Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/735d37-391a-4aa2-ac83-0b36ac8e23c7/1/uLyiJn-SLlahIouk2VXIxna3qIU.roa
File: uLyiJn-SLlahIouk2VXIxna3qIU.roa (raw, json)
Hash identifier: /l4FdeFeRS+nbn+B1yZyShu82VT6UtpBuue4tMVbDnY=
Subject key identifier: B8:BC:A2:26:7F:92:2E:56:A1:22:8B:A4:D9:55:C8:C6:76:B7:A8:85
Certificate issuer: /CN=0e36a05fae760691f70cfb5b4f6249947abade87
Certificate serial: 138A9AC5
Authority key identifier: 0E:36:A0:5F:AE:76:06:91:F7:0C:FB:5B:4F:62:49:94:7A:BA:DE:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DjagX652BpH3DPtbT2JJlHq63oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/735d37-391a-4aa2-ac83-0b36ac8e23c7/1/uLyiJn-SLlahIouk2VXIxna3qIU.roa
Signing time: Sat 01 Jan 2022 12:05:30 +0000
ROA not before: Sat 01 Jan 2022 12:05:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9051
IP address blocks: 185.124.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327850693 (0x138a9ac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e36a05fae760691f70cfb5b4f6249947abade87
Validity
Not Before: Jan 1 12:05:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8bca2267f922e56a1228ba4d955c8c676b7a885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a6:7c:db:57:6a:4a:ec:f7:9b:37:7e:8d:0e:
46:be:57:37:af:e9:98:41:df:85:ba:c1:54:5b:64:
65:ca:28:bf:9b:6c:56:7d:26:6c:fd:67:65:9f:fb:
80:92:35:f1:01:87:ca:2d:d8:e1:d8:e4:2e:cd:64:
f5:37:58:cf:16:63:89:e0:2b:ca:5f:93:3a:a9:99:
7a:fe:37:f0:39:60:3d:87:7d:df:08:86:66:91:26:
67:88:51:97:e7:a7:05:92:1c:bc:b9:b8:09:df:2e:
b2:f8:91:88:c7:a0:39:cc:fe:d6:55:d6:b9:af:e2:
77:1d:68:97:48:23:a8:ef:ce:20:1c:5f:8b:a5:11:
81:f2:90:37:a8:71:d2:eb:49:92:2c:a6:84:f3:49:
cd:3f:59:26:03:33:a9:65:25:d3:bf:ac:b7:91:e9:
d2:85:83:a7:a4:9c:bb:19:92:a2:d7:91:55:d8:8d:
93:41:75:a4:2a:aa:55:ae:b5:4c:e3:8a:17:02:cf:
eb:3a:12:3d:b3:38:2c:9c:bf:64:a8:ae:d0:e6:ac:
ec:d2:77:c3:f0:8b:16:8d:1e:27:a7:8f:14:e1:d7:
cd:78:61:f8:be:e9:75:9e:88:8f:74:e1:39:7e:33:
16:fe:55:87:f4:e4:8d:c2:25:7f:e9:a2:34:73:45:
9a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:BC:A2:26:7F:92:2E:56:A1:22:8B:A4:D9:55:C8:C6:76:B7:A8:85
X509v3 Authority Key Identifier:
keyid:0E:36:A0:5F:AE:76:06:91:F7:0C:FB:5B:4F:62:49:94:7A:BA:DE:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DjagX652BpH3DPtbT2JJlHq63oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/735d37-391a-4aa2-ac83-0b36ac8e23c7/1/uLyiJn-SLlahIouk2VXIxna3qIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/735d37-391a-4aa2-ac83-0b36ac8e23c7/1/DjagX652BpH3DPtbT2JJlHq63oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.247.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:40:2d:eb:e3:29:09:a2:d9:d7:6f:76:41:29:96:8e:23:a9:
e2:32:53:ec:0f:49:2b:2a:77:3e:b9:ab:7a:00:80:64:bf:33:
24:22:9b:ff:cc:17:55:64:af:01:ac:06:52:2b:ef:af:2d:ec:
06:3d:42:9b:07:52:74:94:2c:29:e8:46:8d:12:d0:84:c4:2e:
2d:ff:5f:34:14:ce:7e:64:c0:06:74:1e:e5:22:a4:a2:32:91:
18:d5:bc:0a:e2:20:b5:2b:a3:57:28:de:86:67:3e:e6:05:42:
21:63:53:53:6c:8b:51:65:cf:8d:e3:c1:77:ef:a1:d6:df:ec:
f7:99:71:e7:00:3d:d5:d7:91:84:f3:0e:84:b8:ad:46:ec:d4:
8c:6d:f5:ec:e1:91:9a:ea:dc:35:8b:d2:22:b6:a3:b6:02:66:
da:68:38:81:4a:f6:25:80:57:a7:7d:04:40:22:8e:d1:75:e7:
1c:1f:10:11:45:e3:fb:ae:9b:29:33:f7:15:97:66:c2:74:df:
2b:73:49:50:44:aa:d6:3b:dc:f0:e4:3b:68:f3:77:b3:cc:38:
ef:cb:62:7f:02:29:5c:33:01:d0:90:68:77:ab:43:30:2c:93:
27:97:f9:e1:83:cd:8f:6c:fa:8e:9c:f9:8c:b0:59:6c:51:0d:
9e:4d:2c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:28 2024 by rpki-client on console-ams.rpki-client.org