Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/ucznrlS3KaAJhS05dSVH7z-h-4E.roa
File: ucznrlS3KaAJhS05dSVH7z-h-4E.roa (raw, json)
Hash identifier: J49y4U7O3AUtmGgbd0M9xHtujKW4c2I9dR0NzRvsV2g=
Subject key identifier: B9:CC:E7:AE:54:B7:29:A0:09:85:2D:39:75:25:47:EF:3F:A1:FB:81
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 038BD46C
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/ucznrlS3KaAJhS05dSVH7z-h-4E.roa
Signing time: Wed 15 Jun 2022 13:07:45 +0000
ROA not before: Wed 15 Jun 2022 13:07:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 87.254.2.0/24 maxlen: 24
185.210.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59495532 (0x38bd46c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Jun 15 13:07:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9cce7ae54b729a009852d39752547ef3fa1fb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3a:b8:75:aa:8a:cd:7f:46:2e:fd:ae:d5:a3:
e9:1b:23:3d:81:ca:8d:83:87:9c:f8:d3:9c:6a:e2:
34:2c:b3:67:ca:ed:38:54:10:2a:17:4f:c9:e6:26:
3c:b7:d5:ee:54:82:14:4c:17:0c:d7:0f:5e:fd:b1:
a2:f0:34:8e:63:f0:9b:19:8b:3f:1f:7b:a4:d2:79:
1f:f7:9b:92:a2:a2:13:0b:45:ed:2f:9a:d5:b2:59:
1d:26:fd:09:e5:a5:fc:70:9e:b2:51:50:7c:66:68:
8a:55:34:c1:83:dc:49:35:10:dc:10:a3:23:a7:d0:
bb:77:31:52:e4:91:97:76:e9:61:62:15:b5:bb:a0:
f1:f8:e7:a8:ca:6f:1c:6a:17:f1:07:3b:62:69:f2:
a1:fa:01:fc:93:58:58:7f:04:94:94:fc:92:78:7e:
31:f1:af:ee:24:27:9c:49:cd:6e:d6:5a:b9:2a:11:
91:99:ca:09:12:ca:d2:4d:f5:5b:48:9d:e5:28:c0:
9e:c1:22:16:06:7a:ac:dc:cb:f5:53:9e:26:6f:13:
b5:c6:80:fe:bb:47:f3:ea:12:ef:70:c2:4a:6f:c0:
f7:a1:a8:b0:9e:d9:f0:18:02:e1:7c:50:3c:f3:76:
b9:36:18:b4:37:0a:29:af:f0:6e:97:64:7b:75:4d:
c0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:CC:E7:AE:54:B7:29:A0:09:85:2D:39:75:25:47:EF:3F:A1:FB:81
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/ucznrlS3KaAJhS05dSVH7z-h-4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.2.0/24
185.210.168.0/22
Signature Algorithm: sha256WithRSAEncryption
93:f5:74:24:b1:0e:5e:a5:90:8e:a7:f3:83:1d:45:bb:5e:ff:
bd:ee:60:42:1c:00:bf:10:fb:65:4e:6d:4a:9c:2e:85:af:c5:
cc:f5:22:b5:44:32:0b:ad:67:54:e8:b4:82:78:91:7a:68:45:
c3:31:17:6a:ae:d3:82:d4:3e:21:bf:d5:2f:dc:65:a9:97:15:
83:b5:15:60:90:07:8e:73:e2:ae:fa:8f:3f:a5:c9:07:0d:db:
71:36:2c:23:d7:1b:71:94:dd:0b:35:26:2f:aa:15:ed:f9:92:
11:4a:95:2b:a8:9b:cd:e2:37:2a:2d:7c:64:fd:b1:54:af:10:
cb:b5:b3:32:58:49:b7:1b:fc:14:b2:c9:98:22:07:47:ed:6d:
49:cf:1a:89:2c:ae:7c:cc:01:1d:c4:bb:92:be:a5:99:7a:40:
05:0c:a1:12:ac:40:ac:6a:d9:93:07:51:45:55:a3:63:f5:58:
fc:51:b9:f6:99:7f:dc:bf:62:de:c5:ac:1b:50:91:6c:3f:6b:
92:c4:d9:25:bd:13:5a:1c:1e:b0:ac:ae:d6:af:30:43:0e:2f:
9d:77:19:ac:57:c9:b9:ae:f3:e1:21:67:c6:ca:61:3e:ca:76:
39:7a:27:af:c7:ac:30:6d:6d:ba:d6:97:ee:7d:5e:2c:84:be:
98:9e:59:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-fra.rpki-client.org