Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/CUVTBV9phgdLw6eR7YJ0EDwHe7U.roa
File: CUVTBV9phgdLw6eR7YJ0EDwHe7U.roa (raw, json)
Hash identifier: TgE7ZmRIn/XVlKp4tlzEAfT97E2OkK+UjcLtsCd/1FY=
Subject key identifier: 09:45:53:05:5F:69:86:07:4B:C3:A7:91:ED:82:74:10:3C:07:7B:B5
Certificate issuer: /CN=e20449fe7f4b2cf1f7fd670e582ebcc97e45f7ff
Certificate serial: 094625BA
Authority key identifier: E2:04:49:FE:7F:4B:2C:F1:F7:FD:67:0E:58:2E:BC:C9:7E:45:F7:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gRJ_n9LLPH3_WcOWC68yX5F9_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/CUVTBV9phgdLw6eR7YJ0EDwHe7U.roa
Signing time: Sat 01 Jan 2022 16:11:35 +0000
ROA not before: Sat 01 Jan 2022 16:11:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49605
IP address blocks: 185.29.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155592122 (0x94625ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e20449fe7f4b2cf1f7fd670e582ebcc97e45f7ff
Validity
Not Before: Jan 1 16:11:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=094553055f6986074bc3a791ed8274103c077bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:83:9a:2c:19:bd:02:03:b6:b7:b1:f7:e5:
9f:24:63:ae:e8:cb:b5:84:91:0f:7c:1c:cc:c2:82:
44:83:db:1e:72:4f:1f:60:bf:04:76:68:70:1c:a2:
82:95:77:1d:33:18:f3:b0:39:bd:73:01:c2:53:4c:
a1:89:64:64:dc:d6:a6:b0:f5:a0:90:a9:ee:db:03:
b2:b4:84:1c:bb:ab:d3:49:dd:de:c2:f6:7b:d4:2b:
a9:ce:a3:0d:9b:cb:e7:0f:ac:64:b3:73:c9:8b:95:
f2:0a:15:f1:b9:bd:1a:57:ef:ac:53:fa:e2:8e:4a:
3e:db:39:a7:19:5c:4f:29:3e:19:8c:32:de:a0:35:
c5:57:50:3f:17:3c:fb:29:33:50:65:4d:a4:ee:66:
09:7e:48:44:05:ca:4f:79:25:aa:56:42:c5:ed:61:
d2:0a:92:a4:6d:dd:3a:95:1f:20:67:5e:e2:b1:66:
ba:2c:0f:b1:92:d8:1f:81:8b:86:df:3a:5e:1a:c9:
d5:69:c8:74:8b:ff:25:99:df:6a:8e:72:e9:97:79:
01:3c:1c:e8:75:46:42:31:10:dd:b2:1f:38:dd:71:
f5:7f:26:fb:e7:30:c4:97:3c:cd:db:d2:d0:c4:53:
e0:e4:a4:1c:c5:9a:87:c1:19:6c:8f:c6:34:ad:29:
e3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:45:53:05:5F:69:86:07:4B:C3:A7:91:ED:82:74:10:3C:07:7B:B5
X509v3 Authority Key Identifier:
keyid:E2:04:49:FE:7F:4B:2C:F1:F7:FD:67:0E:58:2E:BC:C9:7E:45:F7:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gRJ_n9LLPH3_WcOWC68yX5F9_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/CUVTBV9phgdLw6eR7YJ0EDwHe7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3dc879-11b9-4fa6-841d-906a91ee9fe4/1/4gRJ_n9LLPH3_WcOWC68yX5F9_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.72.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:bf:da:ae:f9:7d:95:d2:f0:6b:9b:da:ba:51:8b:ec:71:7f:
e4:7a:a8:e0:95:4b:d1:9a:6c:bd:91:f4:34:fb:3c:66:ae:3f:
63:09:36:e1:1d:74:1d:54:22:50:6f:28:84:f2:b8:89:e2:2a:
9a:ff:9f:58:82:ba:52:f4:2d:75:7f:0a:7a:9c:6e:b7:29:b9:
4d:00:b6:4a:09:a6:47:38:57:a9:0f:dc:c1:d5:81:ed:05:0f:
3f:42:39:f9:be:d8:ee:4c:15:db:fb:32:3c:0f:f1:35:e2:52:
4d:e7:0a:50:0c:e9:e8:9e:59:3b:34:18:fa:f5:61:ec:4f:3b:
17:fe:4e:da:eb:cd:96:2e:ef:90:a1:28:82:97:f7:75:4b:fd:
50:99:0a:4e:c4:2f:d3:b1:89:43:33:7f:1e:31:65:d5:4b:b1:
8a:a5:ce:1d:e7:db:dc:ae:b1:fc:08:6d:31:37:9b:ae:8a:14:
ad:81:07:c0:5a:82:69:cd:22:61:ab:c6:cd:60:ab:a9:6f:bf:
23:74:f6:93:6b:01:72:9c:57:b5:06:ba:a8:b1:28:94:b3:03:
af:04:69:23:e6:58:ca:2a:87:73:98:56:89:57:44:08:0c:a3:
82:50:80:a2:37:5c:6e:10:f2:0f:e3:7b:e8:38:0d:c5:ce:fa:
48:1c:a1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:41 2024 by rpki-client on console-ams.rpki-client.org