Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/UBq90nVwu9Nc3bgB67W-m9UTGDQ.roa
File: UBq90nVwu9Nc3bgB67W-m9UTGDQ.roa (raw, json)
Hash identifier: 2pubSak1WMTFeGWC8g19AtCvQREkvN7xxKM8GYxi59E=
Subject key identifier: 50:1A:BD:D2:75:70:BB:D3:5C:DD:B8:01:EB:B5:BE:9B:D5:13:18:34
Certificate issuer: /CN=aa88fae35b66b4de2e41ca5ee077b5ef0b4ab649
Certificate serial: 06F8E9BE
Authority key identifier: AA:88:FA:E3:5B:66:B4:DE:2E:41:CA:5E:E0:77:B5:EF:0B:4A:B6:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoj641tmtN4uQcpe4He17wtKtkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/UBq90nVwu9Nc3bgB67W-m9UTGDQ.roa
Signing time: Wed 01 Jun 2022 09:14:23 +0000
ROA not before: Wed 01 Jun 2022 09:14:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206348
IP address blocks: 185.159.248.0/22 maxlen: 24
185.159.250.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116976062 (0x6f8e9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa88fae35b66b4de2e41ca5ee077b5ef0b4ab649
Validity
Not Before: Jun 1 09:14:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=501abdd27570bbd35cddb801ebb5be9bd5131834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:74:12:ce:f0:41:f6:ba:ee:7a:b1:c6:2b:e2:
f6:45:c7:7a:71:81:15:84:55:a8:77:05:a9:6e:26:
e1:65:c6:9f:91:31:65:49:da:64:56:72:8a:83:18:
8b:ce:6e:4b:75:db:f0:c9:ac:f6:c0:ad:67:7f:cb:
5b:c4:bc:c0:97:bb:39:fc:53:53:e5:f5:60:d4:a0:
f2:ff:d9:b8:2f:72:21:11:cb:e2:0d:00:c5:b2:d0:
d3:2c:ce:2b:d4:a3:28:8c:bc:d9:ac:b3:0b:01:54:
e9:d8:19:38:ff:fc:d5:12:ad:b9:35:d6:b9:23:a9:
8d:1f:0c:c6:01:4c:a7:09:1e:b4:a2:d1:45:76:db:
25:84:84:d8:63:2a:ec:8d:53:3a:c4:58:8d:9f:16:
a8:d7:d6:81:72:e8:b0:99:a1:b8:85:89:fc:02:2a:
69:1a:72:3e:b2:b3:95:46:1c:74:7b:f6:b4:b7:d4:
60:fa:d0:3c:7c:04:be:e9:00:ce:c5:5c:5e:d5:7e:
b6:35:e0:dc:49:11:36:56:cf:b3:96:4a:7e:a3:13:
33:3a:c2:05:cd:b1:36:aa:28:a2:a8:2a:b9:98:09:
b4:11:15:0d:9c:fc:27:28:e7:20:15:2f:63:cc:b5:
ef:21:ff:6a:1d:52:f5:db:14:3a:19:33:f1:34:00:
27:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:1A:BD:D2:75:70:BB:D3:5C:DD:B8:01:EB:B5:BE:9B:D5:13:18:34
X509v3 Authority Key Identifier:
keyid:AA:88:FA:E3:5B:66:B4:DE:2E:41:CA:5E:E0:77:B5:EF:0B:4A:B6:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoj641tmtN4uQcpe4He17wtKtkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/UBq90nVwu9Nc3bgB67W-m9UTGDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6efd1b-3e10-4446-92c7-b92cb6113035/1/qoj641tmtN4uQcpe4He17wtKtkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.248.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:55:77:4f:cd:7c:70:08:4e:b2:fa:e6:58:5a:57:2d:de:74:
00:5a:97:d8:6c:ec:e3:dd:5f:4c:6a:ed:3f:cb:e7:6f:88:ff:
5e:bc:95:58:af:75:d2:61:df:33:d6:70:cb:77:4c:b6:0a:34:
c2:eb:03:e4:22:78:6d:ac:6e:37:b8:3c:75:a0:57:dc:b1:74:
6b:f9:af:32:49:a5:b7:5b:cf:43:3b:a7:d5:d5:cb:5c:98:dc:
68:69:38:2b:6e:52:88:06:b0:0e:00:7d:24:b7:d3:74:06:26:
f0:59:f1:04:03:bc:70:13:11:4b:8c:fc:56:66:66:ae:d6:86:
bb:3f:e7:1b:ff:74:21:87:32:9d:0c:cb:b3:11:63:84:56:62:
01:76:ca:e9:71:fa:e5:4b:3a:d1:b7:a9:57:85:93:b2:61:e8:
f9:ff:1a:84:c1:c7:2c:db:87:c2:8d:ea:11:39:9e:33:df:ed:
5a:c3:87:58:92:4e:ae:c9:62:a5:4e:69:d5:72:1c:85:ed:8b:
22:f1:94:c9:d7:29:a5:9b:22:be:e2:85:5d:10:74:76:30:2d:
fb:fe:b3:40:13:24:b8:fb:1e:73:fe:cc:e9:ee:16:c8:7e:06:
69:21:eb:87:0f:29:ae:60:4b:b1:fe:67:8c:a5:d0:95:d3:0d:
78:72:08:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:33 2024 by rpki-client on console-fra.rpki-client.org