Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/uLiz9IzeE-Y0mS_d7cXHE4PoVDU.roa
File: uLiz9IzeE-Y0mS_d7cXHE4PoVDU.roa (raw, json)
Hash identifier: yUu8jyt3xYOCDIfFPJ3brQwHpmwVOX7LWQWErmRap+0=
Subject key identifier: B8:B8:B3:F4:8C:DE:13:E6:34:99:2F:DD:ED:C5:C7:13:83:E8:54:35
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 01851B10A9F24FC595550A3538260E994932
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/uLiz9IzeE-Y0mS_d7cXHE4PoVDU.roa
Signing time: Fri 16 Dec 2022 13:12:34 +0000
ROA not before: Fri 16 Dec 2022 13:12:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 193.56.217.0/24 maxlen: 24
2a05:a880:dc20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1b:10:a9:f2:4f:c5:95:55:0a:35:38:26:0e:99:49:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Dec 16 13:12:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8b8b3f48cde13e634992fddedc5c71383e85435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:02:4a:4c:ff:b7:81:fd:d9:47:b9:c2:ab:38:
7b:e1:cc:79:f6:ac:fa:85:01:cf:38:f1:75:14:b8:
35:56:3c:0a:d1:56:f7:ed:2e:bd:9b:92:d4:6c:19:
ee:cd:12:9c:86:96:a2:05:26:8a:b4:e8:0e:0e:19:
61:6e:b6:a3:cd:be:3e:53:c0:2c:b5:23:df:40:b8:
55:0c:4f:e9:74:45:11:8f:c7:d2:28:ab:02:05:2a:
50:c3:e6:10:80:49:c1:b9:d5:b2:98:b6:92:13:91:
79:4f:1a:e0:8f:33:a2:a6:15:17:a9:5e:60:be:32:
3c:68:5c:94:ba:76:3f:61:03:74:d3:e1:54:c5:41:
15:cf:a7:ed:90:7a:4e:e2:a1:00:07:53:fc:1c:07:
37:54:a1:ac:e9:92:66:2a:ff:40:2f:c6:f7:a7:05:
f6:e0:2c:50:8c:b9:33:23:ce:8c:2f:22:75:47:fa:
37:54:63:67:bc:44:72:3a:ef:f9:b7:53:da:ed:5d:
7a:81:56:16:07:f1:b1:7c:5e:61:eb:23:a5:da:47:
e3:bc:c5:ea:93:3a:c1:71:26:c8:2e:39:07:29:d1:
fe:18:6c:fc:4d:2d:58:8d:0c:18:b9:56:b1:fc:45:
ff:fd:f0:1b:80:47:58:43:f8:5e:d7:21:6c:86:d9:
ee:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B8:B3:F4:8C:DE:13:E6:34:99:2F:DD:ED:C5:C7:13:83:E8:54:35
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/uLiz9IzeE-Y0mS_d7cXHE4PoVDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.217.0/24
IPv6:
2a05:a880:dc20::/48
Signature Algorithm: sha256WithRSAEncryption
7b:cc:cc:83:02:35:e8:d9:7a:66:4b:f0:b6:32:ee:8d:ca:8f:
e2:32:04:53:ed:97:8a:7e:e4:8d:14:8d:d2:67:dc:d0:32:96:
02:54:89:87:86:6a:f5:a6:53:67:3d:ec:a2:e6:63:9a:86:0d:
09:df:57:55:f3:36:ce:b0:00:06:f8:66:39:97:c4:a4:73:d4:
98:9d:49:60:84:90:e8:fa:d3:43:82:67:c3:45:eb:68:09:94:
c8:82:28:33:d1:c8:b5:21:a3:94:23:7d:3c:7a:e2:aa:05:ea:
2b:44:8e:a4:5c:e4:f1:aa:74:a0:f2:0f:f1:ed:b6:a0:eb:93:
c2:8d:2e:50:99:fd:ba:4f:4d:db:c1:4f:32:e9:ae:fc:30:a7:
a1:46:55:6d:3e:77:35:49:0d:4e:08:cc:e6:b0:5a:66:9e:18:
33:af:a3:dd:f5:15:b4:76:28:60:97:18:b9:27:b7:d0:f1:68:
f3:86:ca:f5:da:3d:a1:02:e7:8b:77:ae:c6:c0:05:6b:51:1c:
32:0a:31:00:36:6f:b5:c7:44:b6:97:5a:41:0c:be:16:59:ce:
e6:1a:79:ec:c4:bb:36:db:38:2b:b3:b9:e6:a3:01:49:00:d1:
9a:a2:f5:1e:f0:21:24:11:60:41:7b:e3:04:3e:a2:17:17:32:
55:d2:24:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:42 2024 by rpki-client on console-fra.rpki-client.org