Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/UyEp0IJPSxmGMm64SZ85ZEn0RAs.roa
File: UyEp0IJPSxmGMm64SZ85ZEn0RAs.roa (raw, json)
Hash identifier: KeHabB1FA5HUJ30+TMtrzdNTNCj6yFas6uwgAW8LOHg=
Subject key identifier: 53:21:29:D0:82:4F:4B:19:86:32:6E:B8:49:9F:39:64:49:F4:44:0B
Certificate issuer: /CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Certificate serial: 024591F8
Authority key identifier: 48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/UyEp0IJPSxmGMm64SZ85ZEn0RAs.roa
Signing time: Wed 09 Mar 2022 07:12:34 +0000
ROA not before: Wed 09 Mar 2022 07:12:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.179.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38113784 (0x24591f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Validity
Not Before: Mar 9 07:12:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=532129d0824f4b1986326eb8499f396449f4440b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f6:60:b4:b4:10:a9:ad:ee:59:33:77:b1:5d:
57:26:0d:8e:c5:dc:91:e4:49:ec:5b:58:58:8e:73:
18:59:03:39:25:92:7a:7e:4a:c3:81:66:ef:4a:ce:
91:ac:cd:47:1c:18:6d:c6:c4:88:b0:bd:e8:5c:68:
ac:5a:b9:99:cd:b3:c1:5d:e4:98:11:af:bc:2e:43:
cf:bb:af:c0:da:ee:a8:83:13:13:91:8d:4e:d8:6f:
14:d1:16:50:6a:48:6a:c2:1a:96:42:c3:3c:43:c3:
f9:f1:b5:f9:a0:6c:78:4b:75:75:5f:d1:a8:95:0a:
be:6c:13:d6:15:ac:18:ef:07:2d:f3:9a:47:d8:af:
bd:26:ff:b8:a3:a0:c3:b9:71:43:2e:e0:ca:bc:f9:
b0:02:62:22:f7:8f:0b:29:f2:11:ab:94:c9:1e:0a:
43:cd:87:13:63:84:b7:15:62:1c:5b:6d:e5:d9:f6:
2f:55:bb:2a:2e:72:64:a9:f7:bd:a5:c5:e5:4b:10:
a8:83:09:ca:65:a5:d1:18:3f:2f:c2:89:b1:c9:ee:
98:76:18:6f:13:54:2a:6d:91:3e:13:35:fe:f5:b9:
8f:f4:9f:e9:28:c8:74:ce:4a:8b:c6:63:2b:8f:89:
a3:3c:e2:bd:f0:7c:84:16:4f:c9:75:0f:93:39:33:
44:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:21:29:D0:82:4F:4B:19:86:32:6E:B8:49:9F:39:64:49:F4:44:0B
X509v3 Authority Key Identifier:
keyid:48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/UyEp0IJPSxmGMm64SZ85ZEn0RAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/SAvxwTbs_9MS_Dm6PIKv-TneJPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.91.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1b:cf:f4:f6:54:b5:01:0d:5f:89:55:cc:6b:f2:12:a7:7a:
3c:bc:64:6c:01:f9:a3:14:a5:65:d2:c7:97:ea:22:6d:28:72:
4b:15:72:45:b4:44:6d:3d:dd:d7:ec:2f:64:8a:83:e5:e8:47:
35:d3:d8:85:b0:fa:f7:42:06:f6:92:3d:a2:d4:96:c8:fe:65:
1a:45:6b:aa:f1:d9:30:0b:dc:1f:49:be:ae:18:c2:e9:85:23:
b6:80:d2:57:5d:3a:cd:4c:0a:50:05:f1:49:cf:d7:2a:8f:09:
50:02:c8:32:7e:e4:46:4f:c1:7d:d5:5d:22:f5:0a:3f:4a:2a:
43:6c:ac:cb:9f:b6:eb:e0:90:f4:50:54:3f:c4:63:95:b4:e8:
26:dd:7d:18:9e:d1:13:65:f8:fe:f6:98:f2:a6:f6:b8:42:9e:
02:4b:3b:a2:bd:e5:e7:67:f5:e1:27:d3:86:7b:8c:3c:e8:a7:
0b:55:8e:2a:df:51:f6:13:28:ed:2c:d4:8f:88:5f:24:64:0e:
81:cc:72:46:40:23:35:3f:f2:e2:7c:e3:57:d6:20:a3:7b:55:
9d:79:df:3f:23:ae:5f:b4:c6:05:3d:10:a4:68:d3:0b:ae:47:
da:e9:b9:7a:d5:d8:27:cf:1a:1b:77:bc:3c:9b:7d:fa:9c:0a:
b9:d6:df:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:07 2023 by rpki-client on console-fra.rpki-client.org