Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Um3o16xS-7C4dQBqqscrkh5J7Kc.roa
File: Um3o16xS-7C4dQBqqscrkh5J7Kc.roa (raw, json)
Hash identifier: i8VQbQDUxOtTNLapXoAq5DIHVV2/4jbeBHKFfME/swQ=
Subject key identifier: 52:6D:E8:D7:AC:52:FB:B0:B8:75:00:6A:AA:C7:2B:92:1E:49:EC:A7
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AB97A56
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Um3o16xS-7C4dQBqqscrkh5J7Kc.roa
Signing time: Sat 01 Jan 2022 16:03:09 +0000
ROA not before: Sat 01 Jan 2022 16:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60659
IP address blocks: 213.74.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448363094 (0x1ab97a56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=526de8d7ac52fbb0b875006aaac72b921e49eca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e5:50:d7:4e:de:04:ee:75:31:08:aa:63:51:
81:f4:b5:13:b6:19:d7:db:0e:6a:4f:73:9c:c5:84:
92:94:56:14:35:31:ec:72:57:50:42:94:46:a5:0c:
60:02:bc:b4:56:4a:57:97:fd:31:da:3d:fb:5e:16:
87:8a:a5:2c:da:51:57:74:0d:4a:2c:8f:de:9e:7f:
02:83:80:99:03:52:fd:90:ed:74:f7:1d:d4:91:e0:
cd:d5:98:4a:ca:fa:32:48:85:2e:69:7b:fd:75:ba:
ac:a8:92:3d:ff:95:50:12:80:74:39:c2:f2:32:4a:
3f:b1:2d:e9:0b:55:80:64:a1:17:20:09:10:c8:e8:
63:37:ed:d0:cd:ee:80:2f:97:c0:d6:37:fb:2d:46:
42:16:48:e5:2a:38:b7:25:6e:6b:cf:14:4f:3e:5d:
c6:6e:44:e9:a6:eb:fb:23:83:f9:48:0d:b7:2d:e1:
ff:d0:73:d2:1f:a6:d9:d6:51:0c:0b:6e:1c:03:a5:
d8:1a:d5:bc:f8:bd:ba:f5:fd:9f:b9:95:eb:09:61:
59:40:34:51:4d:7f:56:74:bb:70:2a:cc:c4:a2:4b:
89:12:bc:a9:7b:3e:b5:6d:a6:dc:6e:d9:ae:57:95:
91:91:8d:66:67:eb:f1:07:6c:3a:a5:cd:1f:01:72:
91:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6D:E8:D7:AC:52:FB:B0:B8:75:00:6A:AA:C7:2B:92:1E:49:EC:A7
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Um3o16xS-7C4dQBqqscrkh5J7Kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.74.102.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:22:25:3a:be:23:d5:29:f1:59:0d:db:37:fe:f0:31:b9:ce:
64:2d:2e:3f:28:c1:ba:dc:7d:66:06:01:b4:72:48:58:15:2b:
ac:dd:d0:b4:bd:d9:11:7b:68:93:22:10:e4:2c:e0:cf:90:cf:
98:ab:6c:a3:de:1f:95:e4:bb:ee:4a:70:ad:62:f6:94:17:81:
be:9c:4e:36:30:1d:73:da:76:75:87:26:b9:6b:ab:90:8e:15:
b8:20:c7:19:81:1f:4c:cd:c6:48:25:32:83:a1:d9:a4:9d:75:
b8:fb:42:21:1b:09:95:1b:e0:f6:1e:ce:49:2c:8c:2d:43:92:
5c:de:69:e8:b6:ec:77:46:b6:66:38:9d:ec:ab:90:a7:53:16:
ed:dc:aa:e9:c3:c6:fe:43:59:0e:d6:f8:b2:46:17:76:ad:93:
09:99:f3:85:0e:81:c0:8d:c0:93:80:db:77:ac:6d:32:89:6e:
25:4e:87:cd:e5:c9:6c:3c:b2:4d:41:5d:9b:c9:b6:15:b7:c9:
e3:07:86:c7:e7:de:d1:3b:79:ba:67:4e:86:42:9e:e6:c7:13:
db:07:9e:24:69:49:1f:7d:b7:06:63:e5:54:c4:2e:a4:b1:88:
f1:b3:37:38:45:bf:a6:98:3d:37:2a:b6:5b:2e:6a:f5:7a:56:
d0:1b:f6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org