Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/Ugzq-yDJXDk6FTYGzvH5xcjjsdM.roa
File: Ugzq-yDJXDk6FTYGzvH5xcjjsdM.roa (raw, json)
Hash identifier: fiL5rv65c3dQ2DycnjqRWqXEbcqGmIDXAuD4538ZYj4=
Subject key identifier: 52:0C:EA:FB:20:C9:5C:39:3A:15:36:06:CE:F1:F9:C5:C8:E3:B1:D3
Certificate issuer: /CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Certificate serial: 03B52E80
Authority key identifier: 93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/Ugzq-yDJXDk6FTYGzvH5xcjjsdM.roa
Signing time: Sat 01 Jan 2022 09:00:41 +0000
ROA not before: Sat 01 Jan 2022 09:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210321
IP address blocks: 185.242.248.0/22 maxlen: 24
2a0c:f780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62205568 (0x3b52e80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Validity
Not Before: Jan 1 09:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=520ceafb20c95c393a153606cef1f9c5c8e3b1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:75:ff:6d:00:81:fe:20:5d:fa:e1:d5:d5:06:
a5:f5:3b:5a:03:b6:91:4a:da:db:11:f6:e9:be:e1:
df:62:ff:35:e6:8c:1a:10:b3:e6:ac:52:08:05:07:
09:7b:47:b8:6f:47:42:da:49:ea:91:fe:ee:ab:b3:
5e:27:2d:2e:9d:b6:97:37:57:ae:23:93:f7:4e:a6:
7e:f8:24:fa:a6:f4:45:46:cd:b6:57:93:00:23:8d:
e0:ab:ef:6a:9e:1b:b3:44:51:b0:60:6f:f9:6e:e2:
88:13:39:a4:9f:90:29:0f:e8:c4:a9:10:92:63:03:
19:4d:e5:3e:97:f8:1c:80:82:0b:ef:03:10:3e:ae:
ed:e2:4a:c3:38:e1:e6:6f:c9:da:41:f8:f8:f7:ae:
39:4c:23:9d:68:9e:64:5a:75:83:19:b7:a5:f2:68:
af:43:29:d1:a7:8c:35:60:d7:72:5b:34:d8:27:49:
f3:df:43:8c:67:1b:40:5f:fc:89:0a:c8:c1:b5:4c:
fd:44:26:6c:a0:f3:12:03:d5:e2:53:a4:03:56:23:
4a:f6:ff:e0:cc:35:e0:a2:06:cd:38:c8:d5:e4:e9:
12:22:75:8e:ef:48:33:74:ca:37:17:86:b1:b7:28:
5b:e0:4b:f4:04:99:6f:8b:4a:d2:2f:a6:f1:08:cf:
47:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0C:EA:FB:20:C9:5C:39:3A:15:36:06:CE:F1:F9:C5:C8:E3:B1:D3
X509v3 Authority Key Identifier:
keyid:93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/Ugzq-yDJXDk6FTYGzvH5xcjjsdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.248.0/22
IPv6:
2a0c:f780::/29
Signature Algorithm: sha256WithRSAEncryption
aa:70:38:2e:b4:ef:df:37:bb:c7:74:62:fa:7c:87:c3:65:ec:
46:ce:ad:31:f7:f4:45:8f:f7:25:d1:50:2d:ee:18:1b:a0:9b:
9b:b9:bd:dd:0e:0c:79:0b:49:33:0f:0f:f4:bf:1e:55:59:2d:
86:d4:91:f5:20:c0:f6:cb:58:aa:58:78:4e:77:76:c0:a7:54:
d1:82:58:83:dc:d1:38:04:2e:6d:ce:39:c5:10:51:b0:fb:9f:
16:80:44:4e:54:e0:1c:4b:56:4d:3a:0e:d5:36:f6:a3:cc:40:
e2:99:58:9d:c9:14:b9:47:a0:05:b2:46:ad:37:35:3d:7b:eb:
cd:51:a9:77:01:83:13:f2:24:ee:a6:13:a3:1e:20:4c:7a:79:
2b:ef:db:80:8c:bc:18:6b:1b:c5:32:25:d1:2b:9d:86:ed:c1:
be:2d:35:80:28:22:c8:90:3c:37:ec:96:a9:61:7b:ef:a9:ea:
81:3e:84:cd:dd:f7:51:a4:1c:79:07:d1:b8:f7:4c:67:6f:11:
11:b4:60:6b:9f:ca:fa:b0:09:86:3b:93:ab:da:68:20:df:d3:
7e:b0:c6:9f:8d:6b:10:dd:b2:56:97:b3:0e:b6:9b:5e:96:bb:
93:7c:99:c1:2a:52:24:18:2a:ae:bd:bc:81:40:75:5b:b8:c4:
fa:c4:8f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:53 2024 by rpki-client on console-fra.rpki-client.org