Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/UHrABfQuiK-bCUoBBFc41gotnEk.roa
File: UHrABfQuiK-bCUoBBFc41gotnEk.roa (raw, json)
Hash identifier: g6SbIXgYcCCjVSsvII9MMn7TuQv4T9PJoMcf0H0oC3M=
Subject key identifier: 50:7A:C0:05:F4:2E:88:AF:9B:09:4A:01:04:57:38:D6:0A:2D:9C:49
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 018D6D2A
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/UHrABfQuiK-bCUoBBFc41gotnEk.roa
Signing time: Sat 01 Jan 2022 05:52:55 +0000
ROA not before: Sat 01 Jan 2022 05:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62257
IP address blocks: 194.36.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26045738 (0x18d6d2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 05:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=507ac005f42e88af9b094a01045738d60a2d9c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:03:a7:30:c3:32:ae:58:87:e2:19:6a:62:4d:
7d:2f:95:5b:f7:46:3d:0c:b8:d2:23:62:c6:7f:c1:
5f:10:d5:7f:7d:1f:1e:98:0f:2c:0c:39:b8:a9:9d:
7a:1e:4b:42:05:35:91:2e:e4:58:bb:d7:c9:71:0e:
71:43:0d:00:c1:d8:2d:d7:38:2b:8b:7a:c6:25:eb:
3d:fe:d1:aa:5f:78:c5:0e:96:3a:fd:98:af:64:fd:
d8:5a:d8:53:47:f3:a8:05:70:19:d8:3b:6b:4c:89:
3e:c7:c9:90:b4:92:1f:0c:c7:72:a7:8a:cb:fc:67:
ee:a0:b9:f9:a1:4a:30:d2:ec:df:be:a2:8a:5c:08:
79:d4:f3:48:46:19:bb:04:a7:99:8c:10:fb:24:28:
57:d2:cc:8c:6d:bd:3e:f2:e1:60:c7:19:ef:b2:e9:
1e:be:43:3b:a8:4d:91:70:af:10:c4:bc:7a:a8:83:
61:2e:30:cb:46:aa:88:ca:de:67:b2:e8:3a:48:38:
02:a6:15:45:f7:f7:d6:fe:83:4e:95:e8:f1:67:29:
f2:2a:3d:21:be:3c:55:07:42:b6:b6:bf:87:c8:c3:
55:da:fe:6f:30:17:08:90:fc:59:32:08:71:44:4c:
75:de:04:4e:cc:f7:74:df:27:37:7d:7f:86:07:0d:
4c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:7A:C0:05:F4:2E:88:AF:9B:09:4A:01:04:57:38:D6:0A:2D:9C:49
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/UHrABfQuiK-bCUoBBFc41gotnEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.175.0/24
Signature Algorithm: sha256WithRSAEncryption
26:01:af:2c:e0:c1:a4:e4:4c:4b:e4:60:03:e2:e1:0c:ea:b8:
63:b2:60:37:eb:1f:ec:8b:8e:7f:b5:1d:03:64:fa:f7:23:e5:
60:f4:c9:43:3f:a9:7c:61:44:00:74:21:3e:ca:f0:0a:f6:11:
80:b8:62:26:d9:33:49:85:c6:b2:35:3f:07:9a:b4:39:16:7e:
5c:93:e5:ff:81:d8:1d:ec:24:3e:b5:88:3a:3d:e6:92:9b:77:
2f:ca:44:19:37:c9:fb:80:b6:2d:f3:15:4e:d2:1b:2e:2e:7c:
24:e8:b8:2b:a7:e9:1d:c4:bd:aa:2a:bb:a3:0f:6d:56:af:bc:
d7:4b:36:7d:38:e7:93:be:ca:54:92:0f:7f:a2:47:58:4e:ac:
50:a7:29:3c:f1:37:11:6e:18:5d:0a:a8:81:59:41:7f:3d:9d:
07:1e:2c:b8:1a:0e:45:e6:c4:35:22:98:ad:a2:22:a7:01:f7:
6c:e9:2e:06:eb:5a:02:7b:5d:1b:02:8f:9b:c8:2d:31:5f:65:
c1:9a:91:e3:32:6c:ac:90:8e:95:8a:dd:6a:dc:68:9d:0c:8f:
40:ce:dc:e7:67:3e:a7:99:cc:d6:7c:33:1b:a2:ed:9a:89:95:
27:96:55:61:f5:89:29:5b:81:68:d0:c7:3c:fb:aa:16:d5:48:
6b:f9:af:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org