Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/uKensEh_MySuY_R1mRupKmYwkEc.roa
File: uKensEh_MySuY_R1mRupKmYwkEc.roa (raw, json)
Hash identifier: 7Sa5feOG3svNbUBvAII9WZT6MYNHl5eMg4XWZvEyds4=
Subject key identifier: B8:A7:A7:B0:48:7F:33:24:AE:63:F4:75:99:1B:A9:2A:66:30:90:47
Certificate issuer: /CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Certificate serial: 0184520FAC3635C59AEC0CA7E900358E1A53
Authority key identifier: 4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/uKensEh_MySuY_R1mRupKmYwkEc.roa
Signing time: Mon 07 Nov 2022 12:27:49 +0000
ROA not before: Mon 07 Nov 2022 12:27:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 185.26.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:0f:ac:36:35:c5:9a:ec:0c:a7:e9:00:35:8e:1a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Validity
Not Before: Nov 7 12:27:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8a7a7b0487f3324ae63f475991ba92a66309047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c3:06:82:cf:13:4e:1e:23:45:f3:c8:43:bb:
7c:bb:dc:ed:7d:56:7a:11:c2:31:3f:f6:d3:49:44:
c7:7a:6f:e7:0f:1e:4c:a2:02:6b:8c:d1:23:a6:43:
3b:5d:48:8f:d3:54:94:71:71:ea:b9:41:c4:a9:50:
77:2e:58:38:95:7d:4c:0d:e0:ac:58:84:60:a7:36:
b7:b4:d7:8d:09:20:5e:c7:c8:3c:c9:14:8c:63:bf:
4c:10:f8:f8:92:6c:32:91:a0:22:97:bb:c8:80:e7:
3a:bb:0f:90:5b:08:4b:98:2c:5c:69:40:ab:3e:c5:
75:6a:bd:40:94:65:c9:4e:5f:80:00:81:d0:fd:bc:
0a:cb:14:a9:c9:94:19:8b:6d:4a:25:f7:7b:c5:27:
ae:c6:ac:52:c8:c4:b3:7d:0b:a6:4a:40:9d:5f:27:
81:4d:e6:b4:05:fc:5a:c6:28:c6:7e:fd:bb:3d:2f:
0b:dd:13:16:65:b7:0e:8b:d9:d6:6b:8c:7d:83:b2:
26:19:65:ff:11:fb:aa:19:19:84:a1:07:2e:ed:57:
42:95:93:1d:d6:36:ef:ce:92:81:3d:71:58:1c:ae:
b4:04:63:12:8f:11:00:82:dd:dd:b3:b2:df:8b:cc:
1e:42:db:eb:73:48:25:f4:bb:2d:3e:ef:36:7d:1a:
52:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A7:A7:B0:48:7F:33:24:AE:63:F4:75:99:1B:A9:2A:66:30:90:47
X509v3 Authority Key Identifier:
keyid:4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/uKensEh_MySuY_R1mRupKmYwkEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/T4lf8Omad8AX6KODKSy1xvgmESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.158.0/24
Signature Algorithm: sha256WithRSAEncryption
98:a7:ed:2d:05:90:cf:41:8d:b6:bb:db:d5:55:20:1a:0a:ad:
f6:be:6a:98:7a:b0:b1:c9:81:a8:1b:24:ed:bb:90:25:8f:cf:
e5:75:77:32:5d:e7:94:ee:de:36:cd:19:d6:fc:f7:53:d6:4d:
fe:ed:75:ca:4a:2e:4a:d1:43:86:0b:4d:f8:a6:0f:7a:7f:c9:
aa:4d:ae:48:b1:af:5c:d7:4d:ab:06:62:6f:18:8a:45:22:37:
1b:0a:eb:d1:fc:79:f0:0c:48:e4:a6:2a:72:50:35:d1:25:5f:
c3:cd:ea:1a:8e:97:21:90:17:a3:ca:6e:d7:c9:d6:a7:5e:41:
cd:4d:0b:40:5b:cd:4d:38:75:c9:88:b6:40:ee:21:ad:6b:ca:
9e:56:0b:c4:e8:00:58:90:c3:39:0a:0c:c9:ca:16:93:83:ee:
3c:0c:9e:7b:5a:81:e5:7c:15:91:3f:78:e8:32:34:71:67:15:
fd:78:03:48:8e:89:5e:b2:36:03:ed:82:60:86:99:5d:49:65:
c2:0a:66:29:e4:da:41:c9:43:c4:a8:6b:9f:5e:c5:54:a1:da:
ea:77:2d:59:53:07:c3:d2:04:93:2a:fd:9a:49:eb:bb:51:58:
aa:59:b5:b3:fe:f4:f9:8f:05:b4:21:f2:7b:53:08:50:04:b9:
22:9f:b0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:06 2024 by rpki-client on console-fra.rpki-client.org