Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/UfzAyyjNx_Z_QKf7jJyUVPMH_8c.roa
File: UfzAyyjNx_Z_QKf7jJyUVPMH_8c.roa (raw, json)
Hash identifier: GyhrwUYRzeB3chq3Xo+tDEKoYbEIXhxFsungVK4O7IU=
Subject key identifier: 51:FC:C0:CB:28:CD:C7:F6:7F:40:A7:FB:8C:9C:94:54:F3:07:FF:C7
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018559960464C2AA7C9DCCAAAEC6950AF151
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/UfzAyyjNx_Z_QKf7jJyUVPMH_8c.roa
Signing time: Wed 28 Dec 2022 16:34:41 +0000
ROA not before: Wed 28 Dec 2022 16:34:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3170
IP address blocks: 192.144.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:59:96:04:64:c2:aa:7c:9d:cc:aa:ae:c6:95:0a:f1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Dec 28 16:34:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51fcc0cb28cdc7f67f40a7fb8c9c9454f307ffc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a4:bf:05:bf:ee:a0:d8:73:86:96:00:04:1c:
24:35:97:a0:2e:e2:43:a6:36:5d:18:35:a8:07:38:
c3:7f:69:06:a0:e2:7e:76:82:58:a5:eb:e7:6b:5c:
14:12:cc:43:5e:1c:cc:bb:3a:5e:30:54:ba:e5:9d:
c3:c2:00:c8:da:23:dd:cc:b3:af:db:8d:ab:a2:35:
45:d7:1c:b5:ab:a8:a0:7f:33:13:6b:ce:25:20:b5:
0e:c2:9b:c1:ea:16:12:7f:b3:ea:89:25:b3:5d:0c:
a4:e6:34:d1:7d:50:78:88:0a:1f:ae:89:11:13:cd:
35:20:15:d4:ae:c8:47:6d:e9:2e:9a:32:e5:11:0d:
52:45:4a:59:d2:3f:cc:04:dc:8f:db:4e:58:4b:62:
2b:c7:ba:d3:2b:2e:ff:d2:d0:70:46:0b:d3:9b:80:
08:80:84:be:35:b5:ad:55:e6:25:4f:aa:1e:9b:3e:
49:92:ff:34:83:3f:52:75:10:82:4c:71:36:68:14:
17:97:b4:21:15:53:22:89:0f:ed:72:b7:a0:e8:8a:
b5:89:f1:b7:81:aa:b9:ae:f8:39:d8:5c:6e:46:ae:
c9:80:0d:5d:4f:c9:42:a2:23:25:a7:77:92:aa:ee:
4e:31:3c:ff:bf:e7:a0:7f:dc:cf:9b:c4:a7:a1:25:
35:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FC:C0:CB:28:CD:C7:F6:7F:40:A7:FB:8C:9C:94:54:F3:07:FF:C7
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/UfzAyyjNx_Z_QKf7jJyUVPMH_8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.32.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e4:e8:bf:a0:63:9a:79:dd:fb:96:b2:be:70:16:0e:6f:7f:
c1:18:8e:5b:b5:51:dc:9e:d5:29:91:3d:d2:94:f6:9a:42:8e:
3c:64:2c:62:72:8b:e6:83:84:ee:24:ca:29:de:c5:81:3b:5e:
6e:80:5b:b3:90:69:7c:9d:85:f8:0e:57:fe:d5:a0:1d:2f:05:
83:06:ff:91:1a:cf:4c:95:f4:57:cb:51:72:65:43:9f:61:ad:
b2:d5:0b:ec:7d:9e:39:90:31:6b:08:d0:e9:b7:ae:3c:33:94:
51:23:18:55:ea:88:90:db:d7:e0:34:12:87:33:94:e3:93:a3:
f3:15:39:c8:8d:00:2d:71:22:a6:4f:66:e7:53:fd:5c:50:16:
c3:27:7a:85:5e:92:b1:d9:7f:cb:1b:59:39:31:66:e1:fe:c1:
ff:bd:b9:ce:61:b4:1f:a5:a4:f4:fb:13:6f:70:50:55:36:3d:
7e:fe:a8:30:6e:fd:cc:e4:4a:77:c2:bb:68:5b:02:ee:9b:e9:
ac:cc:52:ff:23:c2:3c:17:9f:02:32:77:a5:8f:1a:d8:25:d1:
15:a1:e2:bf:32:50:e2:f2:57:76:86:ea:66:23:96:3c:7e:55:
54:9a:dd:5c:ea:eb:f1:9d:63:bf:b2:7b:c4:42:af:18:29:df:
7e:80:b9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org