Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UhnEw47PjnYeWvZYpsEQKqTNv5E.roa
File: UhnEw47PjnYeWvZYpsEQKqTNv5E.roa (raw, json)
Hash identifier: OVSr/F6KC48qnxvW1/zc8A2wo2uW7JhgdRMZnu/yMhg=
Subject key identifier: 52:19:C4:C3:8E:CF:8E:76:1E:5A:F6:58:A6:C1:10:2A:A4:CD:BF:91
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27FF71C2
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UhnEw47PjnYeWvZYpsEQKqTNv5E.roa
Signing time: Sat 01 Jan 2022 16:09:22 +0000
ROA not before: Sat 01 Jan 2022 16:09:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61371
IP address blocks: 93.171.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671052226 (0x27ff71c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5219c4c38ecf8e761e5af658a6c1102aa4cdbf91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c7:78:5e:23:24:31:07:32:ce:bb:8e:6b:c4:
52:34:06:2a:56:90:f0:07:94:47:e7:12:86:8d:2a:
31:08:b2:7d:72:3f:ff:33:55:5e:99:68:92:63:d0:
fe:4d:d1:25:a4:55:22:4f:cf:1f:a8:7b:49:26:58:
ac:94:60:0f:5c:32:91:1e:6b:30:f0:5e:b6:f2:ee:
d3:c9:75:20:95:17:37:da:a1:40:ea:ce:cf:ac:74:
2e:b3:53:d4:18:c9:98:5a:d8:c8:23:c6:33:d0:8f:
35:b2:e0:33:dc:9f:99:f9:5e:e0:68:6d:ce:3f:fd:
50:ef:2f:f8:29:04:68:e0:14:57:f3:43:cc:41:ea:
d9:97:48:fc:99:17:33:90:a2:a5:6b:78:c8:f4:80:
eb:95:f9:74:64:b4:38:0f:17:7b:09:6f:3a:69:a2:
64:c5:be:8e:3e:d6:16:d6:bd:c9:2d:26:2b:19:34:
e7:28:b0:c2:a2:17:85:49:17:e6:c6:93:09:b3:28:
a5:83:de:d7:a6:4b:7f:88:c4:c7:9d:4d:ac:50:c2:
87:bf:50:f8:e6:1d:be:d0:0e:d2:76:7b:76:ad:eb:
e9:d0:91:af:21:ad:ca:3f:17:47:e2:79:b2:dd:67:
88:1a:12:47:ab:dd:7a:f4:0c:3e:f6:a9:db:e3:e8:
73:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:19:C4:C3:8E:CF:8E:76:1E:5A:F6:58:A6:C1:10:2A:A4:CD:BF:91
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/UhnEw47PjnYeWvZYpsEQKqTNv5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.185.0/24
Signature Algorithm: sha256WithRSAEncryption
35:d0:43:a1:06:a5:ca:dd:84:38:ea:72:d1:fa:90:df:64:f4:
a6:06:0a:5c:7d:a2:eb:b2:68:82:d6:fa:b3:c0:9a:bd:ec:09:
2a:2c:f6:d8:d0:52:f5:f2:20:0d:8b:f9:98:6d:cb:5f:36:ac:
7f:03:80:18:e4:3f:d9:d1:11:bd:95:6c:8f:c7:b1:8f:d2:f4:
5a:72:9e:6b:be:ab:71:5c:a3:75:ec:9e:db:e2:fa:ea:5b:1e:
af:a7:0c:8d:0a:8c:84:12:1d:78:3f:f4:b3:fd:84:17:7e:70:
99:f9:d7:a0:5a:9c:62:9a:1b:06:08:80:6c:f0:a4:c5:1b:12:
54:fb:f8:bd:70:c7:6d:0c:bc:4e:54:00:06:c6:35:63:26:c3:
20:4d:52:f3:7a:1f:22:c2:6e:de:5f:ff:20:d6:03:12:d0:9c:
5d:a8:bf:5d:13:af:69:12:84:ef:aa:bf:b0:bc:2c:83:6f:44:
ce:27:dc:de:de:46:10:a1:cc:95:48:4b:fe:ad:50:4d:a5:b7:
f6:6c:13:ab:41:02:22:97:04:d8:3f:61:8f:d5:b6:fe:1e:cd:
c1:aa:c2:0a:ef:71:d3:5a:72:50:18:4c:1b:e5:e9:1a:1d:c0:
a4:99:37:e3:1d:de:4f:05:62:3e:63:7d:5c:b2:95:71:26:f3:
be:d7:b9:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:42 2023 by rpki-client on console-fra.rpki-client.org