Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/uMbKVqr9BW_XchXOgAw2j2QyXek.roa
File: uMbKVqr9BW_XchXOgAw2j2QyXek.roa (raw, json)
Hash identifier: 7fFWvzpNnLxcwKhd5RWGpf2kifexKkDR5is+dSjiXYs=
Subject key identifier: B8:C6:CA:56:AA:FD:05:6F:D7:72:15:CE:80:0C:36:8F:64:32:5D:E9
Certificate issuer: /CN=1120a0ce013e2d52a6ff354a270894bb998e4547
Certificate serial: 32771E29
Authority key identifier: 11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/uMbKVqr9BW_XchXOgAw2j2QyXek.roa
Signing time: Sat 01 Jan 2022 09:53:31 +0000
ROA not before: Sat 01 Jan 2022 09:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61153
IP address blocks: 193.17.120.0/21 maxlen: 24
193.17.96.0/21 maxlen: 24
193.17.104.0/21 maxlen: 24
193.17.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 846667305 (0x32771e29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1120a0ce013e2d52a6ff354a270894bb998e4547
Validity
Not Before: Jan 1 09:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8c6ca56aafd056fd77215ce800c368f64325de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:54:86:70:39:2d:a6:76:63:53:fb:05:9a:5d:
52:57:d3:1b:b5:2d:d1:a4:13:32:92:38:09:0c:f8:
07:a1:23:e8:92:f6:b1:71:ae:af:63:b0:27:c7:18:
b2:9c:79:fc:d3:db:86:d1:03:10:f4:b7:7b:50:28:
a4:da:d2:9f:ed:55:27:25:a9:e7:13:2c:2e:01:3f:
e3:c6:49:de:38:3a:72:11:c9:d2:c2:9a:9c:f2:ab:
76:b7:86:42:02:39:60:b6:49:04:00:cc:fc:21:5f:
f9:19:3f:3e:d3:5e:72:69:34:75:d8:d1:9c:32:d2:
ce:52:b0:3e:18:6d:45:b3:60:b8:fa:fe:2c:ed:fa:
52:3e:59:76:a9:f1:d0:a1:92:6a:98:96:87:e0:bc:
cf:7e:ea:2f:68:ad:e8:1a:a7:87:00:aa:86:a6:40:
e2:37:0d:8e:0b:82:4c:5d:1a:c6:75:56:1d:bc:1a:
39:e5:cf:40:9a:ac:2f:44:e8:ba:c8:7a:e4:9d:65:
ec:f3:a2:6e:ae:30:60:8a:35:70:39:ab:8b:7a:f0:
78:74:47:8f:3f:42:dc:fe:ad:4f:01:05:e3:73:3c:
22:93:ab:92:8b:e8:16:db:c2:1b:18:5c:27:d6:95:
dd:f7:04:6f:83:96:a6:ea:14:1e:7c:7c:d1:1f:e4:
8a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C6:CA:56:AA:FD:05:6F:D7:72:15:CE:80:0C:36:8F:64:32:5D:E9
X509v3 Authority Key Identifier:
keyid:11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/uMbKVqr9BW_XchXOgAw2j2QyXek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.96.0/19
Signature Algorithm: sha256WithRSAEncryption
60:24:ab:9c:b3:77:0d:f1:a0:b6:76:fc:a1:51:c0:27:f0:56:
0b:c5:14:4c:2c:2e:77:37:46:f9:1e:4d:1f:ed:b6:ae:c3:76:
2d:42:43:58:d4:6e:25:fe:3b:cd:de:d6:55:4d:52:44:71:32:
c1:2a:20:57:47:c9:2d:ea:37:fb:d0:bc:a0:25:70:c8:b1:b7:
8d:5d:39:a2:bd:5b:50:33:fe:de:85:f6:22:b1:3e:ad:57:c8:
55:c4:80:d7:1f:78:84:35:e1:bb:36:86:fd:15:3b:be:6f:62:
36:ee:2d:b7:6b:95:8c:f6:1a:cd:8b:19:fd:95:f7:75:92:86:
5c:02:c9:cc:d8:32:4b:7f:7e:fa:a4:79:24:e3:53:c8:38:0e:
88:85:cd:78:cd:1d:13:06:e1:f4:60:51:ad:c5:d4:74:e8:76:
f8:ea:5b:ed:d7:49:80:75:02:22:ed:93:a5:a5:43:7c:b5:42:
82:5c:b6:c3:b8:39:ac:b4:98:c7:0f:f3:70:8c:6a:a3:2d:14:
f2:c6:8e:63:f5:af:57:47:6d:8a:1b:0a:f6:cf:c2:2b:81:37:
ea:95:4e:fe:46:ac:df:cd:b2:63:f4:83:7b:7f:05:89:e1:d5:
94:38:73:a0:e1:3d:c9:34:58:82:94:c7:dd:0b:ed:2e:88:d5:
4d:b9:63:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:16 2024 by rpki-client on console-fra.rpki-client.org