Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/uoKj0yu3ecJegq6Kmyr71o8EO_U.roa
File: uoKj0yu3ecJegq6Kmyr71o8EO_U.roa (raw, json)
Hash identifier: 3iIiXq7ORrHAXa5xlr+ZUglOyXUGBvYRnENQCqCQmoM=
Subject key identifier: BA:82:A3:D3:2B:B7:79:C2:5E:82:AE:8A:9B:2A:FB:D6:8F:04:3B:F5
Certificate issuer: /CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Certificate serial: 012C4737
Authority key identifier: 9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/uoKj0yu3ecJegq6Kmyr71o8EO_U.roa
Signing time: Sat 01 Jan 2022 11:59:10 +0000
ROA not before: Sat 01 Jan 2022 11:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6461
IP address blocks: 2.56.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19679031 (0x12c4737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Validity
Not Before: Jan 1 11:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba82a3d32bb779c25e82ae8a9b2afbd68f043bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e8:47:43:f9:fa:55:21:63:af:98:20:7b:17:
d0:a9:ce:38:f2:28:0b:7a:8d:e4:35:45:5c:fb:b8:
8b:d2:87:f2:e0:51:5b:f4:36:da:fd:35:ed:6b:9f:
24:d4:7a:0b:1f:f4:f1:82:4a:39:50:c1:5e:8e:c3:
32:d0:ec:55:53:2f:25:99:b8:43:ab:58:32:0b:fc:
6a:32:73:82:0e:8c:23:4a:f2:ed:47:6c:f5:71:99:
ea:14:1b:a0:b8:38:48:f2:d2:d4:38:1d:3a:2c:f5:
11:33:7b:23:5e:66:52:80:79:a4:29:a0:fa:fb:5b:
e5:4f:46:da:cc:a1:85:1f:b9:fe:99:e3:12:86:b3:
a5:90:c3:0a:8e:43:19:9c:e8:d9:ac:6b:b6:60:13:
5b:c7:7a:55:4b:aa:37:33:62:fe:35:ce:19:92:03:
90:10:ba:af:1d:71:db:60:87:1d:c7:78:f6:41:4a:
4c:63:db:c0:ff:86:2b:a8:b6:1f:6e:dc:c1:b3:1b:
40:46:1b:0e:ba:24:58:4d:c3:ec:e4:15:ec:75:f3:
78:2c:aa:d4:d9:e9:ad:19:92:1e:14:fc:a1:1b:66:
28:79:87:3f:17:26:c2:b5:77:9c:2c:6c:f6:ce:13:
f9:72:15:a9:70:fe:f9:8b:36:da:03:87:48:7d:b6:
5a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:82:A3:D3:2B:B7:79:C2:5E:82:AE:8A:9B:2A:FB:D6:8F:04:3B:F5
X509v3 Authority Key Identifier:
keyid:9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/uoKj0yu3ecJegq6Kmyr71o8EO_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/nLJc5VDk2b2gW9XUXItro3Qwu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.32.0/22
Signature Algorithm: sha256WithRSAEncryption
80:14:d5:9a:30:74:cd:3e:20:52:a3:2c:4e:f2:72:dd:c0:8d:
a1:13:cb:d5:fc:15:0a:cb:8a:b7:91:a1:22:30:aa:96:bd:29:
aa:a2:7a:3d:c4:e4:95:9a:85:aa:79:39:c2:c2:b2:f9:6b:37:
2d:15:3a:ab:f4:3c:bb:f4:19:f9:44:23:a4:cd:c3:57:1c:25:
48:94:58:fb:3e:fa:e5:38:f4:10:d3:c0:91:aa:1c:6c:f6:c1:
24:fa:f4:2c:a0:80:e5:ea:4f:02:25:a4:01:89:78:a5:e2:15:
bb:78:28:7d:f3:51:56:76:47:cc:9c:ab:f1:15:ad:d3:c4:49:
0f:10:31:44:03:68:cd:2a:73:37:51:5c:27:5d:c0:27:13:90:
a9:8a:cf:09:64:47:49:f1:aa:5c:81:05:40:e0:27:9e:22:cb:
32:e0:a7:f5:a1:3e:42:e1:8b:94:79:2d:5f:54:50:1c:62:60:
5f:85:ee:c5:18:f9:fb:e7:35:4d:c2:62:f4:9b:4b:c3:ee:80:
5f:2a:41:45:66:11:94:7e:de:c9:d8:a6:ac:32:8c:3d:f6:4a:
c7:d2:35:84:52:8f:15:5c:30:76:6f:ec:56:15:64:55:e8:3d:
bb:6b:3b:8f:c6:ab:ba:7f:73:ca:0c:a3:da:57:f3:9e:bd:c0:
d2:e2:5c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:39 2023 by rpki-client on console-ams.rpki-client.org