Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/bbba88-1344-4d89-8f52-6df7bf59e326/1/1-uAKYGaByW8T54cTFSdDvczm76g.roa
File: 1-uAKYGaByW8T54cTFSdDvczm76g.roa (raw, json)
Hash identifier: pr3JPQSB62Emz9gY4k+LLXhN2TsJRkQPx+MA/dnImzk=
Subject key identifier: FA:E0:0A:60:66:81:C9:6F:13:E7:87:13:15:27:43:BD:CC:E6:EF:A8
Certificate issuer: /CN=252c4e2bf5f2138462ef4a5d9e0f6e7a763530fe
Certificate serial: 02A01025
Authority key identifier: 25:2C:4E:2B:F5:F2:13:84:62:EF:4A:5D:9E:0F:6E:7A:76:35:30:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSxOK_XyE4Ri70pdng9uenY1MP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/bbba88-1344-4d89-8f52-6df7bf59e326/1/1-uAKYGaByW8T54cTFSdDvczm76g.roa
Signing time: Sat 01 Jan 2022 02:50:38 +0000
ROA not before: Sat 01 Jan 2022 02:50:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211987
IP address blocks: 185.234.102.0/24 maxlen: 24
2a10:da80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44044325 (0x2a01025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=252c4e2bf5f2138462ef4a5d9e0f6e7a763530fe
Validity
Not Before: Jan 1 02:50:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fae00a606681c96f13e78713152743bdcce6efa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:72:6a:7b:81:b5:10:83:0d:55:58:2a:2a:f6:
ee:1c:6e:71:4b:28:ed:6f:98:dc:28:57:96:f2:fb:
f4:b3:2d:78:0d:09:5e:90:28:66:86:28:fd:74:b1:
fa:99:c0:b9:83:db:9d:c9:fd:fa:97:c7:58:4c:1d:
a1:ab:0b:f7:42:51:30:46:c2:4a:3f:f2:a4:3d:e8:
eb:b0:e9:5e:2c:b0:03:89:72:c9:60:f6:38:76:25:
e5:dd:a1:73:be:56:95:7f:1e:31:86:ff:75:1b:c1:
6a:5f:54:3b:78:44:53:26:19:60:3c:f5:48:cc:00:
66:1a:a8:d2:6b:4b:fd:21:7d:cc:3d:e7:f3:5a:b7:
f8:de:fe:e1:64:a8:a5:39:69:5c:e8:9e:da:ae:ca:
34:e4:0b:18:76:cf:ca:49:ec:d6:89:83:bb:a6:28:
ce:3d:3c:d4:5b:69:b5:88:4c:90:ef:81:93:9f:20:
cd:0a:c7:0f:49:8c:7b:e2:52:d1:89:21:56:48:27:
94:1f:28:2b:46:62:c2:35:39:f3:f7:32:34:39:87:
82:c4:3d:75:2c:47:cb:80:b1:e1:2e:cd:fe:5d:00:
bb:09:fb:ac:f2:a6:36:b1:22:42:a3:1a:a4:b0:6b:
8c:bf:a3:44:fa:9c:f6:7d:ea:e7:fe:76:8f:de:ff:
23:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E0:0A:60:66:81:C9:6F:13:E7:87:13:15:27:43:BD:CC:E6:EF:A8
X509v3 Authority Key Identifier:
keyid:25:2C:4E:2B:F5:F2:13:84:62:EF:4A:5D:9E:0F:6E:7A:76:35:30:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSxOK_XyE4Ri70pdng9uenY1MP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/bbba88-1344-4d89-8f52-6df7bf59e326/1/1-uAKYGaByW8T54cTFSdDvczm76g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/bbba88-1344-4d89-8f52-6df7bf59e326/1/JSxOK_XyE4Ri70pdng9uenY1MP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.102.0/24
IPv6:
2a10:da80::/29
Signature Algorithm: sha256WithRSAEncryption
33:7e:d7:b2:bf:22:ec:a5:3d:17:f5:95:c5:64:ca:f3:5b:dc:
e5:16:98:47:86:6a:b6:e5:4e:e9:ac:6c:8e:ac:02:f3:52:69:
db:ee:55:eb:10:17:e5:04:29:f5:13:93:d7:db:70:24:30:90:
08:c2:57:0e:e9:73:47:33:57:36:ad:49:a5:2a:87:33:c8:01:
63:28:29:ff:bb:e6:d4:d8:23:ed:28:cc:fd:35:4a:10:80:39:
a0:9e:b9:60:4f:c3:2c:61:54:00:30:f3:13:8d:29:83:3a:2b:
3f:45:79:86:72:76:33:a5:32:0b:6f:06:4d:16:7f:d0:15:18:
c3:26:98:44:aa:1c:1f:e8:36:e2:2e:4d:ea:1e:91:8c:e6:fc:
92:43:e3:c3:d3:95:53:1a:81:9a:b6:74:c7:6c:d8:f8:49:ba:
f2:a9:22:4d:6f:bd:12:84:57:33:e9:86:dc:be:96:dd:73:79:
87:f6:97:9e:20:0f:54:19:d9:36:1c:6c:bc:4d:f8:7e:8f:16:
5c:cd:cf:bf:bd:f2:1e:cc:7f:73:e2:eb:d7:8b:5a:ce:22:22:
30:3e:21:a4:02:7f:44:4b:3a:70:95:f0:e0:ab:2b:26:d6:fd:
28:2c:1b:b2:a7:2f:9f:8b:42:38:b0:f2:fd:c0:f4:a1:93:f9:
7c:44:35:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:15 2023 by rpki-client on console-fra.rpki-client.org