Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/uPDfZGWrJ_c0L7fQglvN50dp5pM.roa
File: uPDfZGWrJ_c0L7fQglvN50dp5pM.roa (raw, json)
Hash identifier: oTotzs6fwLrgd3Rjrrzez2ptVmZtcvnlYNlQdwSYoxs=
Subject key identifier: B8:F0:DF:64:65:AB:27:F7:34:2F:B7:D0:82:5B:CD:E7:47:69:E6:93
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17DD778B
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/uPDfZGWrJ_c0L7fQglvN50dp5pM.roa
Signing time: Sat 01 Jan 2022 04:54:37 +0000
ROA not before: Sat 01 Jan 2022 04:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203125
IP address blocks: 185.188.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400390027 (0x17dd778b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8f0df6465ab27f7342fb7d0825bcde74769e693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:89:68:1d:d5:04:c6:e2:7c:db:94:fc:7a:a4:
69:9b:01:e0:60:6c:ef:92:6d:f6:d0:11:57:3a:8b:
2d:48:9d:76:c1:63:97:ab:24:f1:f5:6e:b8:94:a5:
75:4e:78:8a:3c:7f:1e:5e:2d:aa:57:5a:60:e5:20:
04:33:01:77:62:1b:37:26:25:bc:c6:e4:47:ec:82:
66:6a:23:8c:a0:c3:3a:a8:b4:05:cd:3c:c5:d8:74:
05:c2:f9:c9:2b:6a:4c:c7:8f:37:6e:33:05:44:f6:
84:0a:83:d2:44:af:bd:ee:f9:d2:b2:b3:e3:b3:f9:
43:a4:93:bf:f6:6f:7f:9e:b7:4d:2f:b7:24:ca:2d:
af:c6:ef:df:42:c8:14:19:bc:bb:b4:e7:61:f3:91:
4f:7c:1b:73:af:38:8c:69:84:87:7b:1f:91:60:e8:
a1:76:58:8b:b6:69:17:cc:c4:fc:f4:7a:bd:1c:71:
27:7c:82:4b:5b:e8:72:5f:7f:5c:81:23:fb:a8:30:
e7:b9:b2:40:97:0b:fe:45:99:f1:2a:b9:22:eb:9f:
ec:0b:cc:bc:43:0f:a3:97:d5:79:4b:56:18:85:6a:
ba:99:a3:e3:60:fc:23:fe:9a:2b:98:dc:cd:3f:61:
88:1d:01:fb:e7:17:c6:a1:23:e0:cd:22:ab:e2:3e:
b0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F0:DF:64:65:AB:27:F7:34:2F:B7:D0:82:5B:CD:E7:47:69:E6:93
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/uPDfZGWrJ_c0L7fQglvN50dp5pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.4.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:ef:9b:79:20:f1:d2:8e:4e:2b:d5:f8:91:7b:a5:ca:77:a3:
77:80:d9:5e:13:cd:47:af:41:23:53:3d:1b:63:66:67:fd:11:
d5:db:c7:07:5a:70:d1:af:9f:42:33:13:3c:3a:0a:4d:57:b1:
97:3d:f0:ec:aa:8c:b3:53:43:dc:49:d2:26:65:39:16:3c:65:
96:df:f2:43:41:9f:71:9a:df:29:f6:1f:e1:62:03:89:60:7e:
b1:ab:25:c3:ff:2d:29:91:c3:d8:19:0b:69:67:31:61:b7:88:
f2:fb:e3:2a:82:86:06:08:f4:fe:3c:df:26:3e:76:fe:c8:59:
4f:ae:85:47:e8:94:65:3c:71:bf:c8:c8:75:6b:6a:d0:b3:f0:
5b:d3:56:49:7d:df:93:a3:3e:09:9d:77:d6:0c:39:8b:fe:11:
58:b5:85:c5:81:d5:7e:cd:aa:f8:7b:a8:95:c4:74:3b:4f:b6:
11:3b:60:8d:87:24:1e:ed:04:b6:b3:fe:65:2d:77:7c:d2:b9:
7a:bc:98:9d:a0:80:e0:ac:49:9d:a7:08:94:d6:a6:f6:f8:ea:
13:35:0b:c5:ef:3a:30:79:30:16:5b:33:31:4c:04:1f:99:03:
b9:27:e4:76:8c:e9:92:3d:b6:56:dd:1a:48:e5:d3:31:69:f8:
45:ae:6c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org