Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/deb97b-def1-4646-a5ed-d89e641183f3/1/U9t1rVFkaoH4FBf5tkp01OUrBxM.roa
File: U9t1rVFkaoH4FBf5tkp01OUrBxM.roa (raw, json)
Hash identifier: s73Y5h+wryl3Lon8qMMGUDzZT+ThgTU/hW11PUWRNWE=
Subject key identifier: 53:DB:75:AD:51:64:6A:81:F8:14:17:F9:B6:4A:74:D4:E5:2B:07:13
Certificate issuer: /CN=7dec279b0501730698a30bcdcea3ae477c957331
Certificate serial: 0EEBEBA1
Authority key identifier: 7D:EC:27:9B:05:01:73:06:98:A3:0B:CD:CE:A3:AE:47:7C:95:73:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fewnmwUBcwaYowvNzqOuR3yVczE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/deb97b-def1-4646-a5ed-d89e641183f3/1/U9t1rVFkaoH4FBf5tkp01OUrBxM.roa
Signing time: Sat 01 Jan 2022 15:07:02 +0000
ROA not before: Sat 01 Jan 2022 15:07:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41605
IP address blocks: 185.82.148.0/22 maxlen: 22
185.82.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250342305 (0xeebeba1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dec279b0501730698a30bcdcea3ae477c957331
Validity
Not Before: Jan 1 15:07:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53db75ad51646a81f81417f9b64a74d4e52b0713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a5:b1:17:d6:6c:be:60:80:5f:95:4a:a7:58:
b5:b6:78:d8:61:ed:f0:94:58:2f:ea:f7:88:12:a8:
a2:e8:b1:ec:6e:eb:4e:25:a3:01:c1:c8:0c:5e:b7:
66:32:44:ad:a9:5e:72:f5:b2:12:b1:d6:f6:5d:4f:
8e:f5:35:77:a8:13:1e:5b:12:14:10:57:26:a3:c2:
4a:09:a7:a4:95:a6:ec:d0:5f:21:70:1a:32:38:08:
94:df:e4:4c:19:58:6b:43:a3:b8:aa:cf:43:09:c8:
03:89:20:4c:70:04:6a:93:46:d9:9d:d9:52:1c:9d:
5f:85:bc:5c:6d:b8:f3:0c:7c:a2:8e:50:0c:03:bc:
6c:24:ca:4b:22:de:98:d8:07:fb:7f:44:84:4b:f5:
a4:21:bf:90:87:6c:df:55:c4:fc:e4:8d:98:e6:cd:
01:3e:ba:6f:5b:31:79:0e:78:d8:57:96:3a:a1:78:
8f:17:ae:ca:d3:8c:dc:0e:9d:20:47:ac:76:fa:2c:
23:f5:30:bb:86:57:68:e3:40:d6:64:47:38:4e:b8:
f5:1c:1c:ad:8f:8c:af:0f:1f:03:34:87:24:49:b3:
5c:9c:42:cc:0f:e6:ac:8a:04:e5:fd:ce:7b:52:c8:
15:6a:f0:ad:9b:b0:a2:ae:b0:3c:c9:a2:b0:23:49:
b2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DB:75:AD:51:64:6A:81:F8:14:17:F9:B6:4A:74:D4:E5:2B:07:13
X509v3 Authority Key Identifier:
keyid:7D:EC:27:9B:05:01:73:06:98:A3:0B:CD:CE:A3:AE:47:7C:95:73:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fewnmwUBcwaYowvNzqOuR3yVczE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/deb97b-def1-4646-a5ed-d89e641183f3/1/U9t1rVFkaoH4FBf5tkp01OUrBxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/deb97b-def1-4646-a5ed-d89e641183f3/1/fewnmwUBcwaYowvNzqOuR3yVczE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.148.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:be:e5:6a:94:a1:50:d6:a4:75:28:7e:73:a8:c0:76:2d:e0:
ac:c7:1d:b9:c6:d5:d6:8d:1f:7e:a0:34:cf:c4:06:2a:92:5b:
d2:f9:f2:d2:66:b1:08:33:19:f9:65:ce:61:f5:45:7c:b4:a9:
17:d7:e4:c8:06:a4:21:55:40:90:f4:a1:20:bb:58:8e:95:a1:
01:0f:77:1b:41:e4:12:08:5b:38:f4:8a:7f:54:39:2d:38:b1:
5e:5c:06:99:2a:d7:5a:3b:72:32:29:6a:cf:ac:10:64:fa:13:
e4:42:d2:d1:c4:49:19:fe:70:69:f1:97:2f:12:64:55:ea:07:
a8:8a:9b:33:f5:a9:54:36:1b:5d:d7:1b:d1:84:50:10:49:87:
75:98:29:e2:9e:8a:08:94:a8:a6:88:f8:14:ab:f8:50:20:6c:
5b:3e:43:5b:ce:a4:bf:3d:6e:7d:bd:6a:1f:01:42:97:ab:d7:
b1:55:fb:c6:c6:cd:c9:50:de:bc:7e:bf:ed:41:d0:f7:8f:8b:
d3:58:74:ec:17:6a:7c:06:98:ca:3d:d8:99:26:6c:bc:31:76:
68:08:f4:9c:a8:80:d7:c2:eb:ca:06:0c:d0:8e:c3:71:34:e8:
fd:a5:c1:a9:1b:41:21:4f:29:5a:b9:79:63:99:d0:39:96:3a:
ba:e4:4f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:03 2024 by rpki-client on console-ams.rpki-client.org