Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/UjQ8A5t4p7VncUMjEZJW2Fh_6ls.roa
File: UjQ8A5t4p7VncUMjEZJW2Fh_6ls.roa (raw, json)
Hash identifier: BYIMrvmTgmLYSZezRn2HEYYjSHdH3o6YbIruSDSq8wk=
Subject key identifier: 52:34:3C:03:9B:78:A7:B5:67:71:43:23:11:92:56:D8:58:7F:EA:5B
Certificate issuer: /CN=de3d3687fe7df48c3be8398aad7bd20106545382
Certificate serial: 19736CF8
Authority key identifier: DE:3D:36:87:FE:7D:F4:8C:3B:E8:39:8A:AD:7B:D2:01:06:54:53:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j02h_599Iw76DmKrXvSAQZUU4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/UjQ8A5t4p7VncUMjEZJW2Fh_6ls.roa
Signing time: Sat 01 Jan 2022 06:58:29 +0000
ROA not before: Sat 01 Jan 2022 06:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60662
IP address blocks: 185.27.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 426994936 (0x19736cf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3687fe7df48c3be8398aad7bd20106545382
Validity
Not Before: Jan 1 06:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52343c039b78a7b567714323119256d8587fea5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f5:bf:2e:e5:c7:b2:04:85:e6:cf:0f:06:00:
c1:b3:cd:42:d2:d8:51:50:99:e7:cb:e1:c0:13:31:
cf:04:bc:16:38:b6:d6:58:d1:53:17:7c:20:9b:22:
a4:48:33:82:3e:2f:77:da:77:f8:1c:77:b3:9b:88:
0c:6d:59:19:2e:5e:82:3a:41:2a:a3:21:3b:54:62:
f6:7e:fa:bc:b6:83:1c:d5:68:22:d3:ba:8b:59:38:
f5:34:d2:44:f3:0d:cc:d1:a5:bb:14:bc:cb:c2:82:
c0:87:03:5c:5d:9a:54:9b:29:67:60:e4:ff:8e:f8:
0f:81:07:ff:76:c4:c6:b2:e2:29:6c:8f:47:42:80:
a0:55:b3:ba:76:8b:62:df:37:e3:61:7c:e3:31:de:
80:7a:c8:ab:32:be:f7:bd:39:61:7b:ea:0b:a8:40:
a5:d5:8c:50:d3:f8:dd:dd:40:e4:28:4c:cc:a0:bb:
9a:d7:5e:f6:c3:80:04:9b:7e:d4:a6:5f:c4:fa:e6:
fc:94:c7:4b:c1:74:ba:0e:f2:ab:ae:8d:37:ea:d2:
3b:ba:15:9e:2d:7c:c3:d1:92:14:8b:88:6a:36:25:
01:da:31:fc:3a:e0:9f:ee:8f:8d:9b:64:f2:c8:0b:
fc:13:3a:d5:ec:d5:23:7c:a9:5e:6a:45:a6:bf:f4:
35:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:34:3C:03:9B:78:A7:B5:67:71:43:23:11:92:56:D8:58:7F:EA:5B
X509v3 Authority Key Identifier:
keyid:DE:3D:36:87:FE:7D:F4:8C:3B:E8:39:8A:AD:7B:D2:01:06:54:53:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j02h_599Iw76DmKrXvSAQZUU4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/UjQ8A5t4p7VncUMjEZJW2Fh_6ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/3j02h_599Iw76DmKrXvSAQZUU4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.168.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:7b:24:f6:b7:9f:f3:10:16:12:20:63:67:5e:f6:05:a2:e5:
fd:75:39:fc:4f:0c:c0:5e:05:90:0c:39:ca:6d:8b:d9:72:99:
30:b6:d8:37:7f:d8:6c:3c:57:46:57:c4:98:32:7e:cc:6a:ff:
08:9b:1d:3b:ba:37:73:15:5a:f2:ba:a0:ab:4b:88:04:ac:ff:
67:9c:4b:28:0f:7d:80:21:e8:df:27:3f:5d:7b:f4:4f:00:a0:
a3:10:7a:87:65:d2:66:3d:89:40:2c:fd:d8:92:df:cb:a1:87:
88:7d:75:db:97:11:f2:29:58:2f:ea:06:86:43:f0:d5:91:b1:
9c:2d:da:4a:6d:50:cb:88:59:1b:d0:eb:38:33:04:93:2e:68:
7c:29:8d:88:b4:7a:9e:f9:92:81:cb:2d:b7:7f:91:81:25:38:
29:8e:87:59:79:e6:04:46:94:f7:5c:58:28:d0:a3:7d:27:5a:
9a:42:e4:51:b2:a4:e6:6e:04:10:24:5c:cc:fb:7c:40:58:f5:
8f:95:c8:1d:96:5e:63:7f:62:60:81:eb:c2:e6:ff:6c:8e:b8:
91:d6:29:9e:d8:74:e6:a1:2a:ab:64:bd:34:31:d3:bc:8b:bf:
04:5c:18:c7:72:65:a3:b1:c4:7c:45:e0:af:e8:31:9a:09:6f:
48:3d:04:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:29 2024 by rpki-client on console-ams.rpki-client.org