Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/U1Se9YmB9gw8HpnvdPtPpGZWn88.roa
File: U1Se9YmB9gw8HpnvdPtPpGZWn88.roa (raw, json)
Hash identifier: Cu395QR5AKZhQsHq/RMIZhCsCPqOodG9blQMU6he8Oo=
Subject key identifier: 53:54:9E:F5:89:81:F6:0C:3C:1E:99:EF:74:FB:4F:A4:66:56:9F:CF
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17F48CC0
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/U1Se9YmB9gw8HpnvdPtPpGZWn88.roa
Signing time: Sat 01 Jan 2022 04:54:52 +0000
ROA not before: Sat 01 Jan 2022 04:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212546
IP address blocks: 194.56.76.0/24 maxlen: 32
185.182.62.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401902784 (0x17f48cc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53549ef58981f60c3c1e99ef74fb4fa466569fcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:58:65:f5:e9:68:46:40:c9:69:90:63:cb:b4:
32:60:4d:08:d0:dc:d4:01:51:18:8f:2e:d3:75:72:
85:b9:f5:39:c2:af:69:2a:9d:5e:cb:e8:26:ec:67:
f2:21:88:e6:60:77:67:bb:46:1c:0f:75:de:26:a8:
05:e6:1c:34:61:30:53:48:fe:a7:74:46:a1:ae:c9:
76:40:a8:ce:db:89:70:27:9a:e0:7b:15:a5:36:76:
8a:2e:1a:63:ab:1e:64:a5:d9:05:2d:b2:e5:62:e9:
68:79:67:fb:b8:0c:b0:d3:6c:b5:42:8a:bf:5c:ce:
17:48:a4:cf:f2:33:02:96:02:0d:2a:11:5d:c8:a5:
a2:23:de:e2:05:cb:7f:a1:69:ba:46:74:b3:ae:f2:
a0:df:66:5d:ea:68:5c:91:70:1a:0e:5f:22:9b:ad:
ce:89:b7:bd:6d:31:f7:65:aa:00:82:4a:b4:6f:78:
34:f6:04:73:2d:92:fb:10:d3:cd:1f:18:29:9f:ea:
39:12:f3:2b:3e:03:07:e4:c8:5e:c3:54:29:19:fb:
c1:89:b8:a0:d1:b2:f5:bf:3d:6e:d0:ee:16:51:13:
90:1a:2e:97:50:81:28:9b:2a:0e:93:37:91:72:77:
87:82:95:fe:00:a4:f8:5d:ae:5d:68:81:71:ec:51:
cf:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:54:9E:F5:89:81:F6:0C:3C:1E:99:EF:74:FB:4F:A4:66:56:9F:CF
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/U1Se9YmB9gw8HpnvdPtPpGZWn88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.62.0/24
194.56.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:8b:60:35:22:32:bc:8d:9b:1e:f6:1d:e9:12:41:c2:e5:f5:
fd:6a:57:5a:2b:c3:16:db:9b:2b:c6:1c:e5:5c:33:82:a5:71:
de:7a:30:2a:e5:98:ae:74:55:df:98:22:6a:d5:f7:6d:e7:37:
60:8b:cb:9d:f5:fc:90:c3:33:fd:dc:d2:75:fc:c9:0c:da:f0:
c5:29:f8:18:ba:73:ec:af:60:5f:df:49:cd:dc:ad:a8:0e:ee:
d1:60:ec:5b:65:da:c1:e8:7f:13:99:06:a6:b8:80:0d:8e:99:
ef:0a:ee:f1:31:8b:76:ec:31:17:50:c8:8e:5f:48:c0:bc:b2:
6e:3b:2c:64:1e:8f:4c:f1:f8:13:6e:92:d0:17:5a:3b:48:aa:
60:d9:44:86:02:49:dd:4a:d8:cc:b6:0f:d7:5d:c8:dd:40:80:
8d:29:95:94:3d:34:4f:22:cf:c4:ea:b3:9a:58:13:19:17:85:
d8:dc:4f:10:b1:0d:4c:79:09:94:fb:f2:4b:23:ff:9a:2c:09:
0e:b1:e6:21:f4:51:f9:ba:30:4b:df:33:b0:cd:2a:e0:77:f3:
3e:ea:6a:e6:d3:c5:f7:d6:f1:24:ec:bd:85:eb:ef:58:7d:8d:
7c:f7:a1:d9:e3:19:59:3d:2e:7e:21:63:cd:0f:53:04:aa:60:
7b:c9:a2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org