Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/uZRYCxoFK8cVz9F2wvOLtM2hFP0.roa
File: uZRYCxoFK8cVz9F2wvOLtM2hFP0.roa (raw, json)
Hash identifier: 1sp6hMWjByd1+Hlucur0XxOD9WHZqOo/4c1bIPZeFzU=
Subject key identifier: B9:94:58:0B:1A:05:2B:C7:15:CF:D1:76:C2:F3:8B:B4:CD:A1:14:FD
Certificate issuer: /CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Certificate serial: 08923B97
Authority key identifier: 97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/uZRYCxoFK8cVz9F2wvOLtM2hFP0.roa
Signing time: Sat 01 Jan 2022 10:03:42 +0000
ROA not before: Sat 01 Jan 2022 10:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.249.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143801239 (0x8923b97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Validity
Not Before: Jan 1 10:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b994580b1a052bc715cfd176c2f38bb4cda114fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:93:50:24:de:96:5c:04:b9:a0:63:39:b6:8b:
04:9c:81:f7:27:ee:8c:65:1a:db:1e:e6:71:4a:ea:
94:92:23:66:9e:22:a5:2d:e7:45:db:1b:4c:4d:6e:
0b:ce:47:dd:ef:2c:83:e1:16:60:ad:10:3f:e9:aa:
59:27:13:1d:8a:fb:b5:e9:03:15:c4:83:03:04:61:
58:9c:e5:a1:f4:12:93:28:73:58:f2:52:98:b8:4e:
e9:9b:e2:02:51:f3:e1:ab:8d:68:d5:ed:c6:90:20:
97:77:31:6c:aa:7c:f7:30:02:9d:71:c3:85:18:1b:
e6:06:8c:6d:72:9d:3a:ef:6e:d7:19:c9:73:e7:0a:
67:00:a5:69:d6:9c:30:7f:95:fc:76:e4:9f:3e:9d:
a8:5e:36:f6:79:55:7d:9e:8f:45:f0:e7:11:a8:9c:
98:df:73:92:86:6b:47:8f:0d:3b:38:dc:45:53:7a:
45:4d:a3:bf:c0:a5:c5:28:45:22:ca:57:d1:4f:0b:
ae:79:50:24:22:44:0f:ac:6f:1d:62:35:16:1d:f0:
95:b5:b2:36:e2:21:41:02:f9:f6:be:a1:f9:fa:d6:
01:03:68:17:6b:e4:85:75:05:47:6f:5b:2e:16:14:
df:68:ef:ca:9e:2e:e2:46:e5:2b:76:54:84:4a:fc:
fd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:94:58:0B:1A:05:2B:C7:15:CF:D1:76:C2:F3:8B:B4:CD:A1:14:FD
X509v3 Authority Key Identifier:
keyid:97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/uZRYCxoFK8cVz9F2wvOLtM2hFP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/l6qlVaMp7dhmBswOPilr1Hisc94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.17.0/24
Signature Algorithm: sha256WithRSAEncryption
af:53:1b:a7:ee:63:94:f9:04:f5:b4:33:37:db:12:c3:e6:69:
b2:af:27:5c:b4:b4:e8:c3:0b:7e:82:7f:80:ba:d3:cd:a7:e8:
76:e9:8f:2e:06:df:a0:cb:85:4b:04:40:48:69:8c:f9:c9:78:
18:9a:15:d6:ad:2c:0d:90:7f:e4:93:e0:0f:4a:3a:83:1e:53:
df:1b:4e:5b:9e:74:de:e1:48:eb:7f:6b:8e:0b:e2:d0:e8:51:
f2:bf:aa:db:22:f1:4b:bc:cb:8b:d2:d9:ab:a4:7d:55:ae:97:
d6:10:b3:4c:06:bf:1e:b1:00:f2:c1:66:4b:ec:47:cf:3a:ca:
d8:33:b6:04:44:f9:65:46:79:85:50:bc:44:41:14:78:00:39:
cf:af:4b:56:ae:b0:9e:3f:2c:43:b9:2d:df:1b:cc:7a:4c:db:
3a:32:e4:e3:3f:2f:bf:dc:58:0b:1b:e0:4f:82:63:b8:0e:a1:
4f:bd:c2:2f:e4:c5:ce:8f:e4:e4:43:d6:68:91:be:0e:96:3e:
15:a1:99:0b:56:38:9c:af:7e:d7:ee:68:89:30:3d:be:d5:ca:
e6:9c:8f:a1:36:27:15:99:31:9f:c9:60:de:d2:56:34:39:37:
1e:74:73:f8:f2:fb:18:77:89:1e:03:b1:29:a8:4d:5f:3a:07:
1a:73:2b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org