Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/UPKJLeJ-w5gfcBlCzfvzpq32on0.roa
File: UPKJLeJ-w5gfcBlCzfvzpq32on0.roa (raw, json)
Hash identifier: 8uLja5xrXEqqp2h9pl/nKJr2ckAYkYGhe9Bzsbk/psM=
Subject key identifier: 50:F2:89:2D:E2:7E:C3:98:1F:70:19:42:CD:FB:F3:A6:AD:F6:A2:7D
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C3DE9F
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/UPKJLeJ-w5gfcBlCzfvzpq32on0.roa
Signing time: Sat 01 Jan 2022 07:04:31 +0000
ROA not before: Sat 01 Jan 2022 07:04:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48314
IP address blocks: 185.236.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147054239 (0x8c3de9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50f2892de27ec3981f701942cdfbf3a6adf6a27d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:54:d1:6a:7f:6b:9c:7e:74:e1:14:33:14:
24:21:c1:59:44:1d:19:1d:92:82:f7:54:e2:cb:fc:
62:6d:fb:f1:67:f7:be:2d:05:5a:a0:31:13:d4:58:
6c:91:25:06:b1:46:ae:dd:03:3c:c4:47:3c:ff:7b:
1d:9d:44:2e:b0:4f:f6:e9:74:ce:3e:ba:ee:9d:29:
bd:14:79:7d:4d:d3:4b:34:a3:24:f9:b1:b3:eb:ce:
95:d8:7b:e0:b6:cb:b0:d4:62:53:bb:39:ff:94:fb:
38:83:f9:f6:d5:db:e6:27:5d:bb:d2:d1:7e:e9:bc:
c0:ae:0c:97:9b:a2:fb:d0:cb:e7:6c:7a:09:9a:2e:
58:9b:b5:2e:4b:5e:1d:ac:65:09:fd:91:25:5f:1d:
ab:89:05:19:75:aa:67:3e:f5:be:f4:ee:9d:23:2f:
73:3c:1d:05:70:30:c8:8e:7a:39:ea:48:1f:33:38:
8a:54:cb:a2:f0:62:21:b9:ae:69:34:a6:e2:38:0c:
32:7b:51:8a:b5:97:01:7d:cd:83:bd:44:14:dc:5c:
c5:d7:eb:95:e2:d7:55:04:15:44:f8:06:ae:52:3d:
e1:5a:59:39:d0:81:28:5b:50:18:2e:71:1d:30:17:
f9:6a:8c:f4:63:42:b6:59:e3:9b:a6:d9:61:e5:0d:
11:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F2:89:2D:E2:7E:C3:98:1F:70:19:42:CD:FB:F3:A6:AD:F6:A2:7D
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/UPKJLeJ-w5gfcBlCzfvzpq32on0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:19:4e:9e:14:12:05:2b:84:aa:66:90:9d:03:d9:d0:97:7c:
b0:57:3e:0f:3e:02:97:f1:27:f8:48:73:ac:92:28:5e:27:81:
36:c0:cc:a4:c9:7b:a0:9b:8b:54:3a:f8:62:be:89:ee:9a:79:
55:c6:43:45:00:e3:45:8d:de:f6:b9:fd:ce:57:e4:02:a2:d2:
b7:4c:51:59:48:ca:fd:d4:d7:31:fe:e3:28:d7:c4:ab:1e:a6:
eb:4a:88:7c:b5:bd:1d:35:20:11:7f:1e:94:d6:cc:79:08:c3:
23:1e:b7:7a:b1:3d:e2:b9:bd:c7:13:fb:8d:70:70:6c:e2:e1:
31:59:49:ce:83:d4:50:bd:17:8b:13:cf:d2:1e:03:ef:b8:2d:
fa:1d:e7:01:42:d3:48:07:0e:08:4f:6a:ca:8d:2a:13:07:1c:
49:9f:e4:8b:de:08:12:b9:48:d6:51:ae:f0:98:a4:75:7d:26:
88:e8:60:ff:54:93:0d:aa:e4:49:a9:3e:68:58:fa:30:d2:b4:
d3:dd:4e:24:e9:dd:9b:7a:e2:85:2b:df:5e:6e:37:31:4a:84:
e0:af:ce:21:e8:2c:c9:02:b6:a6:1b:b9:98:87:ab:3a:5e:3e:
46:ea:dd:7b:44:ce:cb:25:ee:2b:aa:e7:81:18:ae:af:68:d3:
2f:ac:3c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org