Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/UBaXAC52RyiyGGWSFpYlIjhYRC4.roa
File: UBaXAC52RyiyGGWSFpYlIjhYRC4.roa (raw, json)
Hash identifier: Gkgbsz1B9C6XTSdLJVkqEP0d/5y5i9g6jiScE2+c6Q4=
Subject key identifier: 50:16:97:00:2E:76:47:28:B2:18:65:92:16:96:25:22:38:58:44:2E
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 0562771A
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/UBaXAC52RyiyGGWSFpYlIjhYRC4.roa
Signing time: Sat 01 Jan 2022 15:07:17 +0000
ROA not before: Sat 01 Jan 2022 15:07:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 85.203.45.0/24 maxlen: 24
85.203.54.0/24 maxlen: 24
85.203.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90339098 (0x562771a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=501697002e764728b2186592169625223858442e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f6:9a:d7:6d:fd:56:93:c5:6a:e0:29:65:4e:
ae:f4:f8:68:d2:6c:f4:15:77:1d:9b:8b:f6:bd:bf:
7e:94:c7:44:06:04:23:35:af:27:82:db:27:cb:78:
44:6d:c1:cc:f2:5a:f1:35:1d:8b:2f:f3:16:b5:11:
02:98:a1:9d:45:05:a8:0e:70:98:9d:fe:e8:69:ac:
17:40:74:f1:32:08:d4:76:87:3f:cc:c0:53:f6:7c:
34:b3:f8:70:8f:e5:9a:3e:66:38:5e:99:90:30:31:
68:52:40:2e:e5:12:d7:24:df:71:c9:89:61:34:20:
6f:34:51:f7:16:af:f9:64:86:6d:ac:82:ec:13:ab:
1e:2b:7e:e9:97:b8:34:cd:c1:b9:89:fe:02:92:cb:
87:95:0d:e6:28:49:e9:74:1f:90:23:d9:ce:6c:ad:
45:e0:83:4f:98:85:4f:10:02:e2:3d:18:01:f5:af:
99:66:6e:4c:ad:39:66:71:77:84:ec:cb:e0:84:c6:
44:4b:94:7d:e1:76:38:d5:89:b3:95:14:a6:c8:64:
11:bf:65:ec:f8:83:c8:4e:9c:2c:94:8b:ed:8a:19:
81:64:4b:5b:31:2e:39:48:e8:b4:24:c7:a4:00:16:
43:a3:f2:4a:31:49:91:d5:e1:6d:3e:db:92:0b:8f:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:16:97:00:2E:76:47:28:B2:18:65:92:16:96:25:22:38:58:44:2E
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/UBaXAC52RyiyGGWSFpYlIjhYRC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.32.0/24
85.203.45.0/24
85.203.54.0/24
Signature Algorithm: sha256WithRSAEncryption
96:90:0d:bb:7b:49:75:72:4e:71:9b:91:26:5c:44:e1:99:da:
8a:a7:56:31:27:1a:34:72:37:d5:28:9e:bd:3e:63:0b:e1:71:
59:6e:e8:fb:ef:57:25:3a:15:3c:73:96:5e:30:48:08:4b:b9:
7a:52:b0:08:98:52:a5:7c:aa:aa:13:62:14:e0:c3:68:0f:7a:
4a:9f:d9:a0:a8:f9:de:84:bf:df:70:73:5f:6e:62:f9:8d:4b:
16:3b:90:92:9f:47:dd:1a:13:94:83:f3:17:ee:9d:2f:8e:2c:
12:f1:df:ca:5d:e5:16:89:e0:36:f8:32:91:1a:28:46:1a:62:
b0:e8:b6:27:50:cf:0a:c6:7e:41:5f:ae:f4:7c:6a:05:db:a9:
c7:f0:81:d3:5e:27:2c:1d:3e:a9:1b:ff:ec:13:36:51:d1:2c:
2d:1b:0f:73:dc:b4:82:cc:de:d2:44:29:cb:dd:44:41:ee:a1:
ee:0c:a3:94:73:8c:dd:3d:22:ac:d4:8f:9c:5d:d1:05:b2:59:
0e:2e:90:71:19:6b:d6:da:64:0c:65:53:d7:d7:e9:06:08:0d:
2a:c4:bf:25:16:61:55:d2:0b:a1:05:93:ec:75:bc:bd:01:bb:
04:94:66:39:27:ee:1f:3b:19:f0:1e:97:52:2e:75:11:d3:2b:
e3:50:26:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org