Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/UUfMY9AkuQovavmh5jOin7CJw4k.roa
File: UUfMY9AkuQovavmh5jOin7CJw4k.roa (raw, json)
Hash identifier: k1zWLuNdV8oFmdBDgQ0Fr2elWExyncDk+nmOLKEN9/4=
Subject key identifier: 51:47:CC:63:D0:24:B9:0A:2F:6A:F9:A1:E6:33:A2:9F:B0:89:C3:89
Certificate issuer: /CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Certificate serial: 0182C16F09288735D229AC3080FDAAEADF1F
Authority key identifier: 15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/UUfMY9AkuQovavmh5jOin7CJw4k.roa
Signing time: Sun 21 Aug 2022 17:24:15 +0000
ROA not before: Sun 21 Aug 2022 17:24:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.13.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c1:6f:09:28:87:35:d2:29:ac:30:80:fd:aa:ea:df:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Validity
Not Before: Aug 21 17:24:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5147cc63d024b90a2f6af9a1e633a29fb089c389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:27:cb:56:8e:ab:25:5f:9d:5f:e9:7d:17:ff:
71:31:cd:87:4f:a5:a4:d2:66:c7:e2:ab:e7:3d:95:
14:69:56:75:f0:de:49:86:f2:f8:9c:38:35:e7:b9:
5f:57:5c:83:8c:cb:0e:a9:1a:18:a3:af:be:8a:80:
50:b5:73:24:77:fb:e6:00:fe:cd:62:bd:80:53:61:
02:d9:6e:22:12:cc:92:85:e3:ba:39:d4:c5:62:96:
03:d2:a7:b8:07:3b:ce:6b:dc:56:0b:f6:e7:a2:a7:
ad:24:02:7d:c5:00:fa:ba:c7:44:59:77:8b:c2:20:
cd:1e:9f:fa:bc:3a:3c:f0:f7:85:a5:d8:e6:3c:32:
46:57:af:cd:bf:c6:79:02:d2:74:f9:5f:83:a1:a7:
df:e7:19:d2:50:8b:e3:99:83:4b:51:9e:f0:bd:ef:
98:58:f6:66:64:57:54:87:fc:51:65:25:7f:e8:31:
d0:6f:ea:80:55:c8:97:93:c0:c5:b9:05:49:58:12:
17:e2:70:e6:b7:6e:79:9d:cd:ce:e9:e1:1b:7e:18:
61:42:50:ff:ed:61:e5:b1:18:2a:16:41:70:68:d4:
7f:f3:72:e2:f8:8e:f6:be:c2:0d:82:01:59:e8:e7:
b2:68:94:ea:d4:51:e8:f6:dc:46:e9:13:ca:35:e6:
65:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:47:CC:63:D0:24:B9:0A:2F:6A:F9:A1:E6:33:A2:9F:B0:89:C3:89
X509v3 Authority Key Identifier:
keyid:15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/UUfMY9AkuQovavmh5jOin7CJw4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.225.0/24
Signature Algorithm: sha256WithRSAEncryption
64:00:c9:16:96:06:d5:46:67:fb:f1:64:59:39:d6:aa:3f:49:
3c:fe:e6:09:1f:01:be:b7:d1:4e:a0:29:49:ec:eb:83:9f:7d:
c2:ad:48:63:bd:51:f8:67:31:3a:d0:89:ea:25:2f:e3:d3:1e:
f9:f2:c9:96:fc:b1:77:0a:75:05:d5:af:97:1d:04:c0:e0:cd:
53:ab:8e:92:19:42:6b:6b:66:99:b1:e0:25:23:03:64:b5:76:
cc:af:b9:8e:28:62:59:9e:39:01:a7:e0:f1:1d:ab:8a:84:cc:
86:af:f2:bb:0e:50:df:66:00:82:4a:2d:f4:2b:47:6c:91:c3:
44:f8:32:5d:7b:3d:53:bf:5c:d6:7a:ad:bd:97:c0:9a:6a:44:
f5:dd:c5:8d:7e:2c:5c:54:de:a7:31:b0:92:78:88:f5:17:b5:
e3:f5:a3:fe:04:7a:a4:25:28:7a:56:e2:04:6e:0a:c2:e3:2f:
3d:ad:a6:d7:25:bd:c2:96:ce:ea:80:94:b3:41:5e:a6:8d:3f:
6b:6f:8d:94:cb:0d:8c:9e:26:0d:3d:79:75:8f:05:cb:00:f4:
42:23:74:97:dc:a5:d4:7d:a7:e8:47:15:06:d0:4c:39:c9:cf:
de:d0:3d:c5:b3:c2:06:48:33:42:be:9c:e9:ce:77:56:a8:68:
30:91:55:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:46 2023 by rpki-client on console-ams.rpki-client.org