Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/7ce3dc-68db-45bb-8e57-3e6198a512e0/1/UYBUkMbnrbW19bGI23scpI3yIIQ.roa
File: UYBUkMbnrbW19bGI23scpI3yIIQ.roa (raw, json)
Hash identifier: CnRqMr3p+ZC23rGx9Vrg1kPh2H8yYE+se/wy5VBpemA=
Subject key identifier: 51:80:54:90:C6:E7:AD:B5:B5:F5:B1:88:DB:7B:1C:A4:8D:F2:20:84
Certificate issuer: /CN=d7cb616ccfe0e866b427c0a45ef4181b0981e631
Certificate serial: 01E0BF41
Authority key identifier: D7:CB:61:6C:CF:E0:E8:66:B4:27:C0:A4:5E:F4:18:1B:09:81:E6:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18thbM_g6Ga0J8CkXvQYGwmB5jE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/7ce3dc-68db-45bb-8e57-3e6198a512e0/1/UYBUkMbnrbW19bGI23scpI3yIIQ.roa
Signing time: Sat 01 Jan 2022 12:07:09 +0000
ROA not before: Sat 01 Jan 2022 12:07:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8365
IP address blocks: 2001:67c:295c::/48 maxlen: 48
2001:67c:2184::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31506241 (0x1e0bf41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cb616ccfe0e866b427c0a45ef4181b0981e631
Validity
Not Before: Jan 1 12:07:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51805490c6e7adb5b5f5b188db7b1ca48df22084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:80:ce:a7:f0:b9:d5:cd:ed:14:68:65:f1:6e:
2a:87:2d:30:ba:40:37:59:9b:25:35:11:29:05:4d:
51:3e:60:48:b6:02:c0:8e:b9:2b:e3:b2:15:4f:48:
fc:06:83:10:17:71:2e:80:03:fa:ad:09:01:32:23:
01:14:76:25:00:dc:9a:bf:4e:d9:33:ab:71:53:5e:
2e:4a:52:26:ec:c7:a1:0e:e3:bb:fd:c9:94:4a:37:
57:ee:15:6e:a0:ec:63:1e:30:cc:b9:2d:ff:9b:f8:
49:bf:a8:8b:db:b2:8f:cf:41:e4:c9:20:c1:b9:da:
54:d5:2a:2f:05:c8:94:c4:82:fb:53:96:5e:39:d0:
fc:f4:ec:32:ce:8f:ee:5c:b0:6f:4b:2b:7e:af:ce:
6e:1e:0e:a2:55:91:99:55:df:2d:13:d2:89:33:13:
2d:eb:c4:0e:2e:dd:9a:72:8f:f0:5b:f8:e7:b5:74:
51:e5:5f:4c:97:43:f4:73:7e:70:20:84:2d:57:ca:
ec:dc:49:01:67:d5:c1:e7:19:2c:8b:da:2d:90:3d:
ed:b6:37:35:eb:0c:89:08:36:5e:b6:71:f8:da:90:
de:be:27:26:4f:8d:ba:65:47:83:95:09:e9:48:6c:
7a:d6:68:56:12:ce:04:bd:1e:b1:25:fd:7d:53:4d:
4a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:80:54:90:C6:E7:AD:B5:B5:F5:B1:88:DB:7B:1C:A4:8D:F2:20:84
X509v3 Authority Key Identifier:
keyid:D7:CB:61:6C:CF:E0:E8:66:B4:27:C0:A4:5E:F4:18:1B:09:81:E6:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18thbM_g6Ga0J8CkXvQYGwmB5jE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/7ce3dc-68db-45bb-8e57-3e6198a512e0/1/UYBUkMbnrbW19bGI23scpI3yIIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/7ce3dc-68db-45bb-8e57-3e6198a512e0/1/18thbM_g6Ga0J8CkXvQYGwmB5jE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2184::/48
2001:67c:295c::/48
Signature Algorithm: sha256WithRSAEncryption
9c:18:ec:a9:13:51:d0:02:b6:00:5e:2b:d9:e3:31:38:20:4f:
47:50:54:46:93:5b:01:68:4b:c4:f8:58:e9:54:00:2b:a2:01:
e9:8e:d4:37:e6:e4:25:a1:3f:32:bd:ea:76:f2:ee:97:1b:8d:
2c:1e:d2:d3:82:7f:55:16:c7:18:7b:a3:25:66:53:97:ec:d1:
98:3d:79:e8:62:74:db:34:ae:8e:1d:56:26:36:ef:1d:04:60:
22:ad:a2:56:ed:8c:59:50:54:e8:51:9a:96:47:28:fa:2b:9c:
a8:f7:50:2e:6f:fc:34:7e:5a:70:3a:57:25:cd:67:8c:3e:ff:
9d:16:60:fb:ae:80:18:b4:31:06:dd:9a:d0:2c:35:70:2c:da:
0a:6a:8a:91:5a:65:78:5d:04:de:b3:f3:8d:4a:f3:ef:f9:13:
d9:1b:70:7e:53:87:46:6d:ef:99:e4:14:40:d6:00:a5:fd:cf:
4a:d6:bc:2b:c4:df:56:05:57:04:42:76:f9:b9:82:57:e5:e2:
53:cc:12:ff:11:4f:fa:4a:5e:2f:ac:61:eb:5a:0c:fa:9f:87:
40:13:af:ef:e9:ef:43:46:22:72:24:ef:ab:34:13:cd:3b:b7:
5f:0f:51:21:6f:09:77:96:da:b0:22:01:56:6e:f0:8f:0d:8d:
53:f6:22:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:10 2024 by rpki-client on console-fra.rpki-client.org