Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/b203f4-8271-46e7-8a4a-f9e2c2fdbf35/1/U2ej70EwMPuFhW1JyGlz5XLS9Y0.roa
File: U2ej70EwMPuFhW1JyGlz5XLS9Y0.roa (raw, json)
Hash identifier: X19Pe4aH230IUOKFtU/bai/Bc/2r3zHtMdbVVXafCKA=
Subject key identifier: 53:67:A3:EF:41:30:30:FB:85:85:6D:49:C8:69:73:E5:72:D2:F5:8D
Certificate issuer: /CN=8ae139af0899f5d6b5b32581373eda3037ea30c0
Certificate serial: EF9D
Authority key identifier: 8A:E1:39:AF:08:99:F5:D6:B5:B3:25:81:37:3E:DA:30:37:EA:30:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuE5rwiZ9da1syWBNz7aMDfqMMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/b203f4-8271-46e7-8a4a-f9e2c2fdbf35/1/U2ej70EwMPuFhW1JyGlz5XLS9Y0.roa
Signing time: Thu 12 May 2022 17:25:29 +0000
ROA not before: Thu 12 May 2022 17:25:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 194.105.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61341 (0xef9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ae139af0899f5d6b5b32581373eda3037ea30c0
Validity
Not Before: May 12 17:25:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5367a3ef413030fb85856d49c86973e572d2f58d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5a:d0:cf:70:31:b6:dc:83:82:1d:cd:8d:34:
3d:c1:01:44:46:a7:c1:44:17:87:7b:9b:ba:8d:a7:
fd:50:b6:f0:27:0a:68:82:e0:5e:8e:d6:8b:6f:d5:
69:ed:f2:75:a2:1d:be:7b:14:e7:19:d0:70:72:c1:
29:3e:e8:13:b3:21:11:99:dd:a5:f4:e4:c7:d4:89:
ff:b5:36:ad:6d:09:f8:f4:6d:43:60:02:61:05:bf:
35:67:40:df:f6:7e:f4:fd:db:66:89:04:81:3b:76:
6d:c5:f4:70:b5:b3:f5:92:04:f4:cc:f1:05:61:88:
5c:a8:0b:c2:7c:4c:0f:69:5c:92:ea:88:57:81:08:
61:a3:13:e0:0b:45:53:ae:69:66:8a:cb:cb:96:bf:
2f:26:e5:2f:f1:8a:d2:53:dc:61:7e:ec:2f:35:d5:
06:e3:cc:5d:0e:52:e4:fb:78:17:2b:9b:15:04:70:
b5:b7:a5:99:43:2e:38:e6:0f:5f:0f:4b:73:7c:1f:
57:aa:28:77:d4:3d:b4:13:b3:fc:8c:38:c2:c4:94:
64:c8:9b:de:ef:62:fe:37:78:8e:31:06:aa:ed:73:
e8:ea:61:57:11:c3:5c:00:37:94:12:a3:59:c9:c6:
34:6a:ed:08:a4:94:83:d9:65:66:77:14:5c:ed:cb:
a0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:67:A3:EF:41:30:30:FB:85:85:6D:49:C8:69:73:E5:72:D2:F5:8D
X509v3 Authority Key Identifier:
keyid:8A:E1:39:AF:08:99:F5:D6:B5:B3:25:81:37:3E:DA:30:37:EA:30:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuE5rwiZ9da1syWBNz7aMDfqMMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b203f4-8271-46e7-8a4a-f9e2c2fdbf35/1/U2ej70EwMPuFhW1JyGlz5XLS9Y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b203f4-8271-46e7-8a4a-f9e2c2fdbf35/1/iuE5rwiZ9da1syWBNz7aMDfqMMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.19.0/24
Signature Algorithm: sha256WithRSAEncryption
44:26:19:64:d2:dd:37:03:75:5a:f6:f5:e1:92:a0:22:19:6e:
db:90:04:aa:5d:ed:fa:ac:9d:d0:b7:17:6d:f4:44:28:fa:e5:
0f:2e:10:1d:25:68:d2:57:f3:d9:d2:e1:db:44:9e:ea:c2:ff:
cf:8a:44:72:8a:57:40:6d:50:7c:a9:09:f2:05:37:6e:5f:2a:
db:d0:f6:4a:cf:41:13:67:0c:d0:fe:5b:7b:24:1b:f5:bf:40:
4c:7d:2a:4e:56:c3:e1:be:13:f0:97:02:67:6e:e5:ee:65:16:
e4:0f:f4:4f:84:34:2b:b0:13:fb:6b:f4:5c:f0:37:5f:ed:ac:
b3:4e:39:0e:dc:a4:9a:66:27:52:2c:fb:3c:53:eb:6e:e9:6b:
f1:77:70:2d:23:64:0e:00:7a:14:9c:4c:e9:18:56:7d:38:53:
1b:85:c9:47:6e:63:df:16:55:e8:dc:71:9f:b7:5a:70:7f:2d:
3f:2b:97:57:cd:6e:80:2f:27:c5:65:1e:d6:99:96:4e:f7:b4:
3e:45:3e:ca:eb:63:91:ef:60:eb:d0:88:53:82:e4:c0:1b:43:
05:24:13:d0:26:ee:9d:03:b7:62:07:bc:be:e0:b0:81:e7:9f:
f7:bb:aa:08:80:19:fd:be:ec:f6:75:0f:a2:2e:bf:1e:58:61:
a8:24:5d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:36 2024 by rpki-client on console-ams.rpki-client.org