Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/uYKTjeoOHK9ifTNWHWQTFwFt5qA.roa
File: uYKTjeoOHK9ifTNWHWQTFwFt5qA.roa (raw, json)
Hash identifier: KsnrmgnCRQaku8OeIxhU1sT4u6LuBQY93glYq6rU9WE=
Subject key identifier: B9:82:93:8D:EA:0E:1C:AF:62:7D:33:56:1D:64:13:17:01:6D:E6:A0
Certificate issuer: /CN=cd73f238d96cf67a5efc0c37476fd306029af552
Certificate serial: 144168D3
Authority key identifier: CD:73:F2:38:D9:6C:F6:7A:5E:FC:0C:37:47:6F:D3:06:02:9A:F5:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zXPyONls9npe_Aw3R2_TBgKa9VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/uYKTjeoOHK9ifTNWHWQTFwFt5qA.roa
Signing time: Sat 01 Jan 2022 15:02:21 +0000
ROA not before: Sat 01 Jan 2022 15:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12390
IP address blocks: 185.91.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339830995 (0x144168d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd73f238d96cf67a5efc0c37476fd306029af552
Validity
Not Before: Jan 1 15:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b982938dea0e1caf627d33561d641317016de6a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bf:40:ee:01:17:cd:57:af:c0:c5:b9:d0:06:
8b:6c:ca:a8:9f:73:f0:37:2c:92:fa:a1:e0:b5:64:
ca:a5:a1:12:14:67:f1:a7:60:e2:97:88:93:68:28:
e6:8e:22:f9:38:fa:0b:96:3c:44:7f:0d:28:0d:49:
bc:8f:a0:f8:fb:eb:86:66:fe:de:e3:01:b6:73:23:
a4:27:04:14:1a:8b:7f:8d:36:0e:2f:ff:a3:eb:f7:
0e:3d:18:2b:1e:ed:93:3b:85:92:87:eb:24:97:c4:
26:78:2b:36:50:05:1f:ff:ed:20:fd:4c:5f:6f:a2:
38:bd:08:45:e7:7a:01:6c:b3:cd:23:7e:6e:5f:2d:
38:c9:3d:d0:73:5c:01:11:86:82:a9:51:d4:0d:79:
69:4f:a0:b7:37:73:c1:9a:6d:94:f6:65:54:83:f8:
cf:af:8d:57:5a:29:b4:31:7a:d3:4c:ef:ee:fa:8f:
6a:7d:b6:97:ce:b8:95:0f:05:ca:90:b4:07:81:d1:
ec:0e:6b:18:ad:36:b7:3d:15:18:c6:04:f8:44:69:
ae:48:88:71:1e:b2:04:13:67:49:f0:41:f3:1a:e0:
02:e8:57:68:7c:0f:42:3a:09:1b:a6:9f:fc:62:fa:
c8:0d:81:d1:93:f4:90:95:e3:94:ed:50:db:b8:b7:
d6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:82:93:8D:EA:0E:1C:AF:62:7D:33:56:1D:64:13:17:01:6D:E6:A0
X509v3 Authority Key Identifier:
keyid:CD:73:F2:38:D9:6C:F6:7A:5E:FC:0C:37:47:6F:D3:06:02:9A:F5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zXPyONls9npe_Aw3R2_TBgKa9VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/uYKTjeoOHK9ifTNWHWQTFwFt5qA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/zXPyONls9npe_Aw3R2_TBgKa9VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.114.0/24
Signature Algorithm: sha256WithRSAEncryption
41:05:ab:e7:87:8e:d0:8e:5f:cf:9c:68:f5:f0:44:ca:1e:17:
11:51:dd:b9:cc:26:04:15:0b:bc:93:a9:6c:8f:55:d7:ab:e9:
aa:13:a0:72:f5:28:7b:f1:52:26:09:ce:1f:a2:fd:68:6e:f0:
c2:42:22:2e:ca:7b:f7:51:ec:9e:4f:11:10:f6:1c:a6:bf:81:
a5:2c:c0:78:f9:36:c0:67:98:e6:aa:60:b8:99:7c:20:c0:90:
dd:1f:c3:6e:d1:73:c9:50:ad:2c:13:e0:a0:fd:d7:a4:1a:5f:
cd:03:28:56:e6:55:d1:0b:1c:8f:6b:ff:5b:d4:bc:57:8d:f7:
b6:88:23:92:72:19:e4:8c:20:44:79:f2:a7:f4:ab:b6:ca:82:
51:81:a2:54:fc:b8:d2:16:72:5b:33:7c:8d:d0:72:07:86:8b:
43:ee:7b:05:75:ee:4b:c4:2c:6c:d2:62:af:30:f1:b4:20:65:
6a:74:4b:1e:97:fa:07:26:4d:64:ae:91:c1:58:ff:86:83:ec:
09:f2:38:46:1f:cb:00:a7:fb:0f:2a:80:6e:31:f8:66:4f:2b:
a0:04:88:a1:20:58:5e:8e:dd:69:dc:90:1d:f1:d6:44:29:53:
9d:fb:72:cb:d6:c4:55:84:2a:25:c7:40:01:b1:72:b3:9f:38:
3d:4a:a9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:30 2024 by rpki-client on console-ams.rpki-client.org