Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/uyquhTTwL13SP12nGPBPeoYOdZE.roa
File: uyquhTTwL13SP12nGPBPeoYOdZE.roa (raw, json)
Hash identifier: KI8E/Gdm1XUhlkxO6/8sWwKFayRoU1NZxQB596K5Vas=
Subject key identifier: BB:2A:AE:85:34:F0:2F:5D:D2:3F:5D:A7:18:F0:4F:7A:86:0E:75:91
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 01841522FF1FAA4D76BC21C237FB32D32D2B
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/uyquhTTwL13SP12nGPBPeoYOdZE.roa
Signing time: Wed 26 Oct 2022 16:32:05 +0000
ROA not before: Wed 26 Oct 2022 16:32:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 81.31.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:15:22:ff:1f:aa:4d:76:bc:21:c2:37:fb:32:d3:2d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Oct 26 16:32:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb2aae8534f02f5dd23f5da718f04f7a860e7591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8e:b2:99:71:9b:37:dc:2e:d9:82:9c:69:54:
84:3e:11:2f:ce:6c:47:8f:d5:8d:33:68:fb:e9:37:
b2:b6:67:b0:fa:fc:22:15:f6:35:09:c7:e6:10:32:
da:6a:5c:2d:d9:e6:55:93:33:aa:43:46:70:44:c2:
5d:c8:4d:ff:90:60:a9:07:9a:13:33:25:c5:85:c6:
9a:79:20:d3:af:ca:f7:56:49:64:38:94:39:5f:63:
75:6d:84:cd:53:b0:67:04:a2:2a:80:1e:6c:c9:50:
96:97:1e:6b:85:b7:5d:a8:1c:e7:6a:ae:17:02:88:
ac:9e:e4:e1:89:2b:24:e8:c2:65:6b:6c:9b:fc:f7:
a1:98:9f:46:dc:e6:13:4d:de:0e:70:d8:af:5a:35:
89:c7:32:9b:6a:07:c8:bb:41:f5:01:16:bc:4b:a9:
1e:28:3d:5f:37:58:45:b2:ee:84:1c:df:af:a4:68:
7c:b1:d2:04:da:b9:2e:98:bd:4e:b6:de:a7:5f:6a:
33:7d:23:59:54:12:55:c9:a9:8d:b2:33:6d:7b:e2:
9a:d7:e5:84:36:7a:57:47:5a:67:9a:f2:ad:d2:27:
8d:58:53:32:fc:6e:6e:5b:ef:36:58:b1:eb:fd:a1:
88:25:b9:04:07:e7:ce:6d:8e:7b:18:f5:e0:ee:64:
33:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2A:AE:85:34:F0:2F:5D:D2:3F:5D:A7:18:F0:4F:7A:86:0E:75:91
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/uyquhTTwL13SP12nGPBPeoYOdZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.232.0/24
Signature Algorithm: sha256WithRSAEncryption
ed:bf:a4:1a:a7:c0:af:53:a1:fa:7a:5b:1c:0f:71:b7:1d:5d:
d4:2e:44:d0:0e:6e:cd:8a:05:b0:1f:3d:9f:5e:4c:fc:c7:49:
01:7d:b7:42:77:aa:62:41:57:43:9b:73:be:21:93:29:05:e6:
62:b4:54:b9:2d:b6:db:9a:d0:c5:79:4c:d1:d4:05:49:22:91:
7a:b1:8c:a9:44:fe:d6:d6:f1:4b:59:ca:70:2f:d0:2a:ff:d8:
a4:d6:a9:c9:99:a4:e3:1b:f2:29:03:33:33:b8:92:04:4a:50:
3d:f4:f0:29:d0:be:37:3c:93:d3:5d:63:d7:17:21:ee:75:57:
16:d3:24:bd:1b:f0:77:8a:06:5f:73:80:f3:45:26:64:ff:c2:
a0:68:f1:16:fc:e6:f5:6c:d0:cd:18:39:4d:ac:52:55:45:65:
79:1b:2c:34:02:14:0d:ee:f3:3b:2d:bc:2d:21:28:b0:3a:e4:
3f:7c:64:77:ec:86:03:00:4b:a6:74:1a:7b:9f:2b:25:f0:ad:
0d:12:2d:ec:da:12:f0:bb:a5:0e:d0:6d:da:58:ed:c5:ee:da:
55:85:60:90:f1:c3:1a:4f:a6:cb:65:c8:8f:ed:df:23:f9:e2:
cb:1b:90:38:ba:e1:a7:cc:59:80:1a:b9:1e:85:34:45:2f:62:
38:19:c5:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:01 2023 by rpki-client on console-ams.rpki-client.org