Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ff3422-0ecd-4bb5-8b27-5d9603638322/1/UZn7_yKf1PgJh4TqcB17_fim6as.roa
File: UZn7_yKf1PgJh4TqcB17_fim6as.roa (raw, json)
Hash identifier: mI5iNmK6xMyRbYsZc80ENCriqJRQxlZ89tVYJp3B3II=
Subject key identifier: 51:99:FB:FF:22:9F:D4:F8:09:87:84:EA:70:1D:7B:FD:F8:A6:E9:AB
Certificate issuer: /CN=ba9c1933f1efd78700efdd5fdb0dc89cc8b6734a
Certificate serial: 01C5008F
Authority key identifier: BA:9C:19:33:F1:EF:D7:87:00:EF:DD:5F:DB:0D:C8:9C:C8:B6:73:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upwZM_Hv14cA791f2w3InMi2c0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ff3422-0ecd-4bb5-8b27-5d9603638322/1/UZn7_yKf1PgJh4TqcB17_fim6as.roa
Signing time: Sat 01 Jan 2022 15:58:39 +0000
ROA not before: Sat 01 Jan 2022 15:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.103.201.0/24 maxlen: 24
2a06:2d40:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29687951 (0x1c5008f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9c1933f1efd78700efdd5fdb0dc89cc8b6734a
Validity
Not Before: Jan 1 15:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5199fbff229fd4f8098784ea701d7bfdf8a6e9ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:6b:cb:0d:48:60:e9:58:be:94:d7:53:d1:
ab:52:a7:48:19:f1:c5:0a:cf:50:a3:3e:2c:9c:01:
ed:99:49:9d:58:33:d1:99:35:83:1b:34:60:01:3c:
43:9f:74:e3:c6:ac:f7:e0:7a:03:73:24:a7:e6:14:
8b:79:34:67:3f:77:48:12:7e:f2:a1:6e:ef:ff:5e:
dc:2f:64:54:b8:7f:76:58:63:69:0b:e4:a7:80:39:
e9:05:81:00:70:dd:5e:1b:23:3b:4d:c2:6f:0c:ca:
25:b9:2f:fa:5b:10:ce:e9:7f:ae:81:7c:74:76:50:
88:14:d7:de:e6:72:a3:10:46:46:be:b1:ed:ea:ea:
da:b4:32:f4:7e:1a:3f:44:f8:a9:1e:aa:a1:0b:08:
16:c5:a6:77:d7:98:fb:d8:31:0b:02:b2:9c:47:c1:
15:f2:79:0e:0c:81:c1:16:d1:c1:40:34:a2:57:93:
ee:79:59:67:67:e7:5d:49:13:e5:7a:d8:ce:7d:d1:
60:28:20:cc:bc:38:62:d5:45:52:a0:bc:34:bc:5a:
10:0b:7b:bc:61:f4:b2:09:90:6b:49:91:40:86:98:
79:c0:52:cd:2b:9f:d8:ce:ed:24:b9:2e:c5:fc:83:
29:a4:8d:52:9a:a3:3b:8c:b3:af:19:b2:30:bc:83:
f1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:99:FB:FF:22:9F:D4:F8:09:87:84:EA:70:1D:7B:FD:F8:A6:E9:AB
X509v3 Authority Key Identifier:
keyid:BA:9C:19:33:F1:EF:D7:87:00:EF:DD:5F:DB:0D:C8:9C:C8:B6:73:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upwZM_Hv14cA791f2w3InMi2c0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ff3422-0ecd-4bb5-8b27-5d9603638322/1/UZn7_yKf1PgJh4TqcB17_fim6as.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ff3422-0ecd-4bb5-8b27-5d9603638322/1/upwZM_Hv14cA791f2w3InMi2c0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.201.0/24
IPv6:
2a06:2d40:2::/48
Signature Algorithm: sha256WithRSAEncryption
0c:48:9f:47:83:82:40:fc:86:41:c3:72:c6:1b:d9:b4:f7:04:
9f:58:d0:16:7f:2a:d4:ba:7d:07:d7:c2:26:96:3a:e4:2d:be:
b1:81:a1:9e:29:87:bd:25:6a:77:8d:47:d7:77:35:8f:9a:c7:
b2:14:28:eb:ba:0d:5c:c9:e9:22:39:58:b6:6e:d9:44:c5:30:
a4:67:52:b7:7a:b9:f7:8d:ba:6d:1a:81:e0:64:b9:97:ec:06:
c5:c7:39:74:9b:50:69:0a:96:49:b6:87:85:fb:00:4a:e2:83:
f5:91:9a:b4:8d:83:17:8a:58:af:30:05:4e:0e:66:65:4a:d7:
1c:26:09:ca:15:b3:93:e1:0b:6d:f7:44:21:3d:6b:22:44:31:
41:48:c1:07:fc:58:0e:be:af:8e:2b:7a:15:f1:62:47:01:8c:
0c:26:8a:a1:d2:19:c3:6c:a7:a2:f7:72:b0:cb:60:34:f7:3b:
66:3d:9b:b6:15:62:be:dc:c6:07:3b:24:de:3f:d9:15:2b:74:
16:bd:ca:66:28:30:62:66:2d:2e:da:4b:23:7c:ff:35:d2:ce:
f7:53:0a:e7:2a:52:a5:a3:3c:f8:ce:9f:20:ae:1f:81:3d:b1:
e1:8b:c6:83:d9:b6:da:00:ad:86:cf:e2:b1:4b:7a:fd:89:b5:
e0:ed:1f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:16 2024 by rpki-client on console-ams.rpki-client.org