Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/UyGdhwrbSEdZ5zl0egMD47biVl0.roa
File: UyGdhwrbSEdZ5zl0egMD47biVl0.roa (raw, json)
Hash identifier: kbb3zJHQuRnpqLDmxdJDMHyZvgI8NjsXaUpgk5TkxEk=
Subject key identifier: 53:21:9D:87:0A:DB:48:47:59:E7:39:74:7A:03:03:E3:B6:E2:56:5D
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 01836072C6325659907DAACB3B2462C95D14
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/UyGdhwrbSEdZ5zl0egMD47biVl0.roa
Signing time: Wed 21 Sep 2022 14:27:58 +0000
ROA not before: Wed 21 Sep 2022 14:27:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 155.254.36.0/22 maxlen: 24
107.181.140.0/22 maxlen: 24
198.105.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:72:c6:32:56:59:90:7d:aa:cb:3b:24:62:c9:5d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Sep 21 14:27:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53219d870adb484759e739747a0303e3b6e2565d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:36:de:49:bf:1b:46:60:ab:4a:ee:ac:51:10:
18:db:85:2b:2b:fa:7f:cd:2a:5f:65:16:51:14:1d:
f3:0d:99:0b:87:66:1f:0b:7d:fb:44:cb:c6:dc:b0:
b8:c2:77:df:73:1b:05:d4:a4:99:47:cf:7c:6d:a3:
a4:56:7c:40:6a:4d:1e:64:ca:d0:02:a5:26:c3:74:
f5:6e:fc:e4:20:6d:ff:e7:04:20:1c:bc:39:4c:3b:
e9:2f:ec:ec:f4:82:ac:ce:ca:8f:85:46:10:74:46:
67:94:09:f8:cb:b5:54:8d:af:a5:b3:1e:3a:c2:36:
05:13:4e:38:3f:49:9f:b8:61:3b:9f:aa:46:b7:4e:
56:30:a0:ee:5a:90:a5:29:31:5b:a1:7f:7c:b6:a1:
45:c0:35:9e:fc:34:d7:29:27:59:f9:a2:b4:89:04:
4e:d0:a3:8c:9b:5b:6e:26:08:d2:02:d9:c8:fe:56:
7b:8d:14:39:a3:e4:c0:bb:da:93:4c:f2:d1:25:db:
2f:44:98:8c:57:6f:cd:7c:85:f8:31:24:69:8c:36:
e0:d5:9c:a0:3b:e0:5b:c9:e2:4c:c6:54:e6:0d:e5:
5f:5b:7d:22:56:21:a3:81:5c:6e:1a:3b:57:3d:00:
80:d7:7a:4b:c2:cb:2b:20:13:45:1a:29:31:8c:67:
f0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:21:9D:87:0A:DB:48:47:59:E7:39:74:7A:03:03:E3:B6:E2:56:5D
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/UyGdhwrbSEdZ5zl0egMD47biVl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.181.140.0/22
155.254.36.0/22
198.105.100.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:cf:d5:d3:63:e5:be:7f:65:0c:94:30:f5:e5:05:64:08:3f:
8a:aa:1c:6b:71:29:ca:43:92:43:d9:2e:62:6f:7c:b5:cd:dd:
f6:a6:22:05:02:85:45:2e:5f:4f:c9:fc:ac:a8:03:a9:39:05:
d4:78:0e:8e:1b:77:ba:ac:1c:6d:a4:57:6d:0d:a5:5c:e7:d3:
1b:4f:2f:95:51:73:ee:a4:bd:96:98:9e:04:b4:d6:5c:58:78:
7d:38:72:54:d8:28:bf:be:0a:97:f8:5b:4f:45:51:9e:4c:7e:
74:da:eb:d3:b6:4b:bf:1d:52:6a:07:64:d7:c0:23:16:57:94:
df:86:52:12:c0:ca:d4:f0:24:eb:57:32:70:a0:d8:9f:19:09:
04:ba:2f:0c:24:54:d6:ed:3b:0b:ad:94:e0:08:98:c1:14:4c:
66:ec:90:27:0f:1c:c4:4c:42:e7:e5:c7:b8:d0:b3:1a:82:a8:
36:06:7d:08:8b:0e:79:c1:01:ee:57:93:75:13:9e:31:ad:c9:
9d:80:92:d4:24:de:fa:80:60:0f:e1:69:15:6e:98:33:06:6e:
11:f9:a5:fc:b4:cf:ea:91:0c:b3:29:0b:60:0a:12:7d:a1:a3:
bf:06:45:d0:29:de:e4:0c:7c:9d:51:d2:21:07:21:50:f6:66:
2c:9a:cd:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org