Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/338212-38a7-468d-b874-351ab9f236b0/1/uK3UhrwBFKB5Uagmlrju-HAxPyU.roa
File: uK3UhrwBFKB5Uagmlrju-HAxPyU.roa (raw, json)
Hash identifier: o+G1vHpfJvJQDhutFOxwFy4r/ry+M/Gk7RM/JrCpFjE=
Subject key identifier: B8:AD:D4:86:BC:01:14:A0:79:51:A8:26:96:B8:EE:F8:70:31:3F:25
Certificate issuer: /CN=27ded1d90c4d52b6871023bc71296d08a98c4cdb
Certificate serial: 01826E399358356E1768868F85A98AD7871E
Authority key identifier: 27:DE:D1:D9:0C:4D:52:B6:87:10:23:BC:71:29:6D:08:A9:8C:4C:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J97R2QxNUraHECO8cSltCKmMTNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/338212-38a7-468d-b874-351ab9f236b0/1/uK3UhrwBFKB5Uagmlrju-HAxPyU.roa
Signing time: Fri 05 Aug 2022 13:37:23 +0000
ROA not before: Fri 05 Aug 2022 13:37:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 185.135.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6e:39:93:58:35:6e:17:68:86:8f:85:a9:8a:d7:87:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27ded1d90c4d52b6871023bc71296d08a98c4cdb
Validity
Not Before: Aug 5 13:37:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8add486bc0114a07951a82696b8eef870313f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c2:fe:b2:c8:68:b7:3e:af:8a:01:4c:50:a5:
1f:8c:b7:f5:0c:dd:0e:63:25:83:d6:12:cf:93:6a:
a2:7a:75:c7:1e:cf:23:6d:d4:f5:cd:37:2e:06:9d:
d8:cf:18:c2:de:68:90:9d:d3:64:0b:9e:d2:94:39:
db:69:ed:a8:80:11:1e:9d:28:b5:b0:5c:cf:b3:cc:
b4:c2:24:bb:86:48:47:74:30:1a:4a:a4:95:b3:35:
c9:d2:4c:cd:26:d1:a3:fd:1e:c2:bb:86:c2:e6:63:
34:a1:6e:ef:41:2e:27:73:ec:2a:be:4e:e6:b3:87:
ad:66:62:dc:be:bc:7f:1c:34:a3:cc:1e:49:58:f7:
65:05:4f:e8:8b:81:51:78:3b:66:cf:90:de:87:66:
f0:d1:69:77:9e:0d:a1:a6:9f:0c:cd:b2:81:d2:90:
47:24:9f:42:33:3e:86:71:4a:d8:95:db:c1:56:8f:
19:85:1d:25:17:72:0e:6b:19:f3:4c:86:aa:9e:07:
1b:42:6c:19:bc:75:d5:f4:58:31:df:a4:a8:6b:28:
c1:13:e7:33:2f:1e:07:82:48:97:97:a1:f2:2e:c5:
82:d8:19:02:ba:46:2d:60:04:b0:ae:42:48:37:53:
48:f5:99:93:94:cb:72:f3:55:35:60:1b:e4:9f:51:
66:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AD:D4:86:BC:01:14:A0:79:51:A8:26:96:B8:EE:F8:70:31:3F:25
X509v3 Authority Key Identifier:
keyid:27:DE:D1:D9:0C:4D:52:B6:87:10:23:BC:71:29:6D:08:A9:8C:4C:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J97R2QxNUraHECO8cSltCKmMTNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/338212-38a7-468d-b874-351ab9f236b0/1/uK3UhrwBFKB5Uagmlrju-HAxPyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/338212-38a7-468d-b874-351ab9f236b0/1/J97R2QxNUraHECO8cSltCKmMTNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.57.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:c7:6a:ac:96:04:95:71:d1:4d:04:9d:13:01:e4:35:a9:bc:
03:f8:b7:b2:27:d3:39:a6:39:7c:d1:3f:16:b8:d0:79:f0:28:
24:45:fc:df:ee:d1:ba:46:13:b5:51:6e:e8:fe:2a:9e:ef:93:
84:f4:b7:bd:cc:6c:68:84:96:1a:f7:33:f8:d2:4b:17:f4:a0:
a3:5c:25:f9:5e:b0:e0:ca:09:68:4a:0c:71:be:88:91:b6:60:
61:f6:d9:37:67:8f:ce:fd:e2:87:e7:66:c9:28:26:4d:22:da:
5a:02:ba:f6:19:82:a2:ca:f1:90:20:c8:b3:a1:b5:aa:8f:b7:
a7:f2:3c:b3:35:5a:bf:04:76:4d:1b:41:79:54:44:bf:72:5d:
8a:19:40:16:f5:28:e9:30:86:e8:19:39:07:30:ee:a7:97:a8:
b0:e4:41:86:0a:97:7a:c0:a2:db:ad:d6:85:d5:b2:2e:39:00:
8f:11:62:30:b0:f9:34:28:8d:38:61:b2:80:42:1c:31:00:cb:
36:55:e9:2f:d2:34:6f:3a:c6:7d:b6:12:99:db:e0:a8:c9:86:
31:13:63:c7:26:44:48:a6:ab:2a:ea:6b:43:4f:38:f4:a9:21:
08:2a:85:07:3f:95:d0:cf:7a:ae:e3:b8:f9:fd:f1:c4:96:c6:
ba:7b:64:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:06 2024 by rpki-client on console-ams.rpki-client.org