Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ukVTbzQ_IBLExqNTz-t51EgsMPI.roa
File: ukVTbzQ_IBLExqNTz-t51EgsMPI.roa (raw, json)
Hash identifier: syYCQRZH9l/T85eMQQgDiBt/2H3vjbK5cnDWdNJtaig=
Subject key identifier: BA:45:53:6F:34:3F:20:12:C4:C6:A3:53:CF:EB:79:D4:48:2C:30:F2
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C5A08CB
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ukVTbzQ_IBLExqNTz-t51EgsMPI.roa
Signing time: Sat 01 Jan 2022 01:02:24 +0000
ROA not before: Sat 01 Jan 2022 01:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31083
IP address blocks: 87.120.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475662539 (0x1c5a08cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba45536f343f2012c4c6a353cfeb79d4482c30f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:62:17:11:b4:e4:b3:27:0a:23:7a:bc:49:fd:
3e:47:c6:7e:52:ad:de:bc:b3:e0:6a:03:09:f2:00:
2c:a7:bc:6b:c3:89:e9:7f:48:56:c6:ac:d1:ac:52:
92:38:8a:9d:03:7d:48:dc:36:ae:01:c1:31:be:25:
39:26:a5:de:dd:5c:a9:db:22:e1:a8:ae:be:98:b1:
db:d0:57:8a:89:25:06:85:47:ba:bd:f8:33:d0:c3:
2a:37:e0:b5:1e:0a:4a:34:af:5c:61:e8:53:c5:be:
22:f7:08:63:2d:6d:a7:46:11:6d:8d:61:d4:c5:f8:
4a:21:54:25:ac:03:88:5d:5b:f5:7a:df:bc:9b:90:
cd:35:4c:76:2e:9d:af:06:2e:9c:ec:5d:46:6d:a8:
7f:63:38:06:65:c6:13:cb:19:fa:b7:71:3e:5d:4b:
c7:6b:04:b9:bf:c5:e3:f2:58:51:21:65:b5:67:a8:
f3:8f:3d:87:39:53:92:79:8a:d7:b8:fe:e3:b9:4b:
3a:f3:f0:7a:27:41:0d:8a:b1:57:ce:3f:c7:42:3d:
ca:27:4f:dd:ca:0b:11:c7:90:f8:d7:40:e0:9c:45:
a9:4d:c7:c8:a6:c1:3f:10:ce:b6:c3:f3:ef:89:55:
17:b3:2e:b9:f7:51:bb:26:83:c5:2f:39:fa:29:b9:
c4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:45:53:6F:34:3F:20:12:C4:C6:A3:53:CF:EB:79:D4:48:2C:30:F2
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ukVTbzQ_IBLExqNTz-t51EgsMPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.41.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:72:eb:e0:6d:92:2c:48:b2:10:db:14:e0:99:61:0f:7c:a7:
43:eb:92:dd:1a:7b:af:ea:64:ed:38:7a:87:1d:07:8c:be:40:
3f:e6:27:79:a3:26:60:78:a6:2a:d8:94:ac:38:01:ad:62:46:
91:0d:77:c6:d7:02:67:0a:df:a3:f2:dc:37:1b:9d:d1:9f:32:
5d:e7:a5:0f:f6:0b:4c:cf:70:d3:fa:0a:d7:2a:29:0e:3f:25:
82:12:9c:85:14:5d:41:8b:a2:17:06:6e:c5:86:a4:0a:00:42:
32:81:b3:15:14:55:63:94:09:31:00:30:7d:b4:71:9c:f2:41:
f6:c9:29:14:3d:fc:d9:d8:83:9b:03:ea:bf:fa:1e:ae:67:eb:
d9:15:d9:a3:fd:41:c9:74:52:9b:21:90:ac:44:4f:9f:f3:a3:
61:eb:eb:0b:e1:2f:c6:11:06:b1:71:42:ee:f0:17:54:5d:f6:
65:c1:2c:eb:f8:87:8a:c8:13:8d:00:4b:67:83:dc:2a:92:ae:
bd:a9:96:7e:2d:fe:2f:0d:e3:8c:2f:a2:3a:9a:c5:ba:42:40:
c7:fc:cc:48:2d:9d:32:f7:30:d7:1a:fb:ec:e8:2c:ab:e5:79:
9d:90:5a:83:1d:62:ab:56:da:4f:45:88:2d:f0:38:6e:e8:86:
cc:30:5e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-ams.rpki-client.org