Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/111b81-aa6c-40da-bed1-bf8e5d8265a2/1/U-5iSOjocnITtUOyWpMH3eUP1Mw.roa
File: U-5iSOjocnITtUOyWpMH3eUP1Mw.roa (raw, json)
Hash identifier: y/Ihh+yHcGzJje5AsMEUfuwNJzVfSI8c2eHD+NMB7OE=
Subject key identifier: 53:EE:62:48:E8:E8:72:72:13:B5:43:B2:5A:93:07:DD:E5:0F:D4:CC
Certificate issuer: /CN=41ef4b060a8b79b2893d3309ad50d1cccb2b9e31
Certificate serial: 0102D0E5
Authority key identifier: 41:EF:4B:06:0A:8B:79:B2:89:3D:33:09:AD:50:D1:CC:CB:2B:9E:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qe9LBgqLebKJPTMJrVDRzMsrnjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/111b81-aa6c-40da-bed1-bf8e5d8265a2/1/U-5iSOjocnITtUOyWpMH3eUP1Mw.roa
Signing time: Sat 01 Jan 2022 11:58:31 +0000
ROA not before: Sat 01 Jan 2022 11:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209216
IP address blocks: 185.223.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16961765 (0x102d0e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41ef4b060a8b79b2893d3309ad50d1cccb2b9e31
Validity
Not Before: Jan 1 11:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53ee6248e8e8727213b543b25a9307dde50fd4cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d2:f2:67:5e:ae:07:0f:9f:ef:15:68:86:ea:
59:ba:65:ae:2d:85:e7:1c:7e:76:d1:95:77:1e:fd:
80:e4:d5:f5:f0:71:e8:01:7a:7b:b3:65:00:68:30:
22:5b:5f:56:9d:83:68:d6:db:98:65:3d:91:3d:98:
49:28:94:58:19:d4:ec:23:03:92:88:4d:aa:5f:2e:
09:82:fd:0f:e7:80:b4:ae:97:62:42:81:49:55:af:
6b:e1:65:b9:fc:43:26:6d:24:fd:46:34:c6:8f:07:
ac:85:3a:98:b1:a0:b2:3a:b1:6b:ac:0d:ab:8d:4a:
d5:8c:28:15:49:d9:1e:c8:52:9b:e1:f4:e1:62:6d:
e4:b5:95:29:f2:ab:64:f5:56:a7:1e:b4:d2:75:c2:
5a:82:ba:28:a9:3a:82:cb:27:9b:2e:b2:38:ca:2e:
ef:5f:d5:17:1b:70:9a:9c:24:75:09:83:39:2c:dd:
77:f5:de:9d:77:8b:bd:3e:42:aa:3f:07:56:b9:07:
c1:62:ff:4d:a4:64:c2:d5:b0:64:9b:85:cc:13:4c:
99:6e:b7:81:1f:bc:9b:a9:31:23:5a:fa:09:f6:94:
9a:a3:12:fa:e8:f9:6e:89:8e:e1:01:50:4c:63:aa:
15:81:34:e4:76:0e:bc:55:cb:61:db:e6:70:d0:19:
04:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:EE:62:48:E8:E8:72:72:13:B5:43:B2:5A:93:07:DD:E5:0F:D4:CC
X509v3 Authority Key Identifier:
keyid:41:EF:4B:06:0A:8B:79:B2:89:3D:33:09:AD:50:D1:CC:CB:2B:9E:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qe9LBgqLebKJPTMJrVDRzMsrnjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/111b81-aa6c-40da-bed1-bf8e5d8265a2/1/U-5iSOjocnITtUOyWpMH3eUP1Mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/111b81-aa6c-40da-bed1-bf8e5d8265a2/1/Qe9LBgqLebKJPTMJrVDRzMsrnjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.108.0/24
Signature Algorithm: sha256WithRSAEncryption
19:6c:54:13:16:92:39:0b:9e:3b:c0:4d:d1:9e:57:af:2d:cd:
8c:8f:8b:2f:6b:42:46:d4:3b:0d:95:34:fc:33:16:37:14:31:
7d:23:66:75:0a:d2:03:c5:04:d5:69:70:25:28:08:f3:18:56:
af:91:2d:0d:2a:b4:75:0f:9d:4d:4f:f0:38:19:dc:0c:e7:ec:
85:28:4b:16:ca:c9:cc:6d:9b:6f:60:0e:9e:71:68:69:bf:95:
78:61:2c:2c:c3:c9:82:30:e6:ed:1a:f6:1d:aa:37:05:6d:d6:
27:56:45:f1:ff:bf:ae:9d:66:c9:97:f3:a9:76:8c:95:10:41:
29:97:75:39:9d:45:5c:02:0b:22:ec:23:6a:18:a9:f9:ec:c6:
04:46:93:19:e8:08:1e:f0:99:93:88:e3:9a:e9:a6:f1:9e:53:
fd:5a:1e:63:ba:58:f7:29:7a:81:49:4a:43:85:54:bc:b8:6c:
3a:16:ab:30:6d:d1:f2:c3:95:4e:e5:3e:6c:16:28:d8:a3:68:
23:8a:7e:d9:b7:dd:20:cb:16:7f:6a:d0:d3:95:6d:6f:ba:14:
73:a7:ef:f2:5d:13:19:46:77:fa:40:dd:3f:20:62:5f:42:4e:
2c:0c:8f:bb:08:0c:da:8e:1d:5c:15:2c:60:9d:73:fb:0e:59:
9f:01:46:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org