Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/uxmu9OUs6bwhMtQspwIXVC0EcGM.roa
File: uxmu9OUs6bwhMtQspwIXVC0EcGM.roa (raw, json)
Hash identifier: KZOVN2BBYYDTLiDfzwV8/6FuzaoDL/XyP/oYev/vDW8=
Subject key identifier: BB:19:AE:F4:E5:2C:E9:BC:21:32:D4:2C:A7:02:17:54:2D:04:70:63
Certificate issuer: /CN=d79d856aaa9ead12f75cb68cdae96a0d2c8dde1e
Certificate serial: 011CAE96
Authority key identifier: D7:9D:85:6A:AA:9E:AD:12:F7:5C:B6:8C:DA:E9:6A:0D:2C:8D:DE:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/152FaqqerRL3XLaM2ulqDSyN3h4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/uxmu9OUs6bwhMtQspwIXVC0EcGM.roa
Signing time: Sat 01 Jan 2022 04:02:49 +0000
ROA not before: Sat 01 Jan 2022 04:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5416
IP address blocks: 193.188.13.0/24 maxlen: 24
193.188.12.0/23 maxlen: 23
193.188.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18656918 (0x11cae96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79d856aaa9ead12f75cb68cdae96a0d2c8dde1e
Validity
Not Before: Jan 1 04:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb19aef4e52ce9bc2132d42ca70217542d047063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:99:4b:58:25:fa:58:a1:6d:a4:83:b0:b4:
06:2f:02:18:1b:23:6c:3b:a5:33:63:79:6e:a3:ae:
23:1f:f5:ed:50:03:35:54:8a:83:6c:56:18:23:40:
2d:22:c1:7e:a8:20:b1:f4:5b:8a:88:95:21:ba:e5:
e7:26:49:b3:8e:09:93:d7:ba:45:53:58:ea:59:ff:
a3:ba:71:88:7c:e1:f4:0a:f2:74:f3:07:21:92:e5:
b2:e5:0b:f8:54:82:25:c5:57:1a:da:89:0e:76:c0:
e8:d6:65:9c:4f:6d:db:a1:e3:d6:e0:be:ee:a4:0e:
a9:cd:3a:33:dc:00:f5:92:ff:af:b5:a4:92:80:8c:
6d:c5:4c:ca:31:b0:43:1e:a0:39:1d:6e:c8:bf:51:
36:f3:f2:9a:33:8f:4f:7f:df:6d:6f:af:29:fb:99:
eb:49:ea:da:d0:a4:0f:b1:fa:0b:e0:8a:c5:a7:6d:
bf:e9:d8:79:69:74:10:d6:18:06:20:b6:a1:07:7d:
1a:55:57:64:56:11:31:ba:de:7b:f7:d6:a7:dc:36:
fd:1b:c8:e6:67:cf:32:67:2b:b9:55:48:10:85:81:
77:9a:16:f1:2c:12:02:4a:db:81:d9:e7:c2:eb:54:
6f:bc:81:2d:64:37:d3:48:30:54:d4:b6:6a:d0:c2:
5a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:19:AE:F4:E5:2C:E9:BC:21:32:D4:2C:A7:02:17:54:2D:04:70:63
X509v3 Authority Key Identifier:
keyid:D7:9D:85:6A:AA:9E:AD:12:F7:5C:B6:8C:DA:E9:6A:0D:2C:8D:DE:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/152FaqqerRL3XLaM2ulqDSyN3h4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/uxmu9OUs6bwhMtQspwIXVC0EcGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a5baa2-2a35-4c76-a940-5990cd4de88b/1/152FaqqerRL3XLaM2ulqDSyN3h4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.12.0/23
Signature Algorithm: sha256WithRSAEncryption
46:55:24:db:c0:1a:b0:1e:23:fe:6d:46:59:58:58:a3:71:c6:
03:34:26:ec:00:50:69:83:57:dd:cd:8e:ff:46:2b:2a:6f:d1:
0b:55:b8:83:c5:d3:16:93:51:8f:fb:be:d3:3a:3e:fe:a3:3e:
06:26:07:6c:b6:dd:8a:6c:6d:62:97:f6:8d:be:9f:1d:80:ed:
fe:55:6f:bc:8a:96:72:f2:c6:c4:d7:aa:25:67:49:3a:b7:fb:
74:04:f9:8d:11:ce:1d:c7:44:a0:92:46:d1:e1:d6:5b:98:ba:
4f:39:39:73:2c:b2:9e:57:ca:80:f8:0b:f1:f1:cc:81:02:12:
83:b3:62:80:d4:a3:9e:f5:a9:d5:fe:86:6a:8e:44:4e:6c:7a:
cd:85:83:1f:a8:fa:70:24:9c:9c:34:7f:fd:fa:01:3b:4c:ba:
61:5b:d0:28:f0:1c:2e:a9:80:0c:cc:aa:8d:cd:91:ba:b2:3d:
95:88:4d:21:5b:65:fd:e4:37:f3:be:3d:21:aa:75:a3:f2:2d:
5e:62:13:6d:e2:7c:94:33:24:bf:88:0c:5d:95:e1:de:5b:91:
be:44:7c:81:0b:a5:85:26:1b:3c:e4:a2:7c:da:a1:07:11:d3:
6e:35:b6:9f:8e:a0:d4:d6:fc:31:df:1b:45:8c:ca:ee:c1:95:
f4:59:77:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:09 2023 by rpki-client on console-fra.rpki-client.org