Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UoTzw-zCn9PegG9Y0nS-WEcw9Dk.roa
File: UoTzw-zCn9PegG9Y0nS-WEcw9Dk.roa (raw, json)
Hash identifier: JEmZcL6S+kquTwyZMxMNEpakH1ECqq1SVQO7DcfI7yQ=
Subject key identifier: 52:84:F3:C3:EC:C2:9F:D3:DE:80:6F:58:D2:74:BE:58:47:30:F4:39
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189E954FF9BA5AB62A404FAC04E5F016C42
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UoTzw-zCn9PegG9Y0nS-WEcw9Dk.roa
Signing time: Sat 12 Aug 2023 10:40:08 +0000
ROA not before: Sat 12 Aug 2023 10:40:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 212.193.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e9:54:ff:9b:a5:ab:62:a4:04:fa:c0:4e:5f:01:6c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 12 10:40:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5284f3c3ecc29fd3de806f58d274be584730f439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:43:e9:3e:e6:13:b3:24:3f:95:77:3c:1c:
13:c0:04:3d:0a:3e:69:47:71:07:0e:da:e3:3d:e5:
93:ae:2b:5c:f4:58:7f:46:af:f0:2f:39:b8:62:ff:
2a:ca:56:b4:97:6b:fd:9f:f2:22:ee:41:a3:fd:e2:
89:e7:8c:53:fd:ec:5d:1f:1f:21:d2:d0:c4:fe:28:
79:0a:14:3d:32:25:98:48:7a:4a:79:86:bd:47:52:
6b:c1:1e:3f:58:31:b5:d5:90:a0:26:cf:9a:0f:b7:
2f:b8:6b:10:20:25:5b:84:93:3a:e9:c1:29:55:ab:
60:4d:07:a7:b7:86:50:e2:7e:eb:4e:19:64:9c:6e:
06:3f:b6:f1:bf:2a:3f:db:ec:69:c3:2e:63:83:ff:
16:0a:a6:84:68:3b:1e:47:54:69:ca:75:40:66:d2:
2c:7f:fd:59:4a:f7:3a:40:c4:41:2a:4d:d4:f4:fe:
9d:84:a8:81:99:f5:89:06:be:ac:43:56:7b:89:0d:
b9:65:d3:17:29:4a:17:b5:f0:69:f0:fc:3f:2e:39:
31:ed:c4:15:e4:04:8a:dc:5a:67:a4:2c:0b:73:4a:
4e:0a:30:7d:cc:82:cc:15:16:f6:48:97:ab:46:f2:
96:66:0e:d7:16:e1:68:e3:94:8a:fd:b4:b3:47:02:
fb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:84:F3:C3:EC:C2:9F:D3:DE:80:6F:58:D2:74:BE:58:47:30:F4:39
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UoTzw-zCn9PegG9Y0nS-WEcw9Dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.6.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:5a:2f:91:44:be:5f:7a:e3:34:fe:eb:a2:14:db:3d:50:24:
3e:61:f0:ec:b5:bf:29:2e:4a:43:ba:f4:48:b0:82:b7:9c:3b:
bd:98:12:b0:58:d5:8f:ec:28:02:68:3f:26:2f:8b:8d:6e:4e:
83:99:e5:db:19:89:3c:a2:68:44:9b:3d:d5:3c:85:4f:e0:6a:
e4:32:86:40:45:32:3f:17:16:1b:25:1f:1a:03:a2:21:53:61:
ae:79:9b:42:54:5e:0a:c4:d3:36:62:e7:b7:84:b7:e8:e5:7a:
f1:ac:48:42:79:06:66:c5:1e:b8:bb:49:08:f2:fe:4d:34:df:
99:7b:72:30:b1:bc:9e:6c:63:00:57:0e:fa:53:57:d9:67:0b:
5f:1a:36:21:31:fc:cd:67:42:b8:a8:4e:a0:35:33:70:b9:a5:
ff:6b:53:1a:a7:03:43:65:a9:b2:d0:a0:b9:5a:5d:6a:b0:2c:
e5:91:1a:b8:dc:a7:d4:57:51:af:41:16:91:50:66:19:68:6e:
7b:a6:f8:9c:50:cb:e0:ea:86:0e:ec:c9:e7:0a:75:26:a8:d0:
a7:08:5a:42:4e:66:d9:10:03:74:7c:cd:75:ff:14:0c:66:72:
c8:fb:36:70:ce:b8:ab:01:84:c5:1b:01:23:d2:a0:cc:b6:1a:
46:75:59:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:47:01 2025 by rpki-client