Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6a900a-8b5c-407b-a094-898036734878/1/UTFaVPc4fb-I0f0biiUTI-aN0EM.roa
File: UTFaVPc4fb-I0f0biiUTI-aN0EM.roa (raw, json)
Hash identifier: JnGcpFXCbWN9oA9WgaMECTlV0S2fBnvyvtIeDDFVUyU=
Subject key identifier: 51:31:5A:54:F7:38:7D:BF:88:D1:FD:1B:8A:25:13:23:E6:8D:D0:43
Certificate issuer: /CN=197499be97bcc327f64e9eb8c42394508ca06d65
Certificate serial: 038C02
Authority key identifier: 19:74:99:BE:97:BC:C3:27:F6:4E:9E:B8:C4:23:94:50:8C:A0:6D:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GXSZvpe8wyf2Tp64xCOUUIygbWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6a900a-8b5c-407b-a094-898036734878/1/UTFaVPc4fb-I0f0biiUTI-aN0EM.roa
Signing time: Thu 16 Jun 2022 07:19:50 +0000
ROA not before: Thu 16 Jun 2022 07:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34184
IP address blocks: 194.150.186.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 232450 (0x38c02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=197499be97bcc327f64e9eb8c42394508ca06d65
Validity
Not Before: Jun 16 07:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51315a54f7387dbf88d1fd1b8a251323e68dd043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f4:23:f6:70:de:a7:6b:37:42:1e:64:7d:40:
6c:09:62:93:4f:53:49:fe:fa:e4:ac:9f:32:3a:fa:
83:ce:73:a7:69:ed:e6:1a:c3:8b:b1:49:fb:2a:2e:
d1:ae:9e:07:4e:91:62:7f:18:74:83:6f:fa:46:27:
41:d4:e9:a1:ba:ad:33:d5:a9:bf:cd:8b:e6:88:f9:
ce:3b:82:e2:e2:b1:7a:bb:87:ff:a6:60:c2:df:b2:
8f:dc:1d:14:f9:e6:48:c9:1b:da:42:18:eb:35:5d:
1e:49:bb:d6:5a:9a:b0:b2:3f:f7:48:f5:86:dd:79:
01:8b:9a:df:be:26:14:28:ef:49:d8:d1:b5:07:8f:
9d:e4:b6:21:c0:c7:1d:1b:e5:61:08:d8:45:d5:71:
00:b5:d2:dc:f6:5b:33:0c:05:70:f8:b3:ca:3a:11:
9d:5d:af:08:b6:1a:5e:62:a9:db:0a:47:d1:e9:2e:
67:75:13:8a:22:10:06:a0:33:60:4f:28:80:b2:9a:
89:d9:9a:16:63:d2:77:cc:3d:73:58:fc:46:6e:5e:
5c:41:62:8a:69:4d:82:10:b6:ac:0e:f8:ce:f7:3f:
a0:9d:0e:81:9a:74:3d:a5:4b:6d:72:79:70:c0:d7:
cf:0c:bb:f0:4c:ea:cd:c7:b3:2a:e0:7c:bb:a5:7f:
ea:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:31:5A:54:F7:38:7D:BF:88:D1:FD:1B:8A:25:13:23:E6:8D:D0:43
X509v3 Authority Key Identifier:
keyid:19:74:99:BE:97:BC:C3:27:F6:4E:9E:B8:C4:23:94:50:8C:A0:6D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GXSZvpe8wyf2Tp64xCOUUIygbWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6a900a-8b5c-407b-a094-898036734878/1/UTFaVPc4fb-I0f0biiUTI-aN0EM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6a900a-8b5c-407b-a094-898036734878/1/GXSZvpe8wyf2Tp64xCOUUIygbWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.186.0/23
Signature Algorithm: sha256WithRSAEncryption
97:cf:c8:84:41:2f:ff:dc:3e:2f:34:5b:b7:be:c2:2b:ca:7d:
10:c7:dc:78:c5:03:d8:21:46:36:ff:3b:ea:40:af:e7:c2:6e:
16:b3:58:62:d6:ac:9c:a2:e7:64:8e:b6:b2:02:ec:c9:ce:da:
f6:10:cd:ce:d2:45:fc:fd:e1:32:f6:55:46:03:a8:24:80:b0:
1c:ad:e0:07:fd:7a:d4:2d:24:de:31:de:eb:8e:83:2f:a6:ce:
39:1f:8f:c9:dd:04:5e:90:16:ab:3e:bf:5b:73:90:1e:35:5e:
8f:60:7b:54:9d:ee:01:eb:79:1b:5b:ba:d1:33:56:71:77:ef:
e7:25:f8:99:ed:97:94:ef:51:b0:81:9e:9f:f0:5b:1e:f3:20:
25:1a:a0:5f:b5:58:9c:83:b8:ac:d8:18:f0:e4:3a:36:2b:86:
15:a4:3d:2e:06:11:26:2d:14:0e:e5:d2:92:d8:b7:4e:5e:a0:
56:4e:d4:e7:c1:9e:9f:70:a7:d0:d5:5f:5d:0b:d1:9c:9d:aa:
44:f0:03:06:8b:b7:60:38:9f:82:47:13:6d:c1:ee:c5:2f:99:
9c:cd:04:db:a0:ea:1d:16:ee:fb:ff:05:20:2a:99:86:64:ca:
0a:2f:93:87:c2:83:10:a2:d3:77:c4:e5:f6:9c:f1:d7:1b:91:
81:96:e1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:59 2025 by rpki-client