Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/uszKTncu49hphIrNEYzG6EHdB_k.roa
File: uszKTncu49hphIrNEYzG6EHdB_k.roa (raw, json)
Hash identifier: M06NtWO9ZulkHEA4YIm9DNvNqvkAy1xl582Odv/lO0I=
Subject key identifier: BA:CC:CA:4E:77:2E:E3:D8:69:84:8A:CD:11:8C:C6:E8:41:DD:07:F9
Certificate issuer: /CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931
Certificate serial: 378EB7C5
Authority key identifier: 58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/uszKTncu49hphIrNEYzG6EHdB_k.roa
Signing time: Sat 01 Jan 2022 10:00:55 +0000
ROA not before: Sat 01 Jan 2022 10:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47578
IP address blocks: 185.109.139.0/24 maxlen: 24
2001:1424::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932100037 (0x378eb7c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931
Validity
Not Before: Jan 1 10:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=baccca4e772ee3d869848acd118cc6e841dd07f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:8c:39:37:3f:32:3c:92:26:b8:14:59:5f:
59:da:e8:e1:01:3b:b3:f8:65:cb:56:8d:fa:fd:51:
4d:14:e9:2a:fe:db:f3:71:55:15:62:db:46:00:e6:
6c:c5:a2:20:8e:3e:91:f5:67:c7:17:ab:d2:b7:de:
f7:2e:c2:b9:3a:69:38:6f:5b:70:a4:71:9e:d3:07:
b4:1f:2b:68:08:d4:15:d6:26:c2:5c:1c:63:40:0f:
cd:d5:2c:6d:09:a7:f4:70:96:c1:64:7d:dd:c8:5e:
c5:10:16:f8:8f:ee:9f:9f:70:a0:70:dc:6e:2d:ed:
fb:f1:2f:ab:42:ac:d1:b2:22:9b:48:2b:29:cb:72:
8a:bc:36:21:98:65:17:70:26:6e:b8:76:f9:ee:7e:
83:0e:f3:6a:1b:f7:fa:a3:c2:84:48:fb:48:ec:b9:
cd:04:c8:f6:e9:e7:42:52:3f:9b:01:70:9f:3c:4a:
0b:6b:b5:c4:c2:40:ab:65:d8:bd:e5:93:8a:bb:55:
a0:58:aa:ec:82:a2:da:66:d8:5e:fe:a7:57:40:6d:
03:d4:0b:7d:fa:7d:16:95:81:06:ec:8c:7a:78:77:
98:66:c4:26:72:e9:df:e8:90:f4:ad:82:70:82:5d:
4b:8e:28:a0:bb:a0:7f:72:f2:b9:7f:9b:b8:32:fd:
09:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CC:CA:4E:77:2E:E3:D8:69:84:8A:CD:11:8C:C6:E8:41:DD:07:F9
X509v3 Authority Key Identifier:
keyid:58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/uszKTncu49hphIrNEYzG6EHdB_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.139.0/24
IPv6:
2001:1424::/48
Signature Algorithm: sha256WithRSAEncryption
27:23:18:e8:b7:19:99:c9:b5:3b:02:be:ea:c4:3f:cf:40:0c:
b5:5a:db:15:47:cd:33:cb:db:6e:81:bb:91:7f:73:59:cc:66:
b0:da:06:23:1c:a3:bb:f1:b3:24:29:b3:c2:d9:b5:00:58:0f:
5e:98:4c:45:7d:ac:bd:d8:93:80:c6:0f:06:03:13:d8:dd:75:
9c:f2:4c:4f:c1:fe:3e:5c:56:99:7c:14:47:61:20:1b:ed:7b:
53:00:eb:d5:2f:3d:c2:16:e2:e3:ef:3d:2c:1a:64:23:b3:4e:
08:69:d1:ab:f1:bb:a0:56:e7:8b:e9:05:2d:a3:68:61:ed:34:
a9:7a:50:ed:fc:ac:04:44:3d:2f:28:8e:81:5e:36:b9:d8:2f:
e9:93:5d:79:6c:4c:9f:3a:45:f3:5a:5b:06:a9:28:89:28:86:
b0:5e:89:7f:35:6c:a1:f2:f7:ef:82:88:10:23:36:e5:16:2b:
d8:72:be:8f:74:a1:50:fe:5f:07:e8:0d:48:32:d4:c8:68:23:
78:f3:ef:dc:b7:a6:86:e0:62:24:72:5b:ce:59:2e:d4:90:32:
30:aa:6e:2a:33:47:89:5a:41:a3:49:53:20:70:97:7d:93:bd:
6a:5d:73:1b:e5:77:da:a2:83:ff:1b:20:6e:b6:2c:a2:77:38:
e5:0f:5a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:12 2024 by rpki-client on console-ams.rpki-client.org