Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/U_ene8z6cJ69DfbRdkeNu_ip74s.roa
File: U_ene8z6cJ69DfbRdkeNu_ip74s.roa (raw, json)
Hash identifier: /CZ3eklfno54GswPl6nPF7ZwKNpKpI6NybFxhy/G6VE=
Subject key identifier: 53:F7:A7:7B:CC:FA:70:9E:BD:0D:F6:D1:76:47:8D:BB:F8:A9:EF:8B
Certificate issuer: /CN=8536146119b044539082e326cca903200b8d4b1a
Certificate serial: 01855CED1E3F43B6588F95436A75326C2EFB
Authority key identifier: 85:36:14:61:19:B0:44:53:90:82:E3:26:CC:A9:03:20:0B:8D:4B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTYUYRmwRFOQguMmzKkDIAuNSxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/U_ene8z6cJ69DfbRdkeNu_ip74s.roa
Signing time: Thu 29 Dec 2022 08:08:41 +0000
ROA not before: Thu 29 Dec 2022 08:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212552
IP address blocks: 185.110.191.0/24 maxlen: 24
193.163.201.0/24 maxlen: 24
185.221.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5c:ed:1e:3f:43:b6:58:8f:95:43:6a:75:32:6c:2e:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8536146119b044539082e326cca903200b8d4b1a
Validity
Not Before: Dec 29 08:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53f7a77bccfa709ebd0df6d176478dbbf8a9ef8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:18:ed:6f:9b:eb:e0:d6:e1:c3:64:f2:03:b5:
83:7c:7c:db:3c:6d:f6:2a:0c:1d:3c:47:58:7a:d0:
f9:8b:02:6a:fe:51:5f:74:bd:06:be:4c:95:f0:ee:
16:12:51:95:0f:90:5a:56:09:19:c9:db:bd:de:03:
85:b0:a3:0b:9f:f1:d8:a2:df:6a:a4:8d:c6:40:81:
15:f5:d5:37:24:33:bc:5f:fc:79:62:a8:7b:6d:a4:
e7:34:d0:a1:f5:d4:e5:57:a0:a9:6b:93:ee:21:88:
1a:5c:65:6e:3f:4f:1c:54:67:e6:92:e3:5e:2a:1b:
cb:f9:5c:8a:63:5c:c5:a0:89:12:b7:8d:f3:b4:4b:
52:d4:43:64:9f:64:09:6c:f9:65:11:00:19:e5:aa:
15:85:74:18:d4:dd:c1:ca:7b:89:b6:97:70:e3:75:
1b:70:dc:c0:19:16:9f:5e:c9:4e:1e:bc:87:fc:e9:
ff:9a:db:4f:f8:25:e2:3a:3b:8c:41:1c:61:7c:00:
87:b0:f9:e9:ef:3d:4c:c7:aa:f1:17:6f:74:6a:92:
7d:3c:70:1a:42:08:3e:bf:f9:e7:99:bd:64:55:62:
f6:89:34:77:7e:ea:e4:31:d3:0c:67:be:ab:9b:2b:
4f:35:a9:e3:67:21:f0:53:d9:6a:f5:c7:2f:3b:29:
2b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F7:A7:7B:CC:FA:70:9E:BD:0D:F6:D1:76:47:8D:BB:F8:A9:EF:8B
X509v3 Authority Key Identifier:
keyid:85:36:14:61:19:B0:44:53:90:82:E3:26:CC:A9:03:20:0B:8D:4B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTYUYRmwRFOQguMmzKkDIAuNSxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/U_ene8z6cJ69DfbRdkeNu_ip74s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d5f93-ac5a-41e3-80c3-0c67217cc96b/1/hTYUYRmwRFOQguMmzKkDIAuNSxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.191.0/24
185.221.237.0/24
193.163.201.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ac:f3:71:5f:64:ba:ef:70:73:11:c6:c5:e5:ec:56:ea:56:
04:41:0a:ad:31:29:fe:9c:e3:17:63:f2:d6:ad:d0:f5:9b:4f:
e6:63:0b:39:7b:a9:89:95:d3:87:92:6d:0f:9b:68:78:d1:3f:
13:02:80:e6:7d:6a:b0:63:29:41:23:08:e7:8a:2b:94:fa:8e:
df:92:ba:ff:a6:a8:af:a9:ae:d3:b3:03:eb:48:c1:c2:88:39:
91:da:1b:ed:3b:69:8d:5f:30:4c:3f:be:ec:ac:c9:47:39:1b:
19:98:eb:1a:c6:cb:40:b7:bf:f9:42:22:8f:b4:6d:f2:1c:30:
5a:37:72:a8:f3:29:e9:9b:be:33:6c:8c:4e:00:c2:3c:59:2a:
d8:4c:9f:28:d3:5a:1d:c6:3a:c6:cc:6e:ab:c9:b3:93:fc:33:
7d:1d:7e:49:8e:3c:0f:7c:2f:2b:82:eb:07:e6:3d:2f:34:1a:
36:5f:41:a7:8e:c5:8f:ab:ac:85:9f:4f:47:22:03:0d:d0:dd:
74:e7:e7:0b:47:1f:5c:ef:2e:11:09:0a:fe:55:42:83:30:17:
94:a9:72:fe:74:b2:50:c3:f7:f7:a0:b4:be:f6:e3:06:1c:6a:
56:e7:57:d5:e0:a6:52:e4:48:a9:87:eb:f2:8d:4d:41:a6:81:
38:06:b6:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:11 2023 by rpki-client on console.sobornost.net