Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uKjCXFYglFPJgdPFHSmoc0dQsSg.roa
File: uKjCXFYglFPJgdPFHSmoc0dQsSg.roa (raw, json)
Hash identifier: cm4l7whsdOCeN+Llf5GgTuZSsP3ZBYvgb7R4VA7YP80=
Subject key identifier: B8:A8:C2:5C:56:20:94:53:C9:81:D3:C5:1D:29:A8:73:47:50:B1:28
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 065859E2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uKjCXFYglFPJgdPFHSmoc0dQsSg.roa
Signing time: Sat 01 Jan 2022 06:52:47 +0000
ROA not before: Sat 01 Jan 2022 06:52:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271907
IP address blocks: 185.223.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106453474 (0x65859e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8a8c25c56209453c981d3c51d29a8734750b128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:49:a8:a9:6a:7b:6f:bc:4e:4a:c9:62:66:5b:
4d:cf:99:6b:59:77:d3:9f:6b:77:88:6e:56:79:3f:
5f:9e:50:e0:76:e5:b6:dc:9e:5b:90:ab:4f:85:08:
52:fe:b2:e3:c0:4e:45:d5:ce:f3:8d:49:65:75:29:
e9:9d:90:1b:e6:0f:af:ef:e2:39:77:c5:71:be:9e:
8e:ba:f6:c2:0b:c6:67:82:64:e4:42:e1:54:60:09:
72:8e:97:38:42:a1:ea:cc:16:d1:fd:6a:d1:6c:d6:
df:b1:ba:1b:e8:79:cb:8c:80:f3:e1:1d:30:a9:11:
75:25:b8:6a:6a:38:46:61:1b:ac:a9:4a:52:65:fa:
e1:ac:98:30:83:61:da:8c:d7:4f:a9:b6:07:a5:eb:
45:d6:88:e9:1d:7a:46:02:1a:13:31:a8:75:a5:39:
8e:45:48:e1:47:cb:c8:87:9e:2f:76:48:a6:92:e2:
70:8a:8e:b3:b2:fb:5a:e9:8e:f8:b7:05:cf:c4:19:
6e:19:a1:ba:fd:d8:ce:09:c7:7f:98:55:1d:48:d6:
a6:5d:3d:6c:4e:61:34:1e:f2:0c:1c:9b:4e:20:6c:
13:f4:05:6b:0a:86:28:2d:17:b0:4d:af:32:b3:c0:
50:4b:82:2b:76:41:e1:33:65:31:12:af:70:38:f3:
76:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A8:C2:5C:56:20:94:53:C9:81:D3:C5:1D:29:A8:73:47:50:B1:28
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uKjCXFYglFPJgdPFHSmoc0dQsSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.78.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:3b:19:05:98:da:7b:c2:06:16:33:d9:9e:25:b2:a8:f9:27:
e6:8a:0d:1d:af:7d:27:50:8a:4e:4c:4c:b5:57:3d:7c:a2:5c:
10:28:8e:7b:6a:b9:c4:ff:14:ef:33:fd:2a:1e:ab:97:21:1f:
c3:57:06:8b:b7:1e:aa:44:4c:0a:21:8d:38:90:09:14:db:a0:
96:d4:76:ce:f6:b4:b9:7f:85:f6:28:3c:c8:66:80:b2:68:02:
13:33:ce:d4:22:4c:c0:d3:19:cf:23:a8:9f:4b:15:d6:c1:6b:
ec:1a:30:e9:38:19:85:f5:3e:f3:8a:e0:07:de:9e:75:7b:f9:
1c:1c:68:c8:38:b8:f8:b7:b2:bb:1f:c7:09:97:3b:de:8c:1d:
72:0e:57:d1:46:65:f2:79:83:ed:27:c4:f3:fb:0c:63:48:1c:
5c:2a:ab:a2:6c:71:8d:60:b6:e8:6c:85:df:92:7d:ce:b7:7d:
20:61:b3:cc:85:ab:03:a6:06:48:d9:dd:ad:96:f6:25:73:81:
4c:19:56:46:39:1c:d7:bf:f8:93:77:06:bc:7a:e3:07:c4:c0:
7d:77:7e:d5:96:0c:f5:e5:fc:13:47:77:58:30:7a:20:9e:78:
e6:48:fe:eb:80:43:25:67:b1:40:fb:33:1f:37:2f:f0:c7:01:
d5:3a:50:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org