Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/UuCqTQP0-eBWb_OdubjshG9IrpQ.roa
File: UuCqTQP0-eBWb_OdubjshG9IrpQ.roa (raw, json)
Hash identifier: sPkiJHj7hL2UfIKVQMk0Hc2nAm1fFMGgP5JQdeA5ZNw=
Subject key identifier: 52:E0:AA:4D:03:F4:F9:E0:56:6F:F3:9D:B9:B8:EC:84:6F:48:AE:94
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1383C1FF
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/UuCqTQP0-eBWb_OdubjshG9IrpQ.roa
Signing time: Sat 01 Jan 2022 05:56:16 +0000
ROA not before: Sat 01 Jan 2022 05:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60581
IP address blocks: 91.242.118.0/24 maxlen: 24
91.242.119.0/24 maxlen: 24
185.173.245.0/24 maxlen: 24
185.173.244.0/24 maxlen: 24
185.173.246.0/24 maxlen: 24
185.173.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327401983 (0x1383c1ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52e0aa4d03f4f9e0566ff39db9b8ec846f48ae94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:be:b3:6f:5f:13:fb:89:e7:cc:c2:6d:70:ea:
b7:34:c1:34:2a:8e:61:f7:c5:a6:b6:ae:a4:73:0a:
02:df:50:b9:d8:31:57:1d:4d:8e:8f:64:98:da:76:
c0:d2:a2:4b:61:d9:9a:87:04:08:3d:2e:a0:c1:8f:
a4:5f:04:54:26:1a:69:f4:78:3a:8e:1e:32:c8:ad:
c4:20:0d:f7:33:9c:bf:92:0b:fd:1b:17:c9:b6:f2:
0c:c8:35:1e:ac:d4:77:01:1b:9e:03:51:73:89:9f:
d1:ec:0e:d5:f8:1a:78:21:c6:93:76:5a:95:bb:c2:
84:6f:18:e2:b0:42:be:fa:0a:a1:6f:4c:3e:cf:b7:
0e:98:bb:f0:9e:86:1d:2b:34:30:30:00:16:ba:d4:
47:69:8a:ad:f2:e5:12:ec:cd:da:94:9d:ef:a1:9e:
04:cd:ba:c8:46:ad:5d:ac:90:96:03:14:03:da:64:
81:0d:cd:90:bf:8b:b8:28:c4:ed:73:e4:4e:88:57:
33:16:d1:6e:58:04:52:ba:18:ea:aa:ba:5a:a8:66:
c2:35:e5:7e:1e:19:b7:de:e3:28:ab:99:4c:a4:94:
85:a6:91:7d:d3:21:d2:7e:43:81:b2:31:23:f5:9a:
a8:80:d3:92:5c:c3:4b:ce:a6:b0:65:cc:e7:2c:ca:
9e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E0:AA:4D:03:F4:F9:E0:56:6F:F3:9D:B9:B8:EC:84:6F:48:AE:94
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/UuCqTQP0-eBWb_OdubjshG9IrpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.118.0/23
185.173.244.0/22
Signature Algorithm: sha256WithRSAEncryption
01:99:02:28:37:ab:b9:cf:5d:ae:b0:e0:ee:b9:29:2d:83:16:
b7:8b:7c:d2:18:56:fd:a2:c0:70:6d:2d:9c:f5:7a:53:3b:f6:
4b:fe:dd:ec:f5:9d:4b:e6:14:1c:83:98:be:1e:4a:34:d3:a3:
ca:5f:b4:99:4c:03:20:29:03:58:78:b1:82:d9:82:f0:4d:7a:
2d:c8:4b:45:f6:fd:ea:df:69:69:b4:16:2e:2a:4c:49:ed:47:
f6:67:75:35:cf:ce:ab:63:df:bb:48:86:e1:72:f0:9c:ca:e1:
40:86:34:80:1b:f9:76:fb:2d:5c:16:43:61:55:f8:00:ab:45:
b1:ba:3c:c1:a1:b2:4a:92:fa:ef:30:86:ba:86:cb:4f:92:cb:
3e:36:1c:14:c8:12:3a:7c:7f:a3:0a:16:27:76:5a:4c:01:a8:
a9:c0:9a:1b:05:6f:d7:95:23:3f:00:66:36:b0:50:86:89:ff:
44:51:a5:d4:66:9a:68:b3:ca:ee:3e:db:66:3d:e3:9c:07:23:
5f:23:fe:9d:1c:93:67:1c:ed:17:07:a9:78:d6:e4:b6:a9:ea:
b3:b2:43:7a:ef:af:52:e2:6e:9a:b5:41:56:3c:b6:5e:c8:8e:
5f:d2:be:f1:2a:cb:4f:ae:7a:3b:22:b1:96:cb:5a:88:69:ae:
eb:0a:4c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org