Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/UQuhyAPVryA5ZVcxQrsPFxg9Tzk.roa
File: UQuhyAPVryA5ZVcxQrsPFxg9Tzk.roa (raw, json)
Hash identifier: i9y8IfFDwmIIpncerMLwRmoXsuNgRuwQjaGVx5Fld0U=
Subject key identifier: 51:0B:A1:C8:03:D5:AF:20:39:65:57:31:42:BB:0F:17:18:3D:4F:39
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 04AF0FDB
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/UQuhyAPVryA5ZVcxQrsPFxg9Tzk.roa
Signing time: Sat 01 Jan 2022 05:51:36 +0000
ROA not before: Sat 01 Jan 2022 05:51:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12444
IP address blocks: 185.118.177.0/24 maxlen: 24
185.118.178.0/24 maxlen: 24
185.118.176.0/24 maxlen: 24
185.118.179.0/24 maxlen: 24
84.17.70.0/24 maxlen: 24
84.17.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78581723 (0x4af0fdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: Jan 1 05:51:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=510ba1c803d5af203965573142bb0f17183d4f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9e:f1:d8:e3:d5:47:e0:b0:15:5b:33:32:ce:
f8:4b:b9:c7:5b:d7:ef:e2:9b:30:9f:c5:94:ea:44:
61:9f:1f:ed:f7:8b:69:88:1b:c2:2b:bd:82:4e:13:
9c:1a:78:9f:b5:d7:8d:3c:f2:02:de:6a:20:de:71:
c5:3f:80:ad:da:60:12:e9:49:ef:87:92:de:42:b1:
5f:28:62:c4:85:e6:f9:5f:b8:e6:eb:fc:bc:52:3a:
63:aa:99:95:01:8b:34:0e:f1:5c:47:f2:21:81:90:
fa:1e:62:64:0d:e4:05:72:f8:26:36:12:c7:a1:15:
9e:0e:99:61:14:92:8c:ba:2a:91:2c:e9:2a:b9:5e:
1f:d1:5f:97:84:2b:f5:33:6f:c7:a9:77:9b:50:82:
5f:31:58:cc:f9:d4:9e:34:23:41:19:e1:de:60:e3:
66:18:18:4e:97:67:66:01:57:7e:ad:b9:42:dc:e6:
41:ee:ad:95:9a:8c:d5:88:9e:93:37:0e:a6:e9:34:
5f:77:16:a9:06:55:e1:98:49:b4:b4:07:75:db:4b:
bb:ff:bd:a7:d9:6a:79:db:4c:63:a6:ec:41:c5:17:
77:80:d0:4d:c9:83:b2:68:fd:c5:53:40:a9:5e:74:
49:ee:a4:94:4d:53:41:47:64:9e:ac:f0:04:ee:0d:
70:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0B:A1:C8:03:D5:AF:20:39:65:57:31:42:BB:0F:17:18:3D:4F:39
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/UQuhyAPVryA5ZVcxQrsPFxg9Tzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.17.70.0/24
84.17.87.0/24
185.118.176.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:be:02:fb:e2:e2:df:17:38:92:3f:a0:b3:e2:f0:97:94:35:
bc:30:89:8e:52:8c:69:f8:b8:c6:6f:03:e6:30:0e:41:10:48:
f5:2f:9e:93:b5:4f:2d:79:fa:02:21:12:6d:0c:55:17:18:56:
b2:10:ac:3a:d8:7b:8e:be:e7:24:42:17:ec:19:35:e1:7d:91:
34:6c:1a:19:73:84:6a:23:1b:de:66:20:1a:65:c8:1d:3f:c9:
ad:ef:ff:82:b7:c5:25:0b:f4:8c:da:41:c3:b1:fc:fc:50:44:
47:2e:c9:c6:ef:4f:e5:96:a7:b6:f9:4d:d5:18:5b:04:c9:6d:
73:74:7d:70:5c:2f:7e:08:d8:e0:dc:63:e7:a0:b7:24:fa:92:
55:eb:c2:f9:af:df:55:42:05:f0:34:a7:cc:7c:0a:9d:4e:aa:
df:07:75:4a:ab:e5:24:e4:dc:7c:e9:5d:2d:1f:f9:34:03:38:
dc:1c:7d:36:22:da:39:a6:a1:d8:dc:aa:25:d8:9c:05:51:8a:
41:c3:c8:b0:db:73:c2:69:35:c6:55:e8:4f:31:17:b5:9f:ef:
6f:83:94:44:d5:1c:72:33:cc:f5:5b:b0:de:f0:ea:e3:c8:64:
2e:8e:2b:bc:6f:37:0d:67:67:d5:e8:e2:ca:37:2f:35:ac:f2:
a6:27:be:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-ams.rpki-client.org