Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/0Uk3vyUoqp5M2BfspTVvLidvaqc.roa
File: 0Uk3vyUoqp5M2BfspTVvLidvaqc.roa (raw, json)
Hash identifier: RrG5Ba5fDD5UkVCs4veEEKn5yFy3AXfCe3sS5RqiJbg=
Subject key identifier: D1:49:37:BF:25:28:AA:9E:4C:D8:17:EC:A5:35:6F:2E:27:6F:6A:A7
Certificate issuer: /CN=454f9d2dbed974538405a79f6ec7e86c4aedd3d1
Certificate serial: 01837F493919344134A70D87E576A3352612
Authority key identifier: 45:4F:9D:2D:BE:D9:74:53:84:05:A7:9F:6E:C7:E8:6C:4A:ED:D3:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RU-dLb7ZdFOEBaefbsfobErt09E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/0Uk3vyUoqp5M2BfspTVvLidvaqc.roa
Signing time: Tue 27 Sep 2022 14:10:48 +0000
ROA not before: Tue 27 Sep 2022 14:10:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.68.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7f:49:39:19:34:41:34:a7:0d:87:e5:76:a3:35:26:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=454f9d2dbed974538405a79f6ec7e86c4aedd3d1
Validity
Not Before: Sep 27 14:10:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d14937bf2528aa9e4cd817eca5356f2e276f6aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ca:de:d5:93:dd:99:09:51:19:ff:37:ac:cd:
0c:ea:35:5e:7d:ef:19:0e:d1:b6:87:25:82:df:62:
b0:c3:c0:25:80:5e:8b:a0:85:7d:d2:29:73:db:92:
5d:0c:c0:6a:e5:ce:d1:7b:36:ae:e0:0f:08:61:9b:
20:6d:8d:16:12:43:b1:87:66:1b:39:8b:fc:f4:80:
78:cc:79:de:f7:11:52:21:36:39:74:c0:eb:d8:54:
a8:d1:a0:b1:b9:80:b2:0b:25:7f:a5:f6:cb:ba:95:
2f:fe:c6:ce:f3:a7:f6:27:c2:31:4f:78:0c:7a:e0:
77:3f:17:24:c2:26:9f:cf:40:88:bb:1f:48:98:98:
4c:4f:82:e0:51:62:01:d4:aa:00:19:de:52:b8:64:
cc:5a:41:8a:9e:15:bb:42:91:a9:84:63:78:0d:95:
7c:51:90:53:70:f7:d4:1e:35:f8:40:1f:e0:3b:56:
78:54:f7:e0:da:bf:ce:23:c6:16:da:45:f0:eb:eb:
b1:0e:99:e6:b6:df:a8:f9:e5:22:71:77:c4:06:a8:
77:7b:8c:71:23:db:0d:14:c0:09:58:bc:97:45:0a:
9b:07:a9:b7:ed:95:5d:c1:a3:1d:1c:74:81:3e:3f:
c5:0c:9d:79:af:06:d7:49:1d:3e:4d:65:59:85:fb:
c7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:49:37:BF:25:28:AA:9E:4C:D8:17:EC:A5:35:6F:2E:27:6F:6A:A7
X509v3 Authority Key Identifier:
keyid:45:4F:9D:2D:BE:D9:74:53:84:05:A7:9F:6E:C7:E8:6C:4A:ED:D3:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RU-dLb7ZdFOEBaefbsfobErt09E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/0Uk3vyUoqp5M2BfspTVvLidvaqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/RU-dLb7ZdFOEBaefbsfobErt09E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.80.0/22
Signature Algorithm: sha256WithRSAEncryption
31:f0:1e:75:e5:e4:85:86:0e:cc:62:5b:d5:ed:e5:c7:d3:5e:
a4:f2:5c:fb:a1:a0:1c:12:4a:b5:42:d1:de:bc:ab:e0:27:b3:
bc:a6:81:4b:e8:fd:c7:f1:60:29:bf:b3:f2:18:e9:8f:83:58:
03:16:47:a9:fd:70:04:16:a3:c1:2e:fb:b2:10:56:bf:75:c0:
de:3b:7e:31:69:99:2e:4e:5a:48:e0:30:94:26:62:b9:f2:ee:
be:6b:7c:16:bc:64:74:76:32:73:72:0d:c9:26:d9:3d:6c:6b:
7d:1d:29:b3:aa:b6:5a:fd:82:46:cc:2b:05:04:72:5c:95:68:
ce:9a:43:cc:ec:93:07:d7:b0:f9:33:c6:ef:1f:27:dc:6c:4d:
69:05:12:9e:f3:88:84:72:22:49:3d:b5:e8:bc:ec:6d:58:b2:
3d:40:87:7e:99:c2:f4:22:2b:37:5e:62:40:5d:8a:40:24:f4:
bf:a8:3d:2c:dc:5e:b3:4d:d6:86:e7:78:1e:e3:12:7d:2b:79:
3f:aa:0c:17:09:f9:f6:1c:5c:4e:1d:56:49:86:86:b7:a0:e7:
04:94:30:66:2d:9b:49:73:3b:88:ef:94:2d:6b:37:34:e7:d4:
14:9d:9d:e3:78:7d:ca:b1:4d:35:91:11:51:dc:b0:de:69:6f:
53:62:72:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:47 2023 by rpki-client on console.sobornost.net