Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/uCLFMFyCBf3QCQzbk-lB7QFUnmM.roa
File: uCLFMFyCBf3QCQzbk-lB7QFUnmM.roa (raw, json)
Hash identifier: mDvSgUfPxhZflOTBZbjtdDQP4qSSA0pdiVXFkfv7y5w=
Subject key identifier: B8:22:C5:30:5C:82:05:FD:D0:09:0C:DB:93:E9:41:ED:01:54:9E:63
Certificate issuer: /CN=a3c03158aed81161d4f57c1742d460834173a79e
Certificate serial: 01826E3680905FA622325042CA6751CB0122
Authority key identifier: A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/uCLFMFyCBf3QCQzbk-lB7QFUnmM.roa
Signing time: Fri 05 Aug 2022 13:34:01 +0000
ROA not before: Fri 05 Aug 2022 13:34:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.194.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6e:36:80:90:5f:a6:22:32:50:42:ca:67:51:cb:01:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c03158aed81161d4f57c1742d460834173a79e
Validity
Not Before: Aug 5 13:34:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b822c5305c8205fdd0090cdb93e941ed01549e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:76:78:62:aa:df:23:a8:c3:b4:32:1e:b2:19:
07:76:37:fd:f4:82:63:5d:04:bc:ba:02:59:e4:a9:
52:af:22:59:79:18:9b:93:02:60:27:b1:27:84:ac:
0a:8b:09:aa:30:09:81:9a:56:f6:af:bf:d4:bd:01:
3d:c9:dc:81:cf:e2:7e:5a:f8:00:df:c9:38:99:58:
47:23:83:f3:c2:94:3f:6e:8d:36:cf:b7:bd:47:8b:
cb:e4:ca:b7:a5:01:7a:e0:04:57:00:db:50:6f:a4:
1c:b8:0a:45:e7:dc:42:b2:9a:d2:24:d7:40:6d:df:
ad:ff:28:78:94:ec:0f:b5:c2:f2:f5:5f:9b:73:d2:
fe:1f:a6:a1:ac:fb:15:b6:b0:f9:d0:61:76:61:86:
dd:11:5e:af:7e:58:5f:ea:2d:bf:9c:fe:f4:10:60:
10:8a:9c:4d:db:bf:12:0c:be:75:27:e1:76:b3:6c:
c9:ed:9b:68:45:35:ff:e7:c8:fa:88:53:99:84:05:
b2:c0:80:2d:a1:64:54:3d:1d:0b:d4:31:e8:b0:1c:
25:35:0c:79:9d:c8:c7:5b:b7:c9:c5:81:0d:67:7c:
e0:15:84:7b:bc:87:6e:b4:4b:d6:0d:6d:00:60:e3:
4e:52:b8:4b:ca:24:48:e7:9f:06:bb:0a:c9:25:f4:
36:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:22:C5:30:5C:82:05:FD:D0:09:0C:DB:93:E9:41:ED:01:54:9E:63
X509v3 Authority Key Identifier:
keyid:A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/uCLFMFyCBf3QCQzbk-lB7QFUnmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/o8AxWK7YEWHU9XwXQtRgg0Fzp54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.236.0/24
Signature Algorithm: sha256WithRSAEncryption
73:31:c5:44:c5:84:a3:a8:41:57:98:4c:79:d8:4c:b6:8f:72:
ea:52:12:45:4c:81:41:4c:51:6b:fd:60:50:26:e5:c2:82:57:
bb:c8:c0:ee:ca:e6:83:b7:96:5d:6a:53:df:0e:83:a3:e7:72:
d8:83:7a:69:35:12:dd:87:99:b7:65:cb:c9:af:a5:68:5a:7e:
e0:75:d5:ff:6c:25:57:4a:6c:b0:55:6e:4a:f6:f1:cf:5d:b7:
3f:75:7e:04:ee:18:68:49:46:fe:73:72:aa:54:14:3a:4b:19:
6a:44:1d:50:bd:42:80:31:bb:77:ac:d6:f5:96:86:17:cf:5b:
58:5b:82:d7:ef:91:64:9b:4e:ef:e4:49:2f:5a:63:54:67:08:
16:ee:74:69:be:21:a4:3f:32:67:47:9b:0e:ac:47:35:3c:52:
36:27:aa:23:a0:c3:ef:c3:25:5e:03:be:fc:b9:f3:08:a2:e8:
f2:74:07:34:1f:c3:d4:9b:ff:65:80:c8:de:46:d5:7d:86:9b:
9e:da:e6:78:8c:45:99:84:c8:86:4d:e1:73:f3:b3:5e:e3:43:
61:7f:c0:1e:07:e0:64:5e:bf:f3:b6:8f:c1:c4:7d:21:20:f6:
d7:1f:3b:5a:41:61:92:4e:3e:0c:e3:db:04:c3:fe:f4:23:13:
25:22:9f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:39 2024 by rpki-client on console-fra.rpki-client.org