Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/321c0d-3671-4927-8937-1f856c093ae8/1/UiMwJ3r3wwJDUFzLbDYtUybLkrU.roa
File: UiMwJ3r3wwJDUFzLbDYtUybLkrU.roa (raw, json)
Hash identifier: 0QbL5wYzRfutsFxbRkXZHYdoLYzOlhGzFo66ouuiRN8=
Subject key identifier: 52:23:30:27:7A:F7:C3:02:43:50:5C:CB:6C:36:2D:53:26:CB:92:B5
Certificate issuer: /CN=412ac83a27ca8723c61b1446c3e678110c650689
Certificate serial: 09E95FBA
Authority key identifier: 41:2A:C8:3A:27:CA:87:23:C6:1B:14:46:C3:E6:78:11:0C:65:06:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSrIOifKhyPGGxRGw-Z4EQxlBok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/321c0d-3671-4927-8937-1f856c093ae8/1/UiMwJ3r3wwJDUFzLbDYtUybLkrU.roa
Signing time: Sat 01 Jan 2022 12:01:21 +0000
ROA not before: Sat 01 Jan 2022 12:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24632
IP address blocks: 193.111.112.0/23 maxlen: 23
193.111.108.0/22 maxlen: 22
194.9.168.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166289338 (0x9e95fba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412ac83a27ca8723c61b1446c3e678110c650689
Validity
Not Before: Jan 1 12:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=522330277af7c30243505ccb6c362d5326cb92b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e9:b2:b9:8d:58:5f:79:d6:df:0c:71:1d:3c:
92:79:be:43:22:b0:2f:a7:c2:ab:c1:c6:bb:4a:a2:
6b:11:b3:ca:ab:2a:df:be:be:74:55:6d:5b:bd:df:
36:f0:a9:ad:d7:69:a6:ee:fa:62:02:f0:5e:23:a6:
ab:18:52:2d:8e:d9:2a:8b:85:ab:e5:03:bc:ad:e6:
ac:8a:77:57:1c:a5:6d:7d:05:a1:08:27:b4:ac:bb:
ae:75:82:73:7b:d9:ee:be:37:ef:53:96:81:4b:38:
f6:fd:d2:8c:f0:fe:45:63:2e:44:9d:77:bf:40:8c:
0e:41:5f:97:fe:1d:d6:51:d1:f1:7a:a7:4f:d1:97:
c8:84:7b:00:99:4a:d2:c0:48:49:dd:de:33:93:ef:
25:ce:6f:7e:91:81:4e:5f:27:b6:55:3b:b0:53:3b:
79:2a:3c:07:15:3c:b5:8d:23:cc:53:a3:e3:df:a1:
e0:d3:ce:40:5e:81:4e:84:96:2e:21:eb:dc:72:ac:
1a:5e:30:be:ea:bc:f8:35:4c:6c:18:ac:72:79:53:
f4:cd:5f:dc:7e:4c:65:20:cf:6c:c7:5d:7d:4c:10:
a4:ce:86:44:89:59:4f:55:fb:ca:6e:ff:59:53:9a:
dd:cf:81:0c:f7:38:c5:99:f5:3f:fd:ed:38:82:90:
02:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:23:30:27:7A:F7:C3:02:43:50:5C:CB:6C:36:2D:53:26:CB:92:B5
X509v3 Authority Key Identifier:
keyid:41:2A:C8:3A:27:CA:87:23:C6:1B:14:46:C3:E6:78:11:0C:65:06:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSrIOifKhyPGGxRGw-Z4EQxlBok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/321c0d-3671-4927-8937-1f856c093ae8/1/UiMwJ3r3wwJDUFzLbDYtUybLkrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/321c0d-3671-4927-8937-1f856c093ae8/1/QSrIOifKhyPGGxRGw-Z4EQxlBok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.108.0-193.111.113.255
194.9.168.0/23
Signature Algorithm: sha256WithRSAEncryption
58:b0:1a:e6:93:d5:96:47:88:d9:86:c2:37:dd:9c:ec:2c:71:
79:e9:f1:b3:82:f1:fb:ed:25:9e:91:7a:d3:d5:3b:5f:13:9a:
04:94:dd:ec:4d:24:ca:c5:04:6f:ce:73:c2:92:a0:80:55:e0:
bc:d5:e7:47:56:00:27:da:86:9e:88:0f:17:8e:76:0a:4f:99:
cb:53:b0:f6:0d:00:4a:07:c9:e7:f5:13:70:af:b5:cc:cc:8f:
c9:9e:2c:7c:7f:28:aa:b7:bc:3d:ce:39:5a:81:5c:c3:7e:45:
45:ae:c7:fd:b0:9d:05:5e:06:bf:c0:a7:1d:0d:fd:1c:f0:8a:
00:95:10:85:0f:10:f0:f5:53:46:c8:d0:1c:f5:b8:d4:7f:41:
a0:9a:bd:24:c7:52:d0:c5:7f:c5:10:f9:d9:c9:51:f9:28:9d:
17:5e:ea:47:ee:19:d9:e2:96:fa:fd:44:22:3b:a2:31:d2:ce:
f6:df:12:48:cf:70:e6:4d:f6:44:cd:ee:09:1e:a8:b4:6f:63:
a3:b2:fa:13:52:06:d3:fb:0a:c2:1d:2a:95:28:e3:bd:3d:54:
ac:99:e6:5a:ff:55:7d:55:b2:49:3a:90:7f:e7:df:58:4b:60:
61:a3:cf:d1:e3:8e:ff:2e:70:fc:fb:5a:44:3a:11:7e:29:d2:
16:ff:2d:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:30 2024 by rpki-client on console-fra.rpki-client.org