Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/UrEhtv7GqoUw3vSFs-YOaGHFRd4.roa
File: UrEhtv7GqoUw3vSFs-YOaGHFRd4.roa (raw, json)
Hash identifier: IXJDbxn11pphENxwZoUm47SptiwEXEN6Ob3wi7wrssE=
Subject key identifier: 52:B1:21:B6:FE:C6:AA:85:30:DE:F4:85:B3:E6:0E:68:61:C5:45:DE
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 1424CFAD
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/UrEhtv7GqoUw3vSFs-YOaGHFRd4.roa
Signing time: Sat 01 Jan 2022 04:51:29 +0000
ROA not before: Sat 01 Jan 2022 04:51:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203898
IP address blocks: 185.122.0.0/24 maxlen: 24
2a06:98c0:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337956781 (0x1424cfad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jan 1 04:51:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52b121b6fec6aa8530def485b3e60e6861c545de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9a:40:eb:ce:e9:21:53:0c:b9:dd:98:8d:49:
bb:10:3a:c4:77:c7:59:3c:fc:55:3b:55:f7:c9:af:
fc:de:2b:72:89:bd:b6:42:b9:80:34:cf:3e:c1:cc:
38:af:52:c6:27:3c:5f:5d:24:2e:b6:48:62:8a:77:
d5:54:31:3d:7e:0e:1a:d6:0f:23:5c:5c:1b:28:8c:
3d:4e:0f:ca:ac:a2:1f:fe:30:c5:c6:84:15:5a:8e:
6d:cc:ae:f6:c1:e1:67:5e:bc:7e:2e:23:a8:92:cd:
93:93:25:67:2f:c5:3f:3c:c7:64:46:1f:ae:36:a5:
83:90:3e:83:70:f4:d8:d4:a9:f8:f5:e2:95:8b:52:
71:2c:83:93:33:39:e5:42:9f:b6:78:19:4c:d1:f7:
70:41:23:8e:3b:c8:10:05:ea:d0:0a:33:2d:aa:87:
b6:4a:a5:e4:14:25:cf:f6:ae:a6:61:eb:b9:63:38:
82:eb:5b:84:da:73:e8:53:18:c0:8f:f4:30:a6:da:
ff:5f:1f:02:d2:e5:aa:ea:4a:38:b4:07:99:9d:5f:
21:fe:3e:ac:be:d6:8a:e8:05:62:31:c7:91:d7:d2:
bc:82:43:5a:73:43:1b:04:8b:77:12:30:ab:17:d3:
af:a3:00:bf:43:e8:95:c6:05:04:35:4d:ed:f6:3e:
ef:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B1:21:B6:FE:C6:AA:85:30:DE:F4:85:B3:E6:0E:68:61:C5:45:DE
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/UrEhtv7GqoUw3vSFs-YOaGHFRd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.0.0/24
IPv6:
2a06:98c0:1000::/48
Signature Algorithm: sha256WithRSAEncryption
78:22:32:d8:81:8f:67:6c:fd:1f:67:e1:1a:87:fb:8e:8a:02:
10:f3:5e:1a:a3:3d:4a:d4:0e:f4:24:5d:64:de:74:23:7d:ef:
02:71:d3:91:60:9f:d6:f0:22:fb:75:11:00:fc:fa:f7:11:54:
22:56:37:48:bb:c1:36:20:2a:8a:e6:e9:03:19:32:d8:e8:fd:
d2:c3:a9:23:9c:e8:f4:93:fc:e2:17:56:32:2b:32:c4:56:8b:
e9:2f:5d:43:55:47:fa:01:be:43:3f:25:75:a2:23:96:d7:bd:
ff:7c:28:b9:1e:23:73:7e:07:e6:7e:00:90:42:48:49:a7:ad:
ed:8a:65:0d:e9:20:b7:bd:1a:74:8a:dc:28:9a:33:2a:70:a4:
b8:fb:6c:c2:f9:ea:71:ec:1b:ad:a7:3d:b3:de:5e:6e:21:22:
8b:3d:4d:43:f1:1b:89:8c:c5:17:e9:e5:22:d5:fc:29:6f:e7:
61:00:05:86:bf:d4:c0:8f:95:78:4f:c2:21:f3:b2:9e:c7:7a:
59:74:94:0c:41:28:7c:4d:9e:ff:87:69:32:2d:31:ca:08:e3:
5d:c5:0c:e6:80:ef:d3:cd:16:9d:45:6a:9a:95:3b:95:6f:91:
8f:7d:31:75:96:d8:56:ec:07:7b:f4:5c:e7:76:16:65:84:e1:
95:e5:61:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:48 2024 by rpki-client on console-ams.rpki-client.org