Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/u5xCxyU6xhXW6ZmbKojRQpb3CLk.roa
File: u5xCxyU6xhXW6ZmbKojRQpb3CLk.roa (raw, json)
Hash identifier: bVSecsQG3a7v+MsIYN6qpkA8FXfdFUjYxEmdJyEVQVI=
Subject key identifier: BB:9C:42:C7:25:3A:C6:15:D6:E9:99:9B:2A:88:D1:42:96:F7:08:B9
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 032D6786
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/u5xCxyU6xhXW6ZmbKojRQpb3CLk.roa
Signing time: Sat 01 Jan 2022 16:04:26 +0000
ROA not before: Sat 01 Jan 2022 16:04:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200453
IP address blocks: 185.94.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53307270 (0x32d6786)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb9c42c7253ac615d6e9999b2a88d14296f708b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6d:35:79:f0:a6:ef:db:89:91:94:68:7d:24:
8b:69:ee:45:4f:1c:18:5f:ab:22:48:c6:05:36:0f:
30:24:78:d1:f9:90:f4:ba:59:f5:06:d9:b3:74:1e:
02:b6:ab:9b:f6:f2:f3:d2:5f:bd:95:fc:77:61:70:
20:e8:19:88:fe:43:4c:41:5f:82:ad:eb:1b:fc:ce:
11:12:f5:92:d3:da:a7:8b:7c:5d:f7:3c:f9:e8:86:
98:6f:80:9e:a6:d7:cd:e5:bb:f1:03:5c:65:c2:92:
88:e8:22:56:9b:ab:48:9b:4e:9e:4b:24:70:1d:b8:
3f:02:8c:7b:c4:cf:b1:4e:cf:f7:26:2e:c9:67:0e:
70:a1:03:8c:0b:6d:4b:b9:3c:c2:2c:25:03:66:c2:
5b:58:ac:01:50:73:cc:59:aa:c1:da:18:72:dd:c6:
78:16:9a:0e:4b:7d:a7:39:7b:c2:97:89:0b:84:d1:
17:db:e1:22:6d:18:56:88:32:06:4f:51:b8:12:a3:
a8:9f:e8:de:4f:e8:e8:3d:73:b4:26:01:7b:bf:9c:
c2:2e:5c:88:4a:69:5b:03:1f:07:1c:5a:e5:7c:81:
1a:3f:44:8e:a3:c7:6d:e3:e1:9b:d6:ed:36:2d:69:
87:20:ff:32:a5:7b:55:7d:7c:5b:26:71:71:e0:0c:
df:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9C:42:C7:25:3A:C6:15:D6:E9:99:9B:2A:88:D1:42:96:F7:08:B9
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/u5xCxyU6xhXW6ZmbKojRQpb3CLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.166.0/24
Signature Algorithm: sha256WithRSAEncryption
87:02:89:fd:a0:d1:b2:e8:c7:4f:4c:c2:02:44:fa:09:a6:6a:
ff:2d:18:dc:89:f4:6f:29:7c:ba:63:29:dc:0e:d7:c2:3a:6a:
a6:b5:61:bf:1c:dc:c9:24:e0:2f:99:fb:66:35:be:4c:f4:19:
dc:4c:f5:c6:45:44:b7:35:3c:bc:01:da:7c:7b:4b:c7:84:c3:
cd:ec:19:81:e4:a3:c6:03:fc:47:db:df:23:5e:43:28:40:1c:
9c:4b:91:14:25:32:3b:79:ad:be:b1:ea:07:9d:3c:51:cc:69:
e7:b0:7a:2f:9e:d8:8e:b1:42:e4:05:aa:8a:ec:37:25:7f:e6:
c8:ce:5f:1e:d2:59:2f:90:74:cf:fd:cd:da:5f:33:e9:b5:52:
b8:75:97:6f:d5:df:9a:5b:e0:72:fc:68:4e:36:90:8e:31:56:
28:ac:6e:76:19:4a:0e:35:2e:91:54:44:24:57:70:46:7e:ee:
b9:57:42:50:a2:b4:6b:72:52:33:99:7c:56:47:65:cb:c5:cd:
08:ba:6d:7a:a4:03:93:83:66:f3:60:0a:cb:e2:cd:ab:84:9b:
31:f7:49:46:54:48:d4:02:48:1b:da:06:34:3e:b9:44:76:b0:
8c:b5:f4:98:d8:07:3d:97:d4:2c:79:02:96:6f:de:80:81:e4:
8a:fa:22:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:38 2023 by rpki-client on console-fra.rpki-client.org