Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/ubkp4VDJ2AnsExY_Femepds4iZA.roa
File: ubkp4VDJ2AnsExY_Femepds4iZA.roa (raw, json)
Hash identifier: zfaJm5+1EhD+QeJXj8FIn49D/mJGfqqGRY/AUtxUmRQ=
Subject key identifier: B9:B9:29:E1:50:C9:D8:09:EC:13:16:3F:15:E9:9E:A5:DB:38:89:90
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 01872DC9BFF1092AC06ED56038813002FB7B
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/ubkp4VDJ2AnsExY_Femepds4iZA.roa
Signing time: Wed 29 Mar 2023 14:33:29 +0000
ROA not before: Wed 29 Mar 2023 14:33:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 185.160.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2d:c9:bf:f1:09:2a:c0:6e:d5:60:38:81:30:02:fb:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Mar 29 14:33:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9b929e150c9d809ec13163f15e99ea5db388990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:21:fc:2f:4c:b3:71:d1:9c:38:0f:a6:96:30:
4b:c8:1c:f2:70:cf:55:84:e7:80:18:d2:b9:f2:b9:
00:fd:ce:e2:9c:83:07:bc:f3:9d:87:a7:6b:bc:52:
3a:8d:e2:e6:5d:55:0e:4f:1c:8d:53:ba:d5:66:74:
65:33:db:49:6a:04:4d:61:00:23:14:d2:dd:06:7f:
9b:0b:8a:8a:90:54:56:a5:d4:96:4b:50:c2:13:c9:
23:76:74:10:92:e5:9a:ee:02:7d:9b:b4:a4:31:60:
97:05:86:d2:aa:db:57:94:99:b1:54:3f:6b:d6:79:
96:d5:85:69:b0:83:15:83:f6:ab:bd:f7:37:ba:90:
27:3a:c7:40:15:9b:4e:b7:cd:8a:10:10:c8:b0:99:
54:06:06:ec:fc:33:3a:ec:d9:89:a4:22:0f:46:d2:
79:20:c5:fe:06:6a:87:ec:ba:65:ad:b3:21:0d:34:
fb:dd:2a:6b:64:ca:e4:c8:ed:b2:79:05:8f:d0:bd:
65:8d:bd:5f:ad:2d:5f:a1:bf:b7:ad:3b:32:65:50:
72:13:b4:aa:16:46:95:f2:c3:3b:b3:5b:7e:d5:26:
18:d3:d0:c2:b9:da:66:a8:1a:27:6e:45:ce:5d:4b:
c5:ce:bb:d1:1c:28:a6:9b:32:04:f5:69:12:06:50:
de:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B9:29:E1:50:C9:D8:09:EC:13:16:3F:15:E9:9E:A5:DB:38:89:90
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/ubkp4VDJ2AnsExY_Femepds4iZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.195.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:da:5a:31:bf:e0:8a:91:69:0e:df:3c:98:41:7a:06:62:cb:
a0:c7:af:d9:36:17:bb:4a:77:55:53:33:9e:cf:ab:f6:27:c5:
93:49:5e:93:aa:75:cd:97:ac:b1:f4:c7:2d:b9:cd:19:d7:da:
53:a9:81:87:8d:dc:11:42:09:22:32:cb:36:4a:4b:50:84:e8:
d0:a0:32:e0:de:95:20:ba:71:ad:34:02:bf:62:23:68:84:f6:
84:b2:1a:f7:f0:5d:4c:ca:bf:5c:67:e0:43:13:b9:64:f3:60:
57:97:9c:66:91:01:7c:66:21:17:7f:13:73:41:25:26:04:85:
a1:1a:59:25:e5:48:4b:c0:5e:44:e1:a3:48:26:98:d1:7a:7f:
47:bd:a1:01:7e:09:a0:cf:b9:22:32:ed:49:93:e2:78:01:e1:
51:0d:90:86:04:a3:b2:6e:45:1f:44:5f:d5:98:9a:b4:c5:66:
bd:05:23:47:da:8c:73:41:e6:b8:4c:e2:ee:40:d9:f5:47:91:
ef:16:6c:7a:09:d2:40:80:36:d0:e3:9d:a3:38:c1:c3:ff:02:
7b:1c:69:24:09:10:0e:38:fc:98:12:3e:82:7a:3f:9f:ba:31:
06:b0:b4:3f:14:c1:43:15:c1:18:eb:83:5f:87:b7:31:4f:e1:
19:aa:aa:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:10:45 2025 by rpki-client