQFOTJ0fySRbHDJbl7FnXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.147.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:4e:46:66:10:25:1e:c7:53:e1:44:fe:ad:76:dc:b4:75:b4:
90:6e:b9:21:d7:0a:16:80:a8:92:76:e5:49:86:5f:14:42:d7:
f2:98:d9:bc:63:f3:13:a7:f5:e9:26:13:2a:09:99:59:94:dc:
f9:f5:e3:5a:ec:c2:67:79:9f:e2:5f:f4:21:f0:75:90:db:4c:
79:4a:27:4a:82:6a:9a:74:45:62:7f:85:30:74:5e:ae:ea:89:
b6:24:40:24:d7:3c:16:2f:45:20:db:c3:fe:b4:e3:10:10:7f:
7c:5f:9f:a3:e2:02:cc:55:c5:ce:f4:c4:ed:b2:f2:24:3c:7d:
31:87:55:37:0a:d0:78:59:9a:2f:86:21:55:11:da:a3:54:cd:
a0:f9:17:fd:e3:0f:81:59:3f:5b:57:e0:12:58:f5:a5:c7:5f:
2f:ad:82:0c:2b:ee:e1:a3:81:e5:2e:db:22:7b:f5:7d:cf:22:
1d:96:7d:23:e3:0d:b9:76:03:dd:08:c8:84:0b:45:c6:15:cb:
bd:d5:36:06:ca:c7:dc:07:ac:d1:04:d1:60:d3:e4:0c:be:56:
b8:49:6b:94:03:ff:a4:ff:3f:4b:13:73:88:bf:20:9c:1b:f0:
7f:42:20:ee:de:d9:84:41:7c:a9:2c:b6:d1:df:ac:a2:3b:a7:
00:98:0f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:23 2024 by rpki-client on console-fra.rpki-client.org