Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/UUnPV7NDHWx9VNC5LGOqhTF4o7A.roa
File: UUnPV7NDHWx9VNC5LGOqhTF4o7A.roa (raw, json)
Hash identifier: vZT5ES1b8/j4+jP6FAMgk3doEXkyNK72V4v6UtKeqLI=
Subject key identifier: 51:49:CF:57:B3:43:1D:6C:7D:54:D0:B9:2C:63:AA:85:31:78:A3:B0
Certificate issuer: /CN=33c5b0d7c0a9cd24b73cdcb92c8746e85a4a5b8f
Certificate serial: 018539D1E4F7FCFE07C8246FAA36306B0754
Authority key identifier: 33:C5:B0:D7:C0:A9:CD:24:B7:3C:DC:B9:2C:87:46:E8:5A:4A:5B:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8Ww18CpzSS3PNy5LIdG6FpKW48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/UUnPV7NDHWx9VNC5LGOqhTF4o7A.roa
Signing time: Thu 22 Dec 2022 12:32:14 +0000
ROA not before: Thu 22 Dec 2022 12:32:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 393410
IP address blocks: 195.149.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:d1:e4:f7:fc:fe:07:c8:24:6f:aa:36:30:6b:07:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c5b0d7c0a9cd24b73cdcb92c8746e85a4a5b8f
Validity
Not Before: Dec 22 12:32:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5149cf57b3431d6c7d54d0b92c63aa853178a3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:37:4a:7c:db:03:dd:71:ab:f0:4f:8c:90:8b:
74:cc:82:5c:60:06:f1:df:16:64:c0:a7:3f:d4:5b:
14:5c:a9:c5:6f:81:80:7f:04:bd:e8:4b:84:d6:27:
59:a9:73:bf:70:72:67:10:d6:07:03:46:e8:da:6e:
01:02:fb:54:ee:3f:de:4e:ac:99:d1:29:4b:ae:66:
da:3f:a9:65:1d:dc:58:80:3f:98:51:e3:45:63:40:
cd:dc:03:8b:64:a0:4c:d3:0a:8a:5a:42:18:20:2c:
93:77:1e:9a:dc:78:51:77:fe:45:e3:40:0d:a5:0d:
6a:0b:a7:31:fe:43:d7:2b:aa:c4:91:d5:63:f3:a6:
50:65:50:92:6a:46:57:94:04:66:11:d2:80:6a:9f:
4e:ff:8c:fc:49:c9:00:7b:59:6c:b3:21:38:6e:4a:
30:5f:ea:20:ca:7b:52:fd:fc:3b:24:7f:0a:92:93:
b9:74:ca:98:ac:a4:ed:2c:46:ec:33:ee:48:33:fa:
41:70:2a:da:b8:81:b0:b2:0a:ed:2b:62:fd:df:14:
f7:c1:b8:66:5c:90:e1:b6:f1:7d:c3:f4:0d:04:72:
a5:00:ca:04:e7:c3:0a:9b:cd:b1:c2:b4:45:88:fd:
27:f7:8f:94:dd:ef:23:22:1e:f8:b0:00:f5:ce:77:
1b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:49:CF:57:B3:43:1D:6C:7D:54:D0:B9:2C:63:AA:85:31:78:A3:B0
X509v3 Authority Key Identifier:
keyid:33:C5:B0:D7:C0:A9:CD:24:B7:3C:DC:B9:2C:87:46:E8:5A:4A:5B:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8Ww18CpzSS3PNy5LIdG6FpKW48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/UUnPV7NDHWx9VNC5LGOqhTF4o7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/M8Ww18CpzSS3PNy5LIdG6FpKW48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.107.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3d:47:18:5d:bd:3e:96:32:4c:d3:50:24:07:57:7a:f8:03:
7f:74:7d:8d:18:8a:56:4c:32:c6:7e:06:04:ba:52:c3:aa:ea:
bc:2f:2c:0e:dd:b8:b0:6c:b4:d5:e6:85:d1:6c:20:b4:d0:1c:
7d:a6:55:d7:22:95:4d:b5:49:c5:df:38:c8:ed:b5:94:f9:94:
eb:65:0c:d2:d1:80:ee:3e:16:8e:09:ba:6b:28:a2:56:df:73:
13:79:cb:7b:cb:26:1f:d5:1c:d6:d1:73:d8:14:40:cf:9c:08:
b5:61:47:e4:ef:63:e2:db:06:41:50:90:fd:73:f4:40:7b:e5:
39:d9:0e:55:ec:d1:20:eb:7b:89:dc:67:43:66:7e:ea:f5:3c:
a2:3b:b3:91:5f:23:e7:27:66:7d:8a:3d:3a:72:c8:5f:25:56:
e1:e3:3a:3a:8e:bc:98:0e:f0:ad:fb:0b:21:b0:0a:56:28:54:
ec:e6:87:fd:d7:b5:8a:84:38:2b:c7:bc:83:40:b4:d7:62:8a:
a8:a6:ea:f1:f8:e9:81:0b:b5:96:01:f8:93:ec:e8:3d:ab:9f:
0a:fc:77:85:19:d9:30:08:7c:b2:2b:42:c9:fb:2b:d2:8c:31:
84:34:47:b1:3a:19:82:74:33:dd:42:68:36:61:1c:4e:4d:4e:
54:8a:73:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:38 2024 by rpki-client on console-fra.rpki-client.org