Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/uEOrr52d0YQaFW41wpE6BpkdlvE.roa
File: uEOrr52d0YQaFW41wpE6BpkdlvE.roa (raw, json)
Hash identifier: Oaq70GC81No+cSgXgpzum+iFfvqgHRk8hxLHmFNAsPg=
Subject key identifier: B8:43:AB:AF:9D:9D:D1:84:1A:15:6E:35:C2:91:3A:06:99:1D:96:F1
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 018460D94A4530AA2BBF3BA37772563CB18C
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/uEOrr52d0YQaFW41wpE6BpkdlvE.roa
Signing time: Thu 10 Nov 2022 09:22:43 +0000
ROA not before: Thu 10 Nov 2022 09:22:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205836
IP address blocks: 185.204.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:d9:4a:45:30:aa:2b:bf:3b:a3:77:72:56:3c:b1:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Nov 10 09:22:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b843abaf9d9dd1841a156e35c2913a06991d96f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:34:bf:33:ae:fc:db:a6:d7:50:dd:4f:17:4c:
de:f1:fa:fe:83:9f:d0:68:7d:e1:d4:20:a4:0f:df:
4e:8c:63:27:ad:a6:50:70:17:dd:35:d3:9c:f3:61:
2f:25:0a:21:92:d3:d0:27:60:17:44:10:1a:70:36:
e0:fc:dd:53:f3:3d:f4:f7:2a:9b:69:06:6a:39:ef:
64:02:39:8e:c2:9c:93:5e:90:5d:d2:6c:d7:bd:1e:
95:d2:93:d7:14:4d:af:f1:83:d7:3c:97:5d:fe:9f:
4c:51:1d:87:36:f7:5d:8b:6c:d5:e8:9d:d6:4d:af:
40:8a:f3:a5:f5:4d:2b:7b:37:e9:ab:38:d6:41:07:
4b:da:44:63:fc:d1:ce:a9:b8:ea:44:32:a1:57:28:
fd:62:d6:f3:73:ce:43:26:57:dc:d4:fc:8e:70:97:
fa:94:13:c3:e9:87:9f:5c:21:0f:fb:b0:7b:c4:86:
11:97:a1:ee:bf:5e:07:bf:d4:de:c5:2b:88:b1:80:
43:93:e5:1b:4a:ef:ef:6d:3f:e4:a2:e9:9f:84:35:
44:de:9b:fc:12:b9:fe:7d:3e:30:e2:3c:40:6b:ec:
ae:c8:c9:fd:f9:f7:56:8b:2a:7d:d9:b0:de:cc:13:
f8:06:55:5f:57:67:4a:1b:84:b9:fa:47:dd:a1:ef:
67:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:43:AB:AF:9D:9D:D1:84:1A:15:6E:35:C2:91:3A:06:99:1D:96:F1
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/uEOrr52d0YQaFW41wpE6BpkdlvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.202.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:52:28:8a:b8:f5:1f:e8:87:24:9f:c1:4e:d9:fb:89:d3:15:
d0:fb:d6:bf:15:4a:fe:31:ff:b3:46:b3:6b:df:c4:1b:92:29:
d6:e9:d4:d7:5a:f5:86:73:63:38:5f:11:f5:72:5a:bd:0f:c0:
c1:71:26:23:41:00:c2:e2:32:e9:bf:f0:56:9e:26:2c:46:86:
ba:f0:a5:89:ad:5a:36:db:fe:b3:ec:28:a8:15:e3:27:a3:73:
17:8d:6b:cc:68:f1:4c:47:46:85:bf:2d:8b:02:3c:ab:ec:81:
0f:b3:c1:a5:cf:26:af:1a:7d:42:33:20:4a:88:af:15:d7:37:
82:2a:cd:15:ef:4b:89:1d:af:00:3f:57:64:d5:d7:01:73:99:
2b:1e:23:42:f5:f4:21:e9:3a:6f:96:a2:cb:05:22:fa:08:b6:
83:c3:fe:ee:84:16:e5:e2:9f:38:22:55:ac:6e:03:5d:a3:dc:
f0:8a:3b:a8:9c:03:a0:cd:7b:c6:4d:2a:8d:df:10:d8:6f:15:
71:ac:bd:d9:62:1b:d5:0e:77:e1:f8:00:32:91:d5:54:31:e6:
a3:5c:65:ac:3a:dd:6e:bc:5e:ff:bf:c7:9e:d1:03:d3:1b:2c:
16:79:d6:ee:d7:3e:43:10:a2:50:ee:c6:ed:40:2d:5f:f8:bb:
90:8f:73:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:13 2024 by rpki-client on console-ams.rpki-client.org