Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/UP285S3C-t6YJQGapzqzH9b1Ub8.roa
File: UP285S3C-t6YJQGapzqzH9b1Ub8.roa (raw, json)
Hash identifier: +NWnpMitdpijR/GmALmzylSuUr2JcS9S/KkpzOpORXg=
Subject key identifier: 50:FD:BC:E5:2D:C2:FA:DE:98:25:01:9A:A7:3A:B3:1F:D6:F5:51:BF
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0183A70EC399F3683F25E84F619E84BB204C
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/UP285S3C-t6YJQGapzqzH9b1Ub8.roa
Signing time: Wed 05 Oct 2022 07:31:46 +0000
ROA not before: Wed 05 Oct 2022 07:31:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 80.71.224.0/24 maxlen: 24
80.71.238.0/24 maxlen: 24
80.71.236.0/24 maxlen: 24
81.29.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:0e:c3:99:f3:68:3f:25:e8:4f:61:9e:84:bb:20:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Oct 5 07:31:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50fdbce52dc2fade9825019aa73ab31fd6f551bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:02:d5:6d:04:ad:25:80:73:7f:71:b1:ac:55:
f8:ff:a8:f1:96:74:4b:14:a4:41:68:e9:9c:cd:05:
d8:aa:3a:74:f1:ab:b4:8d:65:b3:9f:2c:ed:5b:19:
67:70:ab:ff:c8:a1:36:70:a8:e5:e3:be:5a:3a:ff:
bd:5d:21:80:82:4e:f0:0c:a7:17:a4:3c:fb:06:67:
bb:0b:61:43:fa:64:7b:f4:6a:ad:10:ad:af:b1:52:
31:d9:80:26:ed:38:4e:b7:14:2f:f2:3e:8e:fa:a6:
e2:51:31:69:9c:40:ff:8a:2f:82:78:dd:a1:46:98:
e0:7b:fe:eb:a5:e8:df:ef:4d:80:3a:da:2c:d6:a0:
e1:af:1e:9e:ef:30:99:09:7b:81:bd:75:a6:03:c1:
e8:78:3f:45:71:bc:dc:3c:30:07:10:69:bd:2c:dc:
8a:15:d4:dd:eb:2d:25:13:d5:19:2b:e7:0b:68:29:
70:34:e0:98:c7:e1:db:de:eb:b8:84:86:23:1a:5b:
0a:fb:52:b7:8b:9d:d8:d1:d8:31:7c:90:d6:91:9f:
5c:a9:97:55:59:ce:47:e5:66:d9:4d:4f:71:15:d8:
9d:31:22:25:f3:3b:fc:15:b7:47:b6:13:ea:2f:97:
4e:07:57:01:e1:f8:8b:b8:94:9a:86:20:11:a0:f1:
a8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FD:BC:E5:2D:C2:FA:DE:98:25:01:9A:A7:3A:B3:1F:D6:F5:51:BF
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/UP285S3C-t6YJQGapzqzH9b1Ub8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.224.0/24
80.71.236.0/24
80.71.238.0/24
81.29.144.0/24
Signature Algorithm: sha256WithRSAEncryption
59:73:a6:50:61:ef:c1:6c:4c:df:fc:31:92:8b:6b:60:21:fa:
95:be:39:65:21:f5:17:26:52:4c:e0:01:a7:9e:16:00:bc:64:
20:f4:18:e5:9e:31:55:10:ca:ee:05:c6:33:23:fb:c9:6b:50:
bf:ce:8c:59:12:1a:46:8a:31:ec:0b:16:cf:09:9b:ff:22:fc:
2a:a5:10:9f:ed:ff:27:b7:24:6f:35:31:26:03:ad:1f:86:7b:
cf:4a:63:7f:ae:d4:60:dc:6e:a7:f1:ba:24:2f:32:60:9d:18:
40:f3:af:b6:61:65:3d:0f:52:57:5c:9c:09:72:e8:b4:34:6f:
ca:bd:42:00:a0:ad:3e:1f:57:83:ec:7e:6d:7a:c8:4d:8b:90:
01:e1:b4:1d:f0:e1:2a:a8:9d:b5:31:d1:f2:81:a1:2e:96:84:
6b:4e:1f:eb:a3:1d:4f:2a:68:d5:d9:91:9f:9e:ab:60:d2:bb:
86:6e:da:38:e6:18:80:3b:6a:db:4f:98:c1:d6:66:8e:a7:db:
a5:6a:ee:cf:16:90:c9:5f:b4:2d:19:3a:6e:45:87:48:cc:99:
ee:37:2f:b8:18:b7:f1:30:51:6e:ea:48:97:ed:24:e8:2f:6c:
2a:15:e6:03:e1:24:60:23:66:3c:38:f7:79:cb:17:05:a8:df:
6d:42:31:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org