Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/UBeBfrV-o989JCH5Nd9cwOkVNHU.roa
File: UBeBfrV-o989JCH5Nd9cwOkVNHU.roa (raw, json)
Hash identifier: 4Jv6Twhd7orrMZUXbXrwDFkznXv3iapR06Gvon5zlgs=
Subject key identifier: 50:17:81:7E:B5:7E:A3:DF:3D:24:21:F9:35:DF:5C:C0:E9:15:34:75
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01A0A861
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/UBeBfrV-o989JCH5Nd9cwOkVNHU.roa
Signing time: Fri 21 Jan 2022 14:14:33 +0000
ROA not before: Fri 21 Jan 2022 14:14:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3169
IP address blocks: 37.140.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27306081 (0x1a0a861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 21 14:14:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5017817eb57ea3df3d2421f935df5cc0e9153475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:50:fb:5a:4a:c1:c8:aa:e4:65:8b:8e:c6:e8:
f9:f9:c6:31:e8:ae:7a:f6:a0:f9:19:82:eb:e2:ef:
4a:4b:c3:43:5e:db:39:91:6c:4c:08:96:57:a0:f4:
6f:d0:4a:e4:be:51:01:00:72:b3:8c:07:de:31:a0:
6e:89:95:f7:b8:ef:3f:55:33:d9:fd:29:26:5f:5e:
26:b1:b1:ed:11:55:7c:f0:a4:e1:d5:23:3e:c0:8a:
5b:21:97:9e:f3:0a:cd:62:cd:4f:86:fe:e5:8b:29:
b5:d4:32:9d:0b:11:07:41:3d:9c:a5:9d:cd:3a:40:
87:c7:e7:c4:1d:bd:a6:f9:bd:20:36:10:32:3d:d6:
30:9e:83:9d:2c:03:af:ec:78:fe:1c:64:de:87:6b:
fc:72:0f:57:e5:98:ef:3e:07:84:08:0d:98:3a:35:
70:ae:f2:7b:8e:4b:e9:91:4a:8b:13:1b:08:34:8a:
15:03:a8:b7:4f:8c:ab:74:d1:d9:7d:0c:80:af:f1:
2f:56:80:fb:1d:d7:43:7d:b7:24:67:53:03:84:61:
50:4f:c4:be:ed:35:b0:cc:77:3e:79:1e:42:7d:7b:
54:f6:15:09:6e:ec:76:a1:a0:0c:2a:1d:40:55:c5:
53:82:80:7f:66:cf:98:97:a6:37:f2:aa:96:af:05:
c7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:17:81:7E:B5:7E:A3:DF:3D:24:21:F9:35:DF:5C:C0:E9:15:34:75
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/UBeBfrV-o989JCH5Nd9cwOkVNHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.217.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:cf:b7:9b:0d:f6:d9:27:78:e2:27:9d:f2:d1:d3:ad:48:65:
4d:23:3b:4d:28:44:86:c2:5d:d4:b4:86:8b:e5:ec:f1:82:d2:
5f:e2:07:98:87:e5:a5:5c:d9:50:d9:1c:87:bf:ab:d6:c1:7e:
c2:21:f2:38:3a:1b:ad:26:8a:8e:7a:00:84:f9:c3:59:6f:93:
ea:ce:e1:dd:5a:ae:2c:21:71:7f:f9:96:5b:4a:2c:86:79:26:
f2:93:d5:41:e3:ee:02:e4:ab:17:aa:69:19:94:b3:50:c5:b2:
e0:01:80:8b:e0:3b:ef:2a:d6:41:2b:ba:56:36:03:92:25:5e:
3b:ad:37:45:48:49:b3:fa:7e:3a:66:25:45:00:95:63:23:bb:
34:13:83:cc:d0:c3:b1:ae:2e:13:9a:96:67:57:ca:03:01:24:
44:10:9c:fe:a2:d4:d6:33:90:07:95:dd:ff:c2:7e:b7:cd:bf:
1a:88:57:a7:ef:ad:c4:a4:74:79:ff:a3:d9:a8:29:b9:4e:09:
72:f1:4d:91:a2:16:08:a8:4d:6e:d8:7e:77:6a:31:b2:d8:a9:
83:fa:f8:d1:10:a3:f7:2b:68:7c:45:b2:e4:eb:fc:b8:6f:6e:
2c:ac:e6:2a:33:22:bf:21:e9:aa:68:6f:e0:5f:b4:25:5e:e6:
bb:76:7e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:29 2024 by rpki-client on console-ams.rpki-client.org