Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/uwb_qGXFVZecY9Z7tTph5wJUhDE.roa
File: uwb_qGXFVZecY9Z7tTph5wJUhDE.roa (raw, json)
Hash identifier: Xr8D393uX1xjHzDsclOvGbB+yQkvQ7Fx0jDbkQoQq9g=
Subject key identifier: BB:06:FF:A8:65:C5:55:97:9C:63:D6:7B:B5:3A:61:E7:02:54:84:31
Certificate issuer: /CN=f210bac96aff25b2aa931c4297446be37ffe2ada
Certificate serial: 0A871346
Authority key identifier: F2:10:BA:C9:6A:FF:25:B2:AA:93:1C:42:97:44:6B:E3:7F:FE:2A:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hC6yWr_JbKqkxxCl0Rr43_-Kto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/uwb_qGXFVZecY9Z7tTph5wJUhDE.roa
Signing time: Sat 01 Jan 2022 01:58:53 +0000
ROA not before: Sat 01 Jan 2022 01:58:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 192.31.231.0/24 maxlen: 24
130.37.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176624454 (0xa871346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f210bac96aff25b2aa931c4297446be37ffe2ada
Validity
Not Before: Jan 1 01:58:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb06ffa865c555979c63d67bb53a61e702548431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8b:b0:81:6f:db:07:ad:ef:ba:b1:da:60:ff:
9f:cc:18:86:a9:bf:be:00:0b:96:5d:33:3f:2b:3f:
c5:c0:05:74:03:ff:5e:18:d7:d8:56:3a:19:da:23:
8a:a6:cc:d8:70:1d:6f:5c:46:4f:f8:a0:80:87:3c:
1a:5c:2c:c8:34:ef:5f:e0:ff:ec:42:84:f0:59:43:
c8:0d:28:ef:e0:b7:2b:ea:23:7c:97:38:c9:75:f3:
c3:31:c7:70:ad:87:14:24:84:b6:6a:30:4d:ed:90:
20:26:b6:1a:7a:c1:3d:e3:9b:0a:27:f1:67:a0:c7:
2f:a6:00:19:40:7a:aa:9f:9a:a4:9c:3b:fc:a3:8b:
87:2b:53:04:e8:5a:25:03:5b:0d:19:66:da:9e:91:
6f:c8:4e:b2:c1:86:2d:ba:34:42:f7:34:32:87:a2:
90:77:8e:27:9e:0b:f9:6c:fe:b8:f6:e8:a1:93:f2:
31:b7:97:62:d6:16:7f:40:45:e3:68:73:75:6f:10:
06:39:90:af:08:26:a3:ed:54:35:f0:44:13:38:7a:
48:ca:68:ba:71:83:7f:2f:ae:3c:f7:a1:94:37:a1:
43:55:b6:c7:19:f8:3e:91:e2:fa:04:67:16:10:26:
73:81:52:81:fd:70:10:21:ee:89:e4:34:81:0a:f2:
47:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:06:FF:A8:65:C5:55:97:9C:63:D6:7B:B5:3A:61:E7:02:54:84:31
X509v3 Authority Key Identifier:
keyid:F2:10:BA:C9:6A:FF:25:B2:AA:93:1C:42:97:44:6B:E3:7F:FE:2A:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hC6yWr_JbKqkxxCl0Rr43_-Kto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/uwb_qGXFVZecY9Z7tTph5wJUhDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/8hC6yWr_JbKqkxxCl0Rr43_-Kto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.37.0.0/16
192.31.231.0/24
Signature Algorithm: sha256WithRSAEncryption
00:af:6d:60:8c:6c:1b:d4:ec:21:5d:91:d4:34:ac:a4:d0:58:
ff:48:dd:b7:8d:8f:71:f5:b7:c2:ed:45:42:39:44:47:96:c5:
ee:6e:41:58:cb:13:0a:3b:7f:f0:3b:dd:1f:62:0f:e2:64:e6:
0d:0e:d1:82:7c:20:bd:bb:1b:53:02:ed:7d:a3:21:a1:fc:ff:
26:74:4a:b2:d8:7d:18:f6:df:c9:57:48:96:fa:3a:dc:db:eb:
69:ab:39:ff:e4:78:2d:a6:df:11:6f:e3:27:a4:25:2f:92:88:
02:a4:e2:f5:08:8a:d4:6a:47:fd:a1:d7:32:54:f7:01:e8:22:
5d:d0:ca:4f:6d:98:39:34:e9:09:96:d5:eb:56:06:0f:1b:fb:
10:ad:0f:27:f6:35:c0:8c:80:58:f3:29:b0:ff:e9:eb:ae:f0:
f0:5e:fe:33:de:25:ba:f6:cc:7a:aa:c0:a7:ae:cf:72:ab:cb:
af:c6:f5:e9:dc:29:87:9e:fe:89:21:04:fd:bf:ca:70:07:25:
9c:c4:18:34:b5:71:8a:d7:8f:d9:4c:db:c6:31:0a:c5:a7:d1:
61:83:48:57:a9:be:dd:68:40:cd:c4:2f:14:4d:06:d1:ec:f6:
cc:30:44:75:b2:be:0c:9b:b4:b2:da:1e:d2:b3:80:b6:2d:fb:
0e:19:63:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:22:20 2025 by rpki-client