Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/UtqV9LCtZ2nGcYnT2jTRSCZDlKE.roa
File: UtqV9LCtZ2nGcYnT2jTRSCZDlKE.roa (raw, json)
Hash identifier: 6z1NqMId6DonRCxn1f2jwpG9CWtZgtC5bMD0YOnixI8=
Subject key identifier: 52:DA:95:F4:B0:AD:67:69:C6:71:89:D3:DA:34:D1:48:26:43:94:A1
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 04405C4F
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/UtqV9LCtZ2nGcYnT2jTRSCZDlKE.roa
Signing time: Mon 21 Mar 2022 06:45:42 +0000
ROA not before: Mon 21 Mar 2022 06:45:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206804
IP address blocks: 193.36.119.0/24 maxlen: 24
195.80.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71326799 (0x4405c4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Mar 21 06:45:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52da95f4b0ad6769c67189d3da34d148264394a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7f:2d:1f:92:69:1a:59:eb:93:e4:5b:a5:43:
c1:33:87:00:c2:ab:e4:a0:b6:84:8a:1e:ad:16:71:
76:4a:4f:4e:ec:f2:6a:ed:91:1f:a6:1d:94:c2:30:
f0:6b:f3:03:45:25:f1:9c:ea:da:bb:d9:ba:ee:47:
ba:67:cf:1d:5b:21:6d:cc:04:77:9a:89:57:32:30:
80:1d:65:7f:6e:b0:88:c0:e4:bb:75:1e:d5:57:c8:
bc:e8:b2:fb:2a:96:e0:89:b2:80:4f:dc:5d:3e:a9:
b4:14:f4:e3:35:01:3e:08:d2:81:d7:3c:f8:a9:2c:
91:fc:79:2d:ef:82:93:d3:80:b3:49:8e:26:8f:7c:
40:93:23:e6:6f:d3:3d:94:0e:ca:3c:3b:e9:d6:6c:
34:b0:02:9b:c2:e2:ee:f4:64:21:c6:7f:98:bd:70:
df:0c:07:b2:7a:06:5d:65:16:53:c2:f0:7e:90:92:
e6:58:97:87:49:1e:13:30:70:91:7c:a0:95:f8:38:
65:da:48:8c:6f:15:0c:6b:7a:bc:6d:d1:9e:9f:f0:
7d:06:97:8d:0f:28:39:43:c7:17:96:bc:da:59:59:
ab:60:49:ba:9e:70:b1:8c:4f:df:65:87:b1:a1:66:
2c:0c:76:36:53:b1:a2:93:de:41:16:e4:34:7a:70:
57:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DA:95:F4:B0:AD:67:69:C6:71:89:D3:DA:34:D1:48:26:43:94:A1
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/UtqV9LCtZ2nGcYnT2jTRSCZDlKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.119.0/24
195.80.148.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:c7:cd:87:38:04:29:1a:e0:c6:f5:89:c3:3c:e3:31:1c:8e:
51:c6:5f:ad:05:ca:c9:69:0f:3d:e8:5e:4a:55:c0:49:7c:f8:
0f:e2:33:d1:69:3f:0c:a3:ec:22:81:2a:81:e8:89:54:29:5f:
3a:07:1d:e5:97:45:21:9a:80:91:2f:0a:da:b0:f7:4e:e7:63:
d5:63:56:3a:09:0f:63:08:49:35:f5:64:87:fe:f0:7a:4e:59:
2c:fa:7c:52:76:e0:b3:d2:64:0e:58:ad:61:23:08:4d:3d:7c:
a9:6e:a9:fe:23:d4:89:65:29:99:ec:76:cc:4e:e7:07:46:29:
1f:6e:ae:b4:99:e7:a2:dc:7a:79:f7:55:3e:cc:8b:12:f9:d7:
88:d4:76:66:52:a5:f0:9a:c4:bd:dd:cb:d1:04:67:83:82:93:
f7:fa:20:5e:7f:d3:59:6e:8b:32:78:4e:20:c7:15:1d:8a:d6:
82:0b:03:8c:12:83:17:18:e4:96:f2:52:45:5f:de:7a:01:67:
6f:73:1b:41:70:af:29:c6:6d:78:b9:0e:52:90:f2:ee:14:26:
5c:4f:e7:fe:91:43:e2:e2:96:52:bd:b8:7c:c7:66:fd:13:d9:
cc:4f:b0:d4:9c:a4:a9:7e:9e:e6:74:0b:c0:cf:6e:24:6c:63:
1c:db:c8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org