Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UuvkjcM-ZxtfaUmVH3ACVjKRyiA.roa
File: UuvkjcM-ZxtfaUmVH3ACVjKRyiA.roa (raw, json)
Hash identifier: TkTN3XrrbG7GLDZSd0PpgkCQqF2IwKPMWdlbklFpyEU=
Subject key identifier: 52:EB:E4:8D:C3:3E:67:1B:5F:69:49:95:1F:70:02:56:32:91:CA:20
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0189AB7797892D57A9FC310FB536A71309E5
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UuvkjcM-ZxtfaUmVH3ACVjKRyiA.roa
Signing time: Mon 31 Jul 2023 10:21:28 +0000
ROA not before: Mon 31 Jul 2023 10:21:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 194.233.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:77:97:89:2d:57:a9:fc:31:0f:b5:36:a7:13:09:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jul 31 10:21:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ebe48dc33e671b5f6949951f7002563291ca20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4b:d5:f6:d2:6f:1e:37:9d:31:8c:a1:cd:8e:
df:d9:6e:4e:aa:0d:9f:dd:71:4b:81:17:42:a0:ae:
5a:7a:18:6f:eb:ae:b7:5a:c9:c0:40:bc:12:0c:8e:
81:9b:0d:28:64:24:d4:15:1c:40:f8:c7:78:58:c4:
2a:21:3f:af:e4:96:ad:f4:f3:34:98:37:61:27:43:
aa:c7:a2:5f:16:c2:99:ff:83:95:c8:98:9b:cb:68:
0e:6e:f7:08:eb:1f:71:a5:35:93:d4:40:41:5c:fa:
46:2a:db:82:e1:3d:4f:a6:f1:5b:0a:af:12:7c:f1:
5d:43:8f:3d:d5:86:5d:6e:ca:7f:5a:0c:87:81:16:
85:9d:84:32:92:0a:f2:7b:3a:04:cf:97:dd:8a:da:
b0:37:ea:2c:f3:28:3c:62:cd:4b:59:b2:d0:8c:68:
1f:81:00:4d:81:60:76:c5:46:37:2f:c8:d9:53:ad:
48:4d:43:4d:47:8c:f9:f8:1c:ad:20:3a:66:d4:4f:
8d:62:b2:23:b9:53:3a:e3:82:d2:5a:30:88:a2:5a:
5c:21:70:14:07:fd:35:d7:46:4e:a6:91:df:72:80:
f3:56:5c:29:92:f1:81:f2:f1:72:db:6f:69:56:50:
00:65:0c:4f:ec:21:c0:5a:8f:d6:93:08:2c:e2:3f:
5c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EB:E4:8D:C3:3E:67:1B:5F:69:49:95:1F:70:02:56:32:91:CA:20
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UuvkjcM-ZxtfaUmVH3ACVjKRyiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.56.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:49:2a:a2:22:56:e4:c1:bd:ad:10:ed:fa:52:3f:5c:99:cf:
a0:b6:62:b4:cd:12:a5:21:8d:c8:16:ba:89:de:5c:59:e2:a2:
43:d1:e4:6a:01:ac:ac:5b:e8:d7:c6:b2:73:a9:a2:4f:bf:7b:
ef:cb:b3:7b:97:d1:4a:27:e9:2f:0f:04:e9:1f:8d:42:84:4c:
0b:f5:d6:e5:2e:43:c8:66:86:9b:f1:a6:2b:e4:0d:14:53:63:
5d:16:fd:90:72:57:cd:8c:e0:45:05:39:a0:62:39:94:f2:cc:
04:51:d3:ce:74:ae:1e:fe:69:99:e4:f8:79:06:4c:1e:37:82:
28:56:f5:6d:1f:5f:7e:f5:87:0b:ba:e1:93:e9:8e:48:c5:4e:
8f:df:90:dc:21:a8:5c:41:1a:be:e7:de:75:f1:25:0d:cc:13:
e1:39:1a:78:f1:13:9a:77:35:ef:51:b7:3c:5f:7c:5f:fd:df:
59:aa:2b:e3:b9:e2:12:75:bd:62:2c:33:09:0f:17:4e:1a:4f:
97:58:05:04:24:24:2d:22:dc:28:41:c2:8e:a4:46:ce:bb:ab:
91:32:46:ba:23:30:41:51:e6:95:6a:73:c8:b0:a2:7d:0a:98:
e1:f9:42:6e:6f:3a:cb:b7:5e:c9:36:b0:ea:da:e9:d5:25:32:
dd:72:27:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:26 2025 by rpki-client