Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/uINUpkMkS6_dHQwl246GzH4dkNk.roa
File: uINUpkMkS6_dHQwl246GzH4dkNk.roa (raw, json)
Hash identifier: VV2RRFBdYcch6l0ERUz/71FCHeqpN+NwA4c+aUWcIko=
Subject key identifier: B8:83:54:A6:43:24:4B:AF:DD:1D:0C:25:DB:8E:86:CC:7E:1D:90:D9
Certificate issuer: /CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Certificate serial: 3C4BC271
Authority key identifier: 96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/uINUpkMkS6_dHQwl246GzH4dkNk.roa
Signing time: Sat 01 Jan 2022 13:57:37 +0000
ROA not before: Sat 01 Jan 2022 13:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20773
IP address blocks: 134.97.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1011597937 (0x3c4bc271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Validity
Not Before: Jan 1 13:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b88354a643244bafdd1d0c25db8e86cc7e1d90d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:56:f5:5c:ea:7b:18:e2:4a:a5:a1:76:3f:92:
f3:cf:22:9d:dd:39:0a:77:ef:1e:f9:64:ee:11:ee:
63:ee:52:65:93:e6:cc:16:d2:0f:5b:07:27:c1:83:
9c:dc:b1:2f:46:5d:09:4d:96:88:d4:71:84:5a:c3:
25:4c:83:4b:9e:38:0d:92:35:3b:0d:d2:d3:3d:88:
b6:20:81:12:ca:09:0d:22:62:ae:38:d5:3c:66:3b:
62:78:07:6b:f5:a0:9b:1d:b9:39:be:f7:df:9b:9c:
2c:82:ca:84:ba:34:ed:b6:0c:f8:89:29:0c:ab:32:
bb:e5:ed:9b:a6:ce:2c:39:9a:51:80:91:a2:ac:90:
ae:86:4b:5a:0d:29:40:69:c5:53:62:70:ff:7e:1b:
26:8b:c7:00:d9:2d:d9:05:b7:8e:4f:d9:af:df:5c:
38:00:3f:5e:b0:af:6e:e9:ef:e1:48:15:bf:35:69:
9a:3c:1b:95:f6:41:e7:8f:15:ef:ed:df:cd:fd:11:
90:09:21:14:1d:13:d5:95:0d:0b:0f:cb:03:4c:30:
77:01:3c:49:08:52:38:4d:b4:56:50:cd:a6:30:85:
d3:42:27:2a:b2:56:d2:2e:d1:f2:28:87:04:16:63:
a9:49:5d:00:5c:ca:73:d5:90:9d:8a:d7:71:56:6a:
92:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:83:54:A6:43:24:4B:AF:DD:1D:0C:25:DB:8E:86:CC:7E:1D:90:D9
X509v3 Authority Key Identifier:
keyid:96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/uINUpkMkS6_dHQwl246GzH4dkNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.97.4.0/24
Signature Algorithm: sha256WithRSAEncryption
52:30:91:e8:1f:d2:61:c8:2d:04:4b:c1:d1:d2:47:a7:7b:a2:
48:b9:64:75:66:a0:29:c3:3d:6c:bc:34:4c:55:ba:db:8a:59:
5f:e4:6a:17:38:36:98:77:07:cb:5d:90:e3:15:15:a0:c8:13:
cb:a8:d0:05:b5:f9:d5:7b:2b:e7:5d:e8:c0:43:92:4c:f5:55:
45:49:cf:1d:81:d9:04:56:63:6b:df:ec:07:f2:af:98:0c:ba:
5a:8c:2a:e5:94:03:8f:49:d4:6c:32:0e:c9:1a:ea:c4:08:77:
71:38:2b:75:b5:5e:e0:15:f8:2c:75:d7:3a:70:36:72:20:f0:
1f:8d:14:17:76:14:cf:17:3a:2e:9a:39:df:93:0a:1c:b2:c9:
40:86:58:9d:22:3b:8d:76:88:5b:13:a0:8b:07:af:bc:ca:c7:
c6:90:ae:0e:a1:69:41:2f:34:f7:29:37:9e:32:a9:1a:9a:06:
4e:3e:1f:83:2d:fc:f3:1b:37:d2:6c:04:28:6c:db:41:fc:56:
0a:23:ca:97:b6:ad:2f:81:99:63:55:ac:aa:6b:f1:3f:f0:6d:
65:24:b0:ad:e2:a2:d3:ff:05:9a:1a:16:39:33:b0:37:36:e3:
d0:77:7e:be:89:5b:c2:ad:25:37:3f:97:cb:c5:f3:c5:8f:c0:
ae:de:52:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:02 2024 by rpki-client on console-ams.rpki-client.org