Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/4a164e-1e58-4105-bed1-407af89ad8e9/1/UHMT_o_AHH4wWLz2tLIHOqbwrkU.roa
File: UHMT_o_AHH4wWLz2tLIHOqbwrkU.roa (raw, json)
Hash identifier: BbCqgEclVyUSaHxLi/Z/TIi7jW7Mj8N1+mn3r4uTj9M=
Subject key identifier: 50:73:13:FE:8F:C0:1C:7E:30:58:BC:F6:B4:B2:07:3A:A6:F0:AE:45
Certificate issuer: /CN=137f23944e3d78da920055d72c74d02be5455f35
Certificate serial: 066E3851
Authority key identifier: 13:7F:23:94:4E:3D:78:DA:92:00:55:D7:2C:74:D0:2B:E5:45:5F:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E38jlE49eNqSAFXXLHTQK-VFXzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/4a164e-1e58-4105-bed1-407af89ad8e9/1/UHMT_o_AHH4wWLz2tLIHOqbwrkU.roa
Signing time: Sat 07 May 2022 06:51:01 +0000
ROA not before: Sat 07 May 2022 06:51:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58744
IP address blocks: 185.252.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107886673 (0x66e3851)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137f23944e3d78da920055d72c74d02be5455f35
Validity
Not Before: May 7 06:51:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=507313fe8fc01c7e3058bcf6b4b2073aa6f0ae45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:29:6f:c2:84:f2:70:d2:92:15:62:b6:56:48:
df:3f:6d:a0:0f:5f:be:f9:b2:30:db:ea:84:e4:1d:
63:2c:85:c0:99:85:37:80:20:c5:e7:ab:a9:48:30:
b2:5f:ba:a0:d0:26:29:1f:8c:d6:73:71:51:e5:22:
d6:ea:9d:b7:86:12:d2:64:8e:38:a8:7d:b1:43:9f:
81:06:37:0f:ca:53:b6:aa:01:d6:1f:05:d0:6f:62:
f2:3c:b1:90:cb:0e:33:c3:2c:31:2f:c6:86:d3:d2:
4c:d6:3e:66:de:31:30:43:69:31:9e:f7:a0:69:f3:
7f:d9:0e:df:e1:e5:f6:d1:88:9e:29:b9:38:7e:11:
cf:01:c6:ca:06:8c:4c:4e:af:70:a8:36:63:7d:6d:
1b:66:30:00:b2:c5:f6:38:c4:9f:12:7b:78:f2:a5:
08:5b:42:9e:d1:ef:99:49:85:48:35:4c:04:9d:e4:
38:ae:f3:98:d8:ea:0d:59:3b:f0:7f:20:b2:c8:8c:
48:9a:e6:8f:31:6a:4c:d3:bb:b1:5b:b5:6b:59:b7:
58:dc:1d:82:ec:81:51:fb:4e:f7:99:90:a5:fe:a0:
f6:47:31:79:51:87:8f:d2:6f:d2:c1:fc:5b:1c:b4:
3a:03:d8:30:50:f1:1d:39:86:0e:9e:80:09:22:6f:
2b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:73:13:FE:8F:C0:1C:7E:30:58:BC:F6:B4:B2:07:3A:A6:F0:AE:45
X509v3 Authority Key Identifier:
keyid:13:7F:23:94:4E:3D:78:DA:92:00:55:D7:2C:74:D0:2B:E5:45:5F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E38jlE49eNqSAFXXLHTQK-VFXzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/4a164e-1e58-4105-bed1-407af89ad8e9/1/UHMT_o_AHH4wWLz2tLIHOqbwrkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/4a164e-1e58-4105-bed1-407af89ad8e9/1/E38jlE49eNqSAFXXLHTQK-VFXzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.252.0/22
Signature Algorithm: sha256WithRSAEncryption
55:06:a9:3e:ca:dd:fd:06:59:52:c6:8c:91:21:7c:c4:19:58:
69:87:1a:e5:b7:34:7d:e2:7b:63:e1:e5:5b:09:9e:69:a8:dd:
e4:63:48:2b:11:89:fd:d6:ce:b5:0d:8e:80:82:60:2a:83:d2:
7f:67:b6:7e:ea:b9:2c:0b:33:8d:8c:6d:d2:98:4f:c5:e3:56:
29:d5:c5:c9:7c:5c:bf:e6:58:51:d6:8b:91:0c:b6:f0:d7:40:
0f:3d:2c:35:a1:cc:66:29:bf:cd:de:eb:aa:e3:5a:82:c8:09:
26:4e:1f:3e:c3:b3:9a:fd:60:7f:15:f4:2c:5c:2a:7f:13:51:
de:d1:f1:6c:ae:ab:41:df:db:b3:d5:56:60:e6:58:fa:43:57:
81:ab:90:76:ad:d6:0c:9b:76:cc:fd:3c:62:23:08:e8:a6:f8:
8e:30:59:1e:fa:14:9b:0e:1f:ee:78:54:7f:3d:37:66:06:7f:
40:bf:14:a5:29:aa:39:80:4d:3f:b4:ad:00:ea:3c:10:5f:7e:
fc:0d:a3:cf:77:7a:5f:b4:49:d3:d5:2d:3e:01:b3:6e:1c:d3:
8f:c7:d9:53:39:f4:51:14:a5:f5:19:05:93:a3:9a:d5:b4:25:
fe:0f:17:0f:f9:3a:50:b6:cd:19:ba:65:d9:1b:56:8d:5f:71:
f9:2b:28:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:35 2023 by rpki-client on console-ams.rpki-client.org