Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Ugu1J02A8JfukhqjeTLmB_GYNBA.roa
File: Ugu1J02A8JfukhqjeTLmB_GYNBA.roa (raw, json)
Hash identifier: PMX/u/AyKgwl0oqGUPrr+XfryCLZaGincz3J/d/E8lo=
Subject key identifier: 52:0B:B5:27:4D:80:F0:97:EE:92:1A:A3:79:32:E6:07:F1:98:34:10
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 018391ADC72AD8C8E64D45E6007659E7D1CC
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Ugu1J02A8JfukhqjeTLmB_GYNBA.roa
Signing time: Sat 01 Oct 2022 03:53:48 +0000
ROA not before: Sat 01 Oct 2022 03:53:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212335
IP address blocks: 213.139.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:91:ad:c7:2a:d8:c8:e6:4d:45:e6:00:76:59:e7:d1:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Oct 1 03:53:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=520bb5274d80f097ee921aa37932e607f1983410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6b:09:c5:26:bd:46:01:bc:0d:52:d1:c1:cb:
a5:f3:aa:18:20:5f:0e:8c:c8:b2:a8:a2:ee:98:0b:
50:db:2f:e1:04:a2:6d:5b:57:69:63:9b:0f:f4:56:
f9:bd:ba:77:8d:8a:36:cb:f2:bc:a3:0a:86:91:d7:
9e:bb:c2:55:a4:8c:d3:a1:4d:88:44:39:1f:95:1e:
34:c7:b4:d7:3d:f3:1a:e9:d1:b0:ab:b4:ec:89:10:
a7:d1:ba:21:b3:3f:7c:c6:b6:1b:19:76:78:b1:ec:
0c:96:4a:d6:b9:11:b1:43:31:e5:25:15:86:30:15:
8c:3a:e2:7d:f5:57:e7:49:40:bc:62:bd:5f:37:6d:
8f:6a:f0:37:3c:e2:c2:4b:df:63:dd:64:c1:a7:ce:
8e:b4:75:ad:50:17:cf:73:88:e1:dc:d4:06:73:87:
0d:25:e8:f1:01:9a:0e:d5:8b:30:e8:ad:2b:42:ec:
88:6f:6a:16:9b:c8:43:c9:7f:ce:cb:40:aa:6f:76:
83:f1:94:a4:ee:c8:c3:4e:bc:d2:03:8d:ca:f7:26:
98:7c:0e:02:9f:bb:d0:62:f5:95:e1:f2:e9:71:f3:
7b:8b:69:13:88:a9:46:04:4e:61:3d:37:87:e0:c0:
51:e1:2d:20:9a:7b:16:c0:32:78:42:b8:e0:04:1a:
58:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0B:B5:27:4D:80:F0:97:EE:92:1A:A3:79:32:E6:07:F1:98:34:10
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Ugu1J02A8JfukhqjeTLmB_GYNBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.204.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:7d:e8:6d:04:01:80:32:96:cc:23:0b:65:e4:f4:51:24:cf:
1c:16:2b:a3:fc:32:b3:46:88:72:06:33:f8:66:9a:54:b5:c0:
01:f5:1e:fc:09:09:11:ba:70:86:d3:f0:ac:d1:13:dd:9e:1d:
63:ca:d9:b8:9b:35:bb:5f:92:24:e5:0d:e8:56:6b:7c:ae:22:
c5:ad:5f:8d:22:59:c0:0e:c3:24:52:58:6f:28:fe:fe:c9:2d:
80:82:af:05:b1:d8:bb:16:40:d8:1e:32:62:39:e9:12:fc:ab:
05:4d:28:c5:5f:ca:b4:d3:83:c4:cc:d7:08:47:af:20:a1:eb:
34:7e:b4:30:46:6c:4b:7b:9d:b1:d0:68:87:b9:e9:85:a6:81:
5e:fa:5d:7d:6a:a5:16:e6:69:24:46:cc:6b:4a:3b:74:a3:03:
21:62:61:e2:b1:ce:0e:3f:8e:d2:82:03:b4:53:b9:12:e6:72:
01:fa:2b:b1:80:e4:89:3d:dc:75:31:bf:a0:41:17:00:0c:84:
af:02:61:f0:be:d7:7c:bc:a7:67:43:2e:9a:0b:7c:71:dc:23:
31:88:cc:4c:8a:bb:35:01:88:6d:87:ac:17:b9:fe:14:05:e7:
12:51:a9:be:fd:4d:a0:18:dd:68:5e:f2:33:9a:34:11:f0:0c:
8e:52:41:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org