Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/UIeJizA4xOd1LoaiVZpErXyBSfw.roa
File: UIeJizA4xOd1LoaiVZpErXyBSfw.roa (raw, json)
Hash identifier: S4WRmyH4TdpjoMTpR0YIaePvUifYxVYlHsm71ye2owM=
Subject key identifier: 50:87:89:8B:30:38:C4:E7:75:2E:86:A2:55:9A:44:AD:7C:81:49:FC
Certificate issuer: /CN=d6fb452a0ae33dfa52aaaacba794df1af6bc4334
Certificate serial: 020D7D
Authority key identifier: D6:FB:45:2A:0A:E3:3D:FA:52:AA:AA:CB:A7:94:DF:1A:F6:BC:43:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1vtFKgrjPfpSqqrLp5TfGva8QzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/UIeJizA4xOd1LoaiVZpErXyBSfw.roa
Signing time: Tue 29 Mar 2022 14:54:22 +0000
ROA not before: Tue 29 Mar 2022 14:54:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34959
IP address blocks: 194.55.234.0/23 maxlen: 23
194.55.244.0/23 maxlen: 23
2a0f:1140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134525 (0x20d7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6fb452a0ae33dfa52aaaacba794df1af6bc4334
Validity
Not Before: Mar 29 14:54:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5087898b3038c4e7752e86a2559a44ad7c8149fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:67:2b:19:80:ed:f9:33:04:28:a0:ae:47:21:
5a:33:22:f7:b0:99:b8:62:f1:3a:3c:1a:dd:8b:ef:
16:9b:55:8a:43:3e:69:cc:54:a4:a6:ae:e3:58:46:
f7:c6:99:50:7f:64:5c:19:97:61:55:70:69:4c:1a:
31:90:e3:10:97:82:1b:b2:14:14:8e:eb:df:7e:0f:
d9:3c:94:f1:c7:c6:c6:23:98:d5:17:f8:9d:37:0b:
26:c9:f1:ec:46:6b:69:75:9c:d2:77:8b:67:ae:e5:
ad:df:6f:a0:8b:ef:56:3f:d7:8c:6a:b1:38:e5:e1:
33:82:77:e7:8c:9b:c2:08:70:22:60:e8:47:17:7e:
ef:c0:2f:31:28:e5:bf:43:94:a9:b4:5a:26:1d:74:
e9:f2:7a:6b:21:58:97:db:90:05:d8:80:5b:9d:54:
e3:64:a3:02:2a:74:9d:78:a9:dc:ef:a7:d8:da:a0:
24:00:d9:2c:99:a4:9d:26:e7:74:83:ac:52:d6:db:
2f:67:56:5c:98:e5:d1:10:71:4a:6d:a0:c0:1a:37:
ac:bb:ab:04:93:4c:fe:2b:da:cf:df:5b:6c:54:ce:
b6:63:8a:0c:31:de:b9:92:f3:42:c9:17:be:c6:b0:
27:72:bc:9e:a0:26:9a:29:a1:81:58:da:d2:21:3d:
99:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:87:89:8B:30:38:C4:E7:75:2E:86:A2:55:9A:44:AD:7C:81:49:FC
X509v3 Authority Key Identifier:
keyid:D6:FB:45:2A:0A:E3:3D:FA:52:AA:AA:CB:A7:94:DF:1A:F6:BC:43:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1vtFKgrjPfpSqqrLp5TfGva8QzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/UIeJizA4xOd1LoaiVZpErXyBSfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3bdd7e-a729-49ad-85aa-f75962d30e36/1/1vtFKgrjPfpSqqrLp5TfGva8QzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.55.234.0/23
194.55.244.0/23
IPv6:
2a0f:1140::/32
Signature Algorithm: sha256WithRSAEncryption
a7:93:ec:3d:6f:50:aa:08:2b:e5:ad:5e:56:4b:3a:82:b3:74:
65:93:be:17:de:8c:e2:fc:0a:e6:99:b6:99:44:60:0f:85:63:
85:74:64:e8:f9:a7:7d:8b:d8:d8:90:74:da:5d:54:fe:7c:8f:
ea:c2:2b:40:89:e4:b3:04:f5:5d:e4:45:b8:1b:f4:9e:86:fc:
59:89:7a:71:dc:96:b9:e5:14:4d:ce:ec:8e:69:74:56:d9:0a:
a0:4d:a2:8c:04:ee:c4:a5:39:63:f0:4c:f3:1d:b3:f9:ae:ab:
4b:ca:52:bb:07:bb:a8:df:38:d5:36:a0:76:20:52:02:8d:14:
ba:11:68:03:a5:14:25:8e:3f:58:b1:1a:84:d7:76:5e:a9:af:
a1:3c:58:3c:24:a5:55:e0:5b:88:d5:cc:21:67:eb:e0:ef:2a:
df:af:0b:0a:20:1e:ea:d5:6b:4f:ef:13:c1:37:78:5f:15:2e:
28:f0:d5:80:be:f5:0c:9f:56:8f:07:13:27:44:27:fc:00:f6:
57:7c:e9:99:c7:6b:f9:e8:18:f7:45:43:53:90:d1:58:a5:71:
e9:f6:55:b3:e4:75:5a:06:c2:8a:12:ba:f9:48:a0:49:59:be:
5c:6a:11:94:59:c8:da:0e:e3:33:39:7e:5c:27:d5:ee:87:41:
4a:4d:5a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:00 2024 by rpki-client on console-fra.rpki-client.org