Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/uNqptya4ct1BXFWnK-oecwM5U3k.roa
File: uNqptya4ct1BXFWnK-oecwM5U3k.roa (raw, json)
Hash identifier: XttB5u4nHRZbZUiQrUUcmL1q7ALefUzt9as1od+5ils=
Subject key identifier: B8:DA:A9:B7:26:B8:72:DD:41:5C:55:A7:2B:EA:1E:73:03:39:53:79
Certificate issuer: /CN=8c7af79da5f2b68986c8356460a43fa42d37f3a6
Certificate serial: 184B2BED
Authority key identifier: 8C:7A:F7:9D:A5:F2:B6:89:86:C8:35:64:60:A4:3F:A4:2D:37:F3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHr3naXytomGyDVkYKQ_pC0386Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/uNqptya4ct1BXFWnK-oecwM5U3k.roa
Signing time: Sat 01 Jan 2022 02:55:41 +0000
ROA not before: Sat 01 Jan 2022 02:55:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24933
IP address blocks: 185.44.32.0/22 maxlen: 22
2a04:9880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407579629 (0x184b2bed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7af79da5f2b68986c8356460a43fa42d37f3a6
Validity
Not Before: Jan 1 02:55:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8daa9b726b872dd415c55a72bea1e7303395379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:05:ab:ff:75:87:b9:8f:dc:31:6d:f5:31:a8:
14:84:5a:47:6d:7b:7a:87:8d:dc:d5:aa:65:8a:24:
10:f5:bc:18:5c:08:1b:bc:df:ff:08:b4:2a:74:ff:
b5:1a:22:f8:08:d4:7f:01:2a:a2:59:0b:6c:35:e4:
75:15:b7:2d:30:16:4e:71:1b:82:8d:fe:f1:9a:b0:
54:70:fb:ec:64:4b:e8:a6:9e:d3:af:16:c9:7b:69:
57:28:5e:fb:ff:59:a1:4e:91:72:18:39:10:b5:61:
f9:be:af:12:7e:cb:ae:20:2a:eb:04:42:cb:05:be:
ec:e0:3f:7f:89:c3:8b:0e:72:7b:39:71:43:84:e1:
c3:42:fa:d5:f9:aa:c0:c3:f0:1e:8d:50:f1:8e:b8:
e8:74:85:fa:00:04:ea:3c:6a:e6:55:b2:f9:cd:24:
e3:f5:df:27:db:1a:bb:f4:34:2c:fb:5f:69:aa:8e:
7b:4f:03:49:7c:dd:c5:89:f7:69:90:10:d5:55:02:
95:05:52:b1:e0:b1:36:13:97:5e:b4:27:56:2c:84:
c2:64:30:30:cf:e3:36:d7:f5:78:99:86:dd:5e:2e:
c3:3b:0d:20:1b:a7:07:a8:21:2b:2d:17:85:e1:0d:
34:6b:4e:55:ba:45:d4:db:1b:34:3d:cd:7b:3a:77:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:DA:A9:B7:26:B8:72:DD:41:5C:55:A7:2B:EA:1E:73:03:39:53:79
X509v3 Authority Key Identifier:
keyid:8C:7A:F7:9D:A5:F2:B6:89:86:C8:35:64:60:A4:3F:A4:2D:37:F3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHr3naXytomGyDVkYKQ_pC0386Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/uNqptya4ct1BXFWnK-oecwM5U3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27086d-37f3-4130-8729-bcedbbd6e574/1/jHr3naXytomGyDVkYKQ_pC0386Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.32.0/22
IPv6:
2a04:9880::/29
Signature Algorithm: sha256WithRSAEncryption
31:aa:58:eb:a1:7d:71:e9:22:43:94:5e:a9:d8:7b:46:81:2e:
38:dc:18:76:8a:6d:c7:e2:57:d5:69:d3:cb:a6:51:28:88:9e:
d7:2c:58:4d:07:8f:f0:21:77:82:63:88:59:bf:1a:03:95:bf:
ba:d3:88:ef:a4:2b:e4:14:e4:84:17:7d:5a:b1:8a:ff:d7:56:
39:1f:de:46:fe:4a:ae:0a:44:ea:90:c7:9f:a4:3b:5c:ba:80:
de:e5:f5:f3:8a:1e:28:56:cd:e4:38:f8:24:d8:c8:c8:fb:0d:
95:ec:df:bb:70:99:27:b8:b9:c5:7a:ad:79:1c:26:33:c3:1e:
03:8a:26:4d:00:58:45:1a:69:cf:c7:d7:55:28:60:bc:7f:ec:
25:85:a6:aa:e8:d7:a4:1e:c7:19:97:c5:40:f7:03:a0:68:80:
2a:c6:85:37:e5:48:b5:5d:93:ea:71:de:02:37:ed:19:db:b0:
c4:e6:bb:d4:6e:69:14:83:29:55:75:6a:3f:fe:ae:a6:ca:94:
d9:eb:e4:1c:6c:ab:38:ce:54:9b:aa:98:7b:99:8c:af:b9:61:
a6:90:8e:7a:eb:c4:c9:52:22:f9:f7:44:a2:e7:4c:88:aa:03:
e8:3d:3e:5a:0a:a4:3e:65:5d:03:be:85:7a:8c:7a:c5:bd:55:
30:55:68:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:35 2024 by rpki-client on console-ams.rpki-client.org