Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UF_u1abM6ZLRF3HoBObllUFdf9I.roa
File: UF_u1abM6ZLRF3HoBObllUFdf9I.roa (raw, json)
Hash identifier: gj2CM8NKQ/Wh2DxB49hq2iQlyzkiFQKWRSCDjNzWb7g=
Subject key identifier: 50:5F:EE:D5:A6:CC:E9:92:D1:17:71:E8:04:E6:E5:95:41:5D:7F:D2
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 4492FD2B
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UF_u1abM6ZLRF3HoBObllUFdf9I.roa
Signing time: Sat 01 Jan 2022 03:58:40 +0000
ROA not before: Sat 01 Jan 2022 03:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198952
IP address blocks: 90.85.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150483755 (0x4492fd2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=505feed5a6cce992d11771e804e6e595415d7fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4c:a0:ac:31:f3:42:81:d2:5f:2a:a3:fe:a0:
08:9b:82:e6:23:82:2d:b6:e1:7e:98:67:a4:e9:58:
54:aa:5a:5e:2b:50:ff:d9:a3:a2:6d:c0:e8:64:83:
a0:fc:95:bd:a9:17:00:01:a0:d7:1d:07:7e:bc:96:
77:d4:5a:bf:17:f2:fd:84:51:a4:49:ce:0c:38:e7:
41:f0:3d:e7:bb:08:b4:cd:38:31:e4:e1:a2:79:96:
ab:e3:a1:f5:27:44:d3:7b:a3:39:3a:d9:59:84:85:
fa:7b:61:29:c1:dd:2c:03:f1:65:6f:d7:45:a4:27:
1c:b1:1e:a6:b1:69:39:b0:f6:fd:8b:d6:1a:72:34:
d1:f9:f6:c2:97:ea:0c:9b:67:83:66:4e:f9:8e:36:
e1:23:b5:2a:f9:a9:2b:17:25:03:35:1e:30:b4:73:
07:86:fb:98:84:0e:13:51:d2:ec:c0:f4:e1:d3:2b:
67:ad:d9:a0:73:fa:a8:f7:be:73:53:84:36:21:b7:
8e:9f:f2:f4:71:b7:c6:b9:f5:8b:0e:c2:c8:ea:02:
38:ea:61:00:c0:7e:15:ee:9c:c8:63:67:a2:33:84:
72:50:fe:09:f8:dd:5a:c6:3f:d6:89:d4:86:1c:3a:
ee:e2:4c:d1:9d:40:cd:4f:0d:98:23:3a:26:09:d2:
d2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:5F:EE:D5:A6:CC:E9:92:D1:17:71:E8:04:E6:E5:95:41:5D:7F:D2
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UF_u1abM6ZLRF3HoBObllUFdf9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.85.2.0/24
Signature Algorithm: sha256WithRSAEncryption
62:8d:fe:10:0c:0c:88:af:8f:10:8a:42:5b:9a:83:ce:49:73:
0b:8a:b8:68:f5:a2:9c:8d:90:f1:e4:c3:6a:83:56:dc:77:25:
6f:f7:b2:bf:31:da:cc:1a:5b:58:c1:5c:b1:56:fb:ee:7c:86:
a9:55:7b:d2:18:bb:6d:d5:9d:af:6c:d0:71:76:06:b2:43:79:
5d:eb:87:50:84:1d:81:d6:d4:7b:05:94:4e:43:ce:af:02:11:
b0:c9:05:01:af:59:38:a4:fb:28:2d:ca:4f:a4:13:c8:ba:bd:
9e:f0:ea:37:d6:3e:4f:d9:2e:38:94:7a:9a:53:a8:93:2a:46:
6e:91:f7:98:6a:bb:c5:9b:d8:2d:80:f7:b0:42:a3:c5:6c:6d:
35:8a:4c:50:e2:09:95:ee:61:c7:b2:77:3f:79:fb:f2:df:cb:
58:c5:dc:84:21:e0:d6:bf:70:c8:96:fb:67:c9:8d:3b:32:92:
c0:18:d4:06:0a:05:ff:39:d7:63:90:3b:9e:62:67:ad:5a:0a:
27:f4:ac:cc:3d:da:f2:35:21:4f:ba:11:6c:00:ba:17:af:7c:
e1:d0:7d:28:69:18:b4:4d:fc:00:f2:80:97:ba:97:01:ec:3d:
fd:4d:a6:6b:f5:12:3e:c5:7a:65:97:c4:78:bb:ec:ce:0a:b5:
56:94:e8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org