Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Uhj_ut5KUhVEF7VIvF33LHO_mP4.roa
File: Uhj_ut5KUhVEF7VIvF33LHO_mP4.roa (raw, json)
Hash identifier: 24ISXq9wMHu5pwYph3JoPbD7CvfEni5gh08RIenEvbQ=
Subject key identifier: 52:18:FF:BA:DE:4A:52:15:44:17:B5:48:BC:5D:F7:2C:73:BF:98:FE
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0552867A
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Uhj_ut5KUhVEF7VIvF33LHO_mP4.roa
Signing time: Mon 10 Jan 2022 19:38:50 +0000
ROA not before: Mon 10 Jan 2022 19:38:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43944
IP address blocks: 185.96.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89294458 (0x552867a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jan 10 19:38:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5218ffbade4a52154417b548bc5df72c73bf98fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:18:3c:96:46:74:df:54:1e:b0:f2:e2:1d:93:
e9:0d:0b:aa:88:d8:25:3b:9f:ff:26:76:81:d9:d5:
93:65:91:77:dd:7a:23:af:ac:16:3d:f1:d1:b4:9b:
36:cb:6c:46:7e:94:ad:0e:63:83:25:5c:f7:99:70:
e3:a4:ec:bd:70:0d:68:ec:28:2f:d6:27:42:f6:03:
6d:10:25:16:99:7a:af:98:c1:47:da:20:88:1c:be:
f2:63:4d:14:95:7b:14:99:85:ee:08:12:d6:59:8d:
45:ae:db:cf:7c:91:9e:12:29:e8:66:cd:05:d9:a0:
e7:5e:12:f1:6a:eb:c7:b7:81:45:92:65:7a:28:58:
70:b3:ec:2a:6c:f4:45:00:7d:1a:32:c6:85:96:a7:
f0:97:69:54:ed:83:da:c7:d6:05:b8:ec:98:00:17:
d7:3e:80:3e:a3:c2:30:a5:20:51:10:7f:f0:7b:7f:
72:20:d5:bf:ee:59:8f:98:be:49:42:85:58:11:d6:
39:d7:2d:dc:85:89:c8:d8:0f:ed:90:42:01:e1:3c:
c1:14:5c:b2:4a:5d:cf:9e:cb:fd:c5:6e:35:80:85:
8b:cc:63:95:dd:9f:4e:80:96:ca:46:db:d1:65:23:
f6:31:3e:31:55:6c:35:c5:47:9a:2b:83:02:da:95:
31:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:18:FF:BA:DE:4A:52:15:44:17:B5:48:BC:5D:F7:2C:73:BF:98:FE
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Uhj_ut5KUhVEF7VIvF33LHO_mP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.254.0/24
Signature Algorithm: sha256WithRSAEncryption
02:d1:a7:3a:ec:ad:71:46:b4:95:49:03:e3:35:bf:45:01:ae:
d8:85:ab:df:58:16:ab:72:9a:b1:42:e0:49:3d:26:98:57:27:
9a:f5:d4:35:3f:db:24:52:64:f0:2f:e6:49:2c:d1:af:67:27:
25:17:09:33:4c:cd:e4:7d:01:5d:99:7d:b4:97:e6:63:7f:75:
2a:8d:d9:fd:14:53:1a:d9:41:28:20:0d:35:47:f2:5b:28:9b:
56:1f:79:ac:89:72:e8:cc:bc:8a:c3:f4:3d:a4:f3:92:b9:04:
ca:05:2a:d0:43:bb:88:00:9a:f6:16:7f:38:2e:07:b6:71:9d:
c2:64:19:ee:22:95:a5:ac:5f:f5:96:b1:1d:c9:d3:ae:3f:9f:
c4:64:7c:c5:be:2d:5d:5b:fa:cd:33:da:3f:eb:97:f8:b4:c9:
32:2e:cd:8c:8f:ca:e3:e7:a0:a7:ad:cf:80:e0:ff:27:98:ca:
9b:7f:54:fd:86:b1:90:5d:d8:36:d7:fa:45:66:9a:02:49:1a:
c0:b3:33:78:2b:ea:02:2a:17:f0:e1:7f:c9:e5:36:61:20:23:
68:bb:c0:bc:33:cc:56:99:82:96:4e:20:ce:7f:37:30:73:c1:
99:b7:9b:69:a6:4f:de:a7:80:f2:be:23:9f:8d:c7:2d:d9:89:
a1:49:f6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org