Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/eed9ce-aef9-4fc9-8a4a-c442a18f1efc/1/UotnxEIVClNLaJhuoXM6DXQr71w.roa
File: UotnxEIVClNLaJhuoXM6DXQr71w.roa (raw, json)
Hash identifier: iz+eK0I5yfR2BeENkzzQ9j3oJYlL9b5ePVU/cTlRtCs=
Subject key identifier: 52:8B:67:C4:42:15:0A:53:4B:68:98:6E:A1:73:3A:0D:74:2B:EF:5C
Certificate issuer: /CN=397245d0492eede59b045b5be1fd4eb9161bc417
Certificate serial: 0182F217CDBDA14B668AFD910170075F1F0D
Authority key identifier: 39:72:45:D0:49:2E:ED:E5:9B:04:5B:5B:E1:FD:4E:B9:16:1B:C4:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXJF0Eku7eWbBFtb4f1OuRYbxBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/eed9ce-aef9-4fc9-8a4a-c442a18f1efc/1/UotnxEIVClNLaJhuoXM6DXQr71w.roa
Signing time: Wed 31 Aug 2022 04:10:22 +0000
ROA not before: Wed 31 Aug 2022 04:10:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133861
IP address blocks: 193.134.209.0/24 maxlen: 24
193.134.211.0/24 maxlen: 24
193.134.208.0/24 maxlen: 24
193.134.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:17:cd:bd:a1:4b:66:8a:fd:91:01:70:07:5f:1f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397245d0492eede59b045b5be1fd4eb9161bc417
Validity
Not Before: Aug 31 04:10:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=528b67c442150a534b68986ea1733a0d742bef5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:50:58:e6:82:d4:a6:55:14:b6:19:93:78:a7:
ef:31:34:db:62:dc:48:50:7a:50:d7:c2:a3:9b:dc:
75:18:1a:60:9b:b3:79:9e:a6:73:7f:ef:b3:99:52:
44:3c:31:1b:cc:c8:22:05:51:2d:ac:64:2a:25:13:
59:e0:fb:b6:39:4a:34:d2:de:73:73:5a:96:be:98:
26:fa:f7:36:b2:b5:d9:2b:b6:94:1a:a1:c9:5d:02:
09:ad:56:1b:5b:ca:56:15:7c:6e:77:15:9e:44:b5:
ce:72:e0:9e:40:93:49:89:7a:ca:da:df:ac:dd:0f:
36:a3:03:b6:3d:e6:35:c9:13:41:a8:2a:29:97:51:
9a:1d:52:d2:72:36:db:cb:f1:64:00:9c:57:4a:8e:
97:5d:6f:1f:6f:38:2b:4a:6d:da:fa:49:40:9c:9d:
00:ba:63:93:32:62:9e:4f:dd:dc:b2:df:df:b1:08:
95:de:79:b9:26:6f:6d:d4:21:92:47:2d:60:e6:ba:
bb:e0:40:66:0b:2b:e3:28:d8:a8:9e:2a:5e:1a:62:
62:f3:aa:24:cf:27:62:67:68:cf:9e:af:5b:bd:a1:
d7:5d:fd:42:c7:b7:7f:4a:cc:c2:ba:57:e4:1e:9d:
5a:7d:fe:e7:c0:03:70:77:54:c9:df:24:6e:13:07:
34:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:8B:67:C4:42:15:0A:53:4B:68:98:6E:A1:73:3A:0D:74:2B:EF:5C
X509v3 Authority Key Identifier:
keyid:39:72:45:D0:49:2E:ED:E5:9B:04:5B:5B:E1:FD:4E:B9:16:1B:C4:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXJF0Eku7eWbBFtb4f1OuRYbxBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/eed9ce-aef9-4fc9-8a4a-c442a18f1efc/1/UotnxEIVClNLaJhuoXM6DXQr71w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/eed9ce-aef9-4fc9-8a4a-c442a18f1efc/1/OXJF0Eku7eWbBFtb4f1OuRYbxBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.208.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:ff:ca:b4:9c:2d:6a:64:73:a2:fa:96:55:9b:22:c3:dd:a8:
6f:23:f0:b6:2f:ec:9b:c7:a5:c2:9b:95:86:d1:3a:78:8c:33:
66:60:0f:c8:fa:ae:87:48:cc:a5:53:ad:eb:a2:6b:5a:e7:9e:
60:62:c4:de:31:95:59:54:c8:79:ad:34:1e:c5:87:17:49:10:
a4:b1:a2:68:7d:ea:5c:d4:67:f5:d0:0e:a7:41:4c:3d:01:c8:
af:fb:44:b6:4d:6d:10:7b:61:45:20:de:fb:11:01:e0:e4:7f:
44:bb:8a:0b:85:10:3d:89:c0:b3:30:cb:2c:97:a7:47:c6:d7:
78:ac:aa:f6:4c:ba:ac:3b:e2:b1:77:87:8a:fb:52:34:14:1d:
90:e1:50:49:00:2a:8f:ab:f3:33:bd:c7:01:83:20:61:1e:61:
0c:07:c4:63:c9:9a:1e:0c:ec:d1:5b:5c:fe:c7:df:38:b3:fa:
39:ae:ee:34:ed:e3:1b:d2:87:f5:9a:9b:82:05:35:eb:f0:76:
78:97:73:37:6e:b4:87:51:cd:30:0e:34:52:28:32:59:3d:06:
c2:cb:26:70:53:eb:38:cc:72:df:c2:83:73:78:65:4b:59:29:
c3:57:93:6f:18:e8:10:10:87:7e:83:19:aa:0f:7b:b4:67:04:
53:6a:cb:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:06 2024 by rpki-client on console-fra.rpki-client.org