Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/f539cb-14bf-48a2-a835-ce8d2dd43066/1/uyp-P8DcQ7WHX5bbYdO1BisweuU.roa
File: uyp-P8DcQ7WHX5bbYdO1BisweuU.roa (raw, json)
Hash identifier: kExMDeAyUyBH4JsaBSgRU8BC3egNiKmRoe50XHenX3A=
Subject key identifier: BB:2A:7E:3F:C0:DC:43:B5:87:5F:96:DB:61:D3:B5:06:2B:30:7A:E5
Certificate issuer: /CN=53122e03a841b8878963affff695ca4f9fd0682c
Certificate serial: 021DA381
Authority key identifier: 53:12:2E:03:A8:41:B8:87:89:63:AF:FF:F6:95:CA:4F:9F:D0:68:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxIuA6hBuIeJY6__9pXKT5_QaCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/f539cb-14bf-48a2-a835-ce8d2dd43066/1/uyp-P8DcQ7WHX5bbYdO1BisweuU.roa
Signing time: Thu 30 Jun 2022 09:59:02 +0000
ROA not before: Thu 30 Jun 2022 09:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59437
IP address blocks: 91.226.226.0/24 maxlen: 24
2a0c:3c80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35496833 (0x21da381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53122e03a841b8878963affff695ca4f9fd0682c
Validity
Not Before: Jun 30 09:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb2a7e3fc0dc43b5875f96db61d3b5062b307ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d4:b3:70:67:c6:c5:32:20:bf:5e:21:67:9e:
d1:4b:22:31:09:71:e8:96:c0:50:93:3d:34:ec:3a:
3f:1d:98:b6:74:16:49:d1:d3:ed:ea:fd:ae:18:aa:
54:c3:84:ba:ad:b9:d8:6d:97:3d:ba:69:0c:b4:b5:
ec:61:f1:08:b1:0c:d6:3d:51:a7:fa:5d:35:5d:1c:
6f:7d:fd:4f:f3:69:02:95:2e:b0:0b:31:3e:4f:1a:
ad:27:b4:05:c7:66:f1:90:67:9b:d0:af:39:77:aa:
86:b6:56:77:ad:d7:26:0e:c4:84:52:b5:38:ef:0c:
9a:6f:29:bc:9b:e4:74:79:39:19:7c:1b:d3:f4:48:
f9:44:33:c7:d2:f8:7b:ca:fa:25:af:0f:09:b0:a4:
4c:88:27:6a:b9:6e:da:57:2c:f0:43:6d:db:96:28:
e2:b3:c6:00:37:13:56:d4:cc:1c:50:5d:e7:6f:c3:
01:be:8e:da:25:da:d8:7e:56:7c:9c:f8:2e:ba:c0:
44:1e:de:88:37:8f:46:ae:3e:23:99:c7:fe:69:70:
28:f4:1d:2f:66:20:a1:20:03:e2:15:f2:8c:f0:0c:
a0:14:c9:3e:f1:aa:1b:b5:07:ec:68:c8:d5:d4:51:
c6:f6:24:10:ac:d6:38:b3:01:0d:f6:a8:36:ea:7e:
2d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2A:7E:3F:C0:DC:43:B5:87:5F:96:DB:61:D3:B5:06:2B:30:7A:E5
X509v3 Authority Key Identifier:
keyid:53:12:2E:03:A8:41:B8:87:89:63:AF:FF:F6:95:CA:4F:9F:D0:68:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxIuA6hBuIeJY6__9pXKT5_QaCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f539cb-14bf-48a2-a835-ce8d2dd43066/1/uyp-P8DcQ7WHX5bbYdO1BisweuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f539cb-14bf-48a2-a835-ce8d2dd43066/1/UxIuA6hBuIeJY6__9pXKT5_QaCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.226.0/24
IPv6:
2a0c:3c80::/29
Signature Algorithm: sha256WithRSAEncryption
21:6e:d9:e3:12:c0:10:fa:42:22:aa:0b:c4:3a:18:89:75:85:
f7:40:16:39:68:c7:c4:79:dd:58:c2:96:0d:da:cb:82:a5:65:
a9:09:9b:c6:25:98:8e:ef:f5:0a:51:04:ae:bc:73:e4:81:75:
1f:a6:cd:bd:72:8e:fd:a6:3f:ec:e6:13:db:2d:ba:3e:a4:02:
22:33:3a:1c:45:32:6b:5a:ad:4d:fe:48:fe:f1:3b:66:6e:c1:
2e:95:fc:4a:0b:53:7d:0e:d9:ab:a1:b2:30:58:a5:d5:21:7c:
a1:1f:c0:05:53:51:bb:d1:29:3a:db:4b:96:07:8b:ec:80:9f:
85:20:e2:5f:15:28:c9:49:a2:6d:b3:ed:2d:0a:bb:ff:04:e8:
38:d0:fb:18:ce:4c:e1:93:55:2a:64:63:dc:5b:c1:a2:2f:99:
fd:38:5d:b2:7e:a8:0b:1e:26:bd:d0:c0:8d:5a:3b:d4:f0:f9:
d6:cc:66:4a:3d:e7:21:ac:df:01:16:b0:2d:16:d8:b6:04:3c:
81:c6:b1:fb:1b:55:e1:7c:94:df:55:3a:76:bf:f7:d7:55:72:
c4:17:24:30:42:2e:f1:5f:93:7c:1c:97:b9:3d:a5:0f:c9:52:
19:92:35:1d:80:cc:ba:5f:e4:91:cb:9c:0a:24:33:10:25:ed:
0c:22:3a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:23 2024 by rpki-client on console-ams.rpki-client.org