Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/uxPj1VQbJMDqW1jRioKdjtT1aWo.roa
File: uxPj1VQbJMDqW1jRioKdjtT1aWo.roa (raw, json)
Hash identifier: jeUUyl2TzPbtSzb0qq5sbCDXgRJqNDgvV+4kUjMzpFo=
Subject key identifier: BB:13:E3:D5:54:1B:24:C0:EA:5B:58:D1:8A:82:9D:8E:D4:F5:69:6A
Certificate issuer: /CN=60fcd55b9130858d8ea583c0987dad00f614db39
Certificate serial: 01821F8939E2802D5203CE8B348C63102F0F
Authority key identifier: 60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/uxPj1VQbJMDqW1jRioKdjtT1aWo.roa
Signing time: Thu 21 Jul 2022 06:54:23 +0000
ROA not before: Thu 21 Jul 2022 06:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:89:39:e2:80:2d:52:03:ce:8b:34:8c:63:10:2f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60fcd55b9130858d8ea583c0987dad00f614db39
Validity
Not Before: Jul 21 06:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb13e3d5541b24c0ea5b58d18a829d8ed4f5696a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8f:c8:16:da:32:00:a0:9a:ed:4a:fc:79:f7:
77:75:14:ac:60:09:70:d1:d1:72:5b:4f:f9:d0:9d:
58:50:c0:fe:0c:fa:0d:6f:b2:f2:cd:27:43:8c:63:
e4:24:ab:4c:bb:d5:7e:a4:95:11:77:cf:5f:f7:71:
e1:87:c2:64:9a:be:a3:67:bf:99:e3:3a:56:7b:9a:
71:d0:2d:eb:fe:f0:41:f8:a9:17:85:f9:b8:dd:9e:
51:b6:a1:40:70:b2:ee:57:92:45:3a:70:ad:ff:af:
01:0f:86:78:7a:13:4a:fa:c3:0f:8e:c0:bf:fd:ec:
92:54:13:d3:09:9c:b9:55:14:29:29:f1:49:e8:92:
bc:08:16:d7:1d:6a:df:37:e2:07:a5:fd:c8:cf:c2:
3a:46:70:e4:85:3c:d3:7c:8a:02:ae:a7:b7:76:bc:
17:7f:a2:a4:ba:bc:47:dd:a2:01:a2:2d:b9:42:b9:
93:cc:74:11:31:fa:99:fe:7d:cf:37:91:ba:1a:48:
c7:8e:4f:2b:fd:2c:ef:f9:db:6c:cd:94:8c:af:16:
1c:43:a6:de:fe:0d:ca:88:ad:fd:0e:d1:68:6e:5a:
60:4c:d0:e8:67:63:17:ca:9e:c2:9e:f5:27:15:b0:
df:9a:ae:e3:ed:1b:af:75:24:d7:23:8f:0c:ff:75:
09:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:13:E3:D5:54:1B:24:C0:EA:5B:58:D1:8A:82:9D:8E:D4:F5:69:6A
X509v3 Authority Key Identifier:
keyid:60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/uxPj1VQbJMDqW1jRioKdjtT1aWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/YPzVW5EwhY2OpYPAmH2tAPYU2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.122.0/24
Signature Algorithm: sha256WithRSAEncryption
94:b6:10:d8:e2:8a:8c:ed:b7:5e:ba:a2:55:0a:59:36:c8:18:
a0:d2:a3:4a:c6:90:d4:a9:fb:a3:4d:14:d8:1f:9e:ad:fc:ae:
a5:77:ba:43:ce:70:db:6f:5a:a6:c0:4b:af:42:02:f0:48:79:
a9:be:b0:d5:5a:53:2c:1f:d3:f1:55:76:4a:91:3d:6c:dd:0e:
70:93:8b:74:48:60:cf:de:4d:b8:37:a8:32:52:25:f0:bf:ae:
6f:54:0e:94:bb:06:ff:8a:59:64:89:5f:f6:ed:84:ff:4b:ac:
57:a9:2e:20:74:b8:2d:20:16:72:dc:1c:bf:39:ca:36:3c:1b:
98:4a:06:0a:c3:a7:c8:93:52:01:f2:00:2b:d7:38:54:64:ac:
72:ff:96:9a:03:13:e8:22:de:55:bd:9a:18:aa:0d:e3:3f:8b:
90:e2:58:ab:ba:61:b5:98:4e:52:6b:1e:55:b3:aa:5d:89:a4:
2c:6d:8b:b7:5e:5e:e8:97:f7:92:fb:b0:5f:1e:9b:8c:52:86:
1a:00:cc:9b:8b:ff:fa:c1:bb:fa:a9:29:1c:6d:5d:40:08:50:
ba:ec:e5:84:cf:d6:45:18:42:a4:eb:08:6c:aa:b5:ea:43:23:
06:42:dd:9c:cc:f3:07:0b:93:65:99:da:7d:da:0e:bb:eb:62:
64:b7:2f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:25 2024 by rpki-client on console-fra.rpki-client.org