Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/uoCxmuSmw9XLoYeOxpHYnllTLHQ.roa
File: uoCxmuSmw9XLoYeOxpHYnllTLHQ.roa (raw, json)
Hash identifier: oJdEpk+MNAgjjzx5jWS/WJsUF7vPf5PcEEthjl8s8ZQ=
Subject key identifier: BA:80:B1:9A:E4:A6:C3:D5:CB:A1:87:8E:C6:91:D8:9E:59:53:2C:74
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 0184D33E087516A8F314D98498245D6E0D67
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/uoCxmuSmw9XLoYeOxpHYnllTLHQ.roa
Signing time: Fri 02 Dec 2022 14:29:28 +0000
ROA not before: Fri 02 Dec 2022 14:29:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25009
IP address blocks: 82.96.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:3e:08:75:16:a8:f3:14:d9:84:98:24:5d:6e:0d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Dec 2 14:29:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba80b19ae4a6c3d5cba1878ec691d89e59532c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:99:38:ff:9e:8c:de:7d:9e:c5:0a:26:db:a5:
56:91:ea:97:40:89:d1:a3:5f:8c:37:16:21:f2:61:
cd:21:8a:fa:0d:5f:53:0a:bc:f5:9e:c5:dc:b1:a3:
8b:34:91:e9:8f:1b:b7:d3:0d:1a:76:d9:93:76:cb:
92:06:90:a0:29:d8:fe:26:3b:65:2d:7e:fc:d1:98:
81:d1:d1:46:a4:26:71:b5:31:17:bd:b7:50:0a:f5:
80:8c:d0:b1:0e:1b:6d:d3:6d:99:5f:b2:a5:55:a7:
18:0d:58:21:8d:a5:27:e1:43:9b:c4:cb:ae:5c:65:
f5:cb:ef:fb:44:94:00:87:6e:3d:5f:0b:78:88:bd:
d4:77:2d:c3:19:60:a9:a5:38:1f:5e:b7:c4:79:30:
73:09:d3:a1:aa:d2:e7:9a:8a:01:8b:46:3f:39:71:
d5:5d:fe:f1:e4:82:95:50:79:58:80:b8:bd:20:d2:
8e:03:38:e5:49:8d:47:d0:3a:84:18:d6:7b:21:f3:
69:a0:91:c6:26:13:27:0e:8b:df:ff:93:3d:f1:f3:
2e:3e:12:01:05:00:44:ea:d5:64:e3:62:9d:ee:c1:
b4:7b:5c:d9:c1:c2:53:9a:99:09:e4:4b:18:3e:f9:
bf:c6:7a:00:2b:0c:15:ee:c7:ea:fb:2e:4a:e1:62:
09:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:80:B1:9A:E4:A6:C3:D5:CB:A1:87:8E:C6:91:D8:9E:59:53:2C:74
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/uoCxmuSmw9XLoYeOxpHYnllTLHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.96.128.0/18
Signature Algorithm: sha256WithRSAEncryption
05:a6:40:68:cf:77:31:99:69:26:61:2f:99:c5:00:22:82:d0:
01:8a:de:1d:ae:90:a9:e9:dc:35:5b:55:ec:ce:71:6f:24:ca:
8b:19:1d:9d:95:ac:4a:3f:71:8b:ff:b1:57:76:76:24:71:3d:
ab:f9:bd:2c:7b:20:ac:7f:12:0b:fe:6a:a6:cb:81:2d:54:11:
18:c8:10:4c:1a:e0:ae:8b:c0:92:a7:ae:6d:72:20:15:13:04:
08:ea:21:b5:8a:7c:12:a3:71:47:0b:e5:9e:b6:27:2c:39:ba:
bb:17:f3:95:0c:2b:12:d4:89:fc:7a:f8:2c:2f:2e:6c:73:12:
c6:1f:e6:da:f5:97:7c:9a:28:9c:07:96:d6:39:3b:48:66:63:
d0:7f:59:5b:63:c8:14:4c:24:18:07:79:6a:42:74:f7:b2:2b:
c7:fb:60:b5:e4:62:75:ac:f7:90:82:02:9a:b4:8a:6f:a3:6c:
f1:7a:e7:4c:3f:95:81:c9:91:cd:9e:2a:90:65:8f:1b:34:5f:
0b:dc:2f:7a:58:c6:3e:55:54:e3:dc:dd:c9:42:e3:e5:96:d3:
7c:9d:1f:43:bf:08:ed:65:38:0f:f3:2d:cd:ad:54:00:4c:1b:
83:48:83:a9:f2:dc:62:c0:24:34:2b:5e:65:15:cc:92:70:22:
ec:ef:36:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org