Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/UPKhMlP2Cm6G8yqyAPZH3KYpRi0.roa
File: UPKhMlP2Cm6G8yqyAPZH3KYpRi0.roa (raw, json)
Hash identifier: mov3xqkZtRzS5OseLdYJKSwSURveqIQVztWbQN8vKT0=
Subject key identifier: 50:F2:A1:32:53:F6:0A:6E:86:F3:2A:B2:00:F6:47:DC:A6:29:46:2D
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 027CB2F4
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/UPKhMlP2Cm6G8yqyAPZH3KYpRi0.roa
Signing time: Wed 09 Feb 2022 10:02:12 +0000
ROA not before: Wed 09 Feb 2022 10:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3352
IP address blocks: 185.51.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41726708 (0x27cb2f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Feb 9 10:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50f2a13253f60a6e86f32ab200f647dca629462d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:75:a9:bd:bb:99:6f:28:f6:e3:5f:72:bb:40:
c1:4b:c5:ab:ba:3c:46:fe:d8:95:e9:44:af:8e:df:
18:ac:d9:31:6c:96:d9:88:05:d4:22:97:b3:f0:70:
55:28:af:a5:93:60:fb:e3:b9:55:2d:20:3a:8b:36:
2a:6c:82:4c:21:8e:5e:bb:fd:a8:53:e0:b3:0d:a1:
bc:f5:e8:46:28:a5:6f:7a:68:1a:5b:c9:00:4e:2a:
0a:ce:61:58:f6:5a:d8:54:26:65:66:2e:d7:d2:71:
b5:21:2d:70:83:2f:06:23:d1:35:c6:ab:43:cf:a0:
75:8a:73:7d:d0:8d:cf:b5:27:e7:78:11:40:e1:92:
c5:bd:80:1f:b2:10:e1:4e:95:f0:20:f5:97:d9:0f:
a4:7c:5d:f1:d7:e9:a3:df:56:1d:d7:83:41:b8:6e:
a1:45:cc:ba:3c:ff:52:52:27:69:d8:38:5d:36:f1:
ec:1d:5e:fc:68:0c:b2:40:eb:e7:64:01:f8:88:eb:
0f:99:28:26:07:fe:16:ff:5a:63:29:55:90:3e:6f:
18:8b:86:32:c2:c7:41:53:84:1c:06:18:e9:bd:3d:
30:05:e2:2f:81:6e:7d:ac:c4:09:0c:81:29:8e:a6:
27:4f:21:ec:ee:fd:09:57:6b:06:cb:18:3f:a1:a6:
00:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F2:A1:32:53:F6:0A:6E:86:F3:2A:B2:00:F6:47:DC:A6:29:46:2D
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/UPKhMlP2Cm6G8yqyAPZH3KYpRi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.44.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:79:84:43:06:1f:af:6b:a1:53:71:cc:25:6c:6d:91:f6:b9:
69:54:3f:5f:19:f4:ba:c2:98:0f:ee:f9:b8:75:9d:f4:55:61:
72:ac:d1:ea:76:55:ec:2f:1b:80:d4:dc:8f:e5:13:32:ca:ce:
cb:fb:64:18:97:8d:6c:b1:43:41:c1:f0:05:36:15:cc:2c:66:
bf:72:16:eb:7e:65:95:f2:91:d1:29:bd:cb:3f:cd:d5:7a:e1:
ee:f4:43:91:d0:8a:b5:92:c1:5f:30:e6:14:ee:8a:8f:a2:f8:
25:14:6f:ff:16:63:eb:ce:ad:be:fc:1b:93:60:ec:d4:24:11:
54:30:2c:cd:23:8c:0d:b4:f9:f4:6f:97:c7:1b:38:14:83:8f:
32:23:d3:83:84:33:01:c1:df:49:a7:a1:2d:88:65:b3:74:1b:
62:f9:95:61:43:68:7d:08:38:03:b0:e8:96:90:74:34:03:95:
58:92:d0:ae:b9:ef:d7:35:c0:58:75:4e:09:1c:37:8b:6e:e5:
35:68:f8:19:4d:99:98:73:85:87:b0:96:1c:6f:ef:e7:12:2f:
51:24:c9:45:d0:37:93:c3:9f:c7:df:7d:a0:a9:8e:67:84:7f:
3a:0c:72:5e:63:28:d8:69:8b:8d:c9:c6:72:33:27:35:de:0e:
79:03:92:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:12 2024 by rpki-client on console-fra.rpki-client.org