Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/UVjUAT62NytoY7C9PKrTp9piV40.roa
File: UVjUAT62NytoY7C9PKrTp9piV40.roa (raw, json)
Hash identifier: Sr3NOPG6KHh2Oh3ROcn9JthR9PhVLR5SBW6/DPZUzdo=
Subject key identifier: 51:58:D4:01:3E:B6:37:2B:68:63:B0:BD:3C:AA:D3:A7:DA:62:57:8D
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 0183EB01E2126615D26026E37219B23B4168
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/UVjUAT62NytoY7C9PKrTp9piV40.roa
Signing time: Tue 18 Oct 2022 12:11:52 +0000
ROA not before: Tue 18 Oct 2022 12:11:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200703
IP address blocks: 217.27.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:01:e2:12:66:15:d2:60:26:e3:72:19:b2:3b:41:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Oct 18 12:11:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5158d4013eb6372b6863b0bd3caad3a7da62578d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:9c:14:e9:63:8c:13:9f:b3:0d:4c:06:df:
c4:f2:21:f9:63:8d:fb:4c:df:70:16:09:bb:c0:c2:
1d:c0:28:24:33:0b:d3:2b:d1:59:2a:ea:a6:c7:e8:
c3:50:3d:e7:e1:32:2e:6b:d5:1b:39:b7:37:c8:70:
a8:2b:18:2b:5e:e5:18:af:de:41:c1:e5:25:27:45:
10:cc:9e:c1:a1:24:2f:ac:a6:0d:ee:3f:2e:10:f7:
1f:8e:ed:37:db:b8:97:ee:3a:04:88:66:5d:d6:b6:
76:09:da:e3:95:c3:15:4a:b4:60:30:19:af:09:51:
16:79:6d:fa:d9:ac:56:bc:94:22:f8:d3:d3:e0:fc:
57:1d:3b:57:9d:46:85:37:9a:97:b2:6c:8a:30:5b:
0c:e2:6c:74:eb:90:15:8a:cc:f5:48:41:56:aa:4c:
65:96:6e:23:dd:a6:46:70:ea:a2:8b:e2:80:3d:ac:
9f:7c:cc:2c:93:3f:94:05:fa:e1:42:2e:9d:6a:0c:
e2:fa:84:6b:7c:06:cd:c7:e6:15:77:67:c4:fa:ba:
93:59:0a:dd:70:27:bb:b8:d4:a2:c0:f1:66:9c:c4:
74:4d:f2:0b:da:4b:ed:65:84:e5:b8:92:01:3f:f9:
0e:e3:69:24:98:2f:dc:ee:ff:f6:38:6b:76:ff:ed:
9a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:58:D4:01:3E:B6:37:2B:68:63:B0:BD:3C:AA:D3:A7:DA:62:57:8D
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/UVjUAT62NytoY7C9PKrTp9piV40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.27.5.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e8:16:b2:ee:f4:52:db:7d:e4:49:34:0e:f6:76:8c:75:25:
2a:dc:c8:47:bb:fb:90:03:eb:83:a5:a2:45:99:f5:f5:c1:51:
aa:62:82:c0:b1:95:43:cd:8c:59:16:12:b6:89:3b:4e:02:eb:
08:c5:02:fa:e1:7a:f5:a4:6f:cb:69:e6:ad:fd:e4:74:af:dc:
dd:f5:ce:31:64:b4:dc:af:67:3b:3e:5b:98:67:b4:d1:51:17:
29:a4:00:69:75:ea:e4:99:2c:de:ea:4f:c6:26:67:36:83:2e:
d4:68:92:a0:7f:94:c8:d2:50:0a:68:77:72:0e:a8:af:c5:d9:
d2:0d:44:47:fc:b1:20:df:8e:39:fe:63:4e:bd:4c:50:49:0f:
70:7c:43:3e:4a:1f:6a:4f:64:0c:4d:cd:d0:8d:6a:92:66:a3:
1d:f9:9a:a3:69:23:30:f6:7c:92:30:8b:6d:ea:95:d9:ab:94:
e7:fb:eb:87:a5:bf:49:c3:4a:52:7b:f1:38:03:d6:7d:92:f0:
89:bb:3b:ff:23:6d:6a:03:e5:58:cf:3a:93:57:89:f3:b7:23:
72:be:aa:5e:78:40:5c:ab:bd:49:ff:0c:45:b0:0a:de:0d:df:
a7:74:77:fb:8f:69:2e:ac:75:44:a9:00:75:f1:0f:84:c8:1e:
1a:60:cf:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:18 2024 by rpki-client on console-ams.rpki-client.org