Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/UfEdbXF_WbmpVxRkwbBVVbiZMSs.roa
File: UfEdbXF_WbmpVxRkwbBVVbiZMSs.roa (raw, json)
Hash identifier: pe7OE/1iF6CRK+RRqoY3y1e6pRN7/J2ZU9PL3tHE4k0=
Subject key identifier: 51:F1:1D:6D:71:7F:59:B9:A9:57:14:64:C1:B0:55:55:B8:99:31:2B
Certificate issuer: /CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Certificate serial: 082E002F
Authority key identifier: 8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/UfEdbXF_WbmpVxRkwbBVVbiZMSs.roa
Signing time: Sat 01 Jan 2022 13:04:25 +0000
ROA not before: Sat 01 Jan 2022 13:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31183
IP address blocks: 109.235.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137232431 (0x82e002f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Validity
Not Before: Jan 1 13:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51f11d6d717f59b9a9571464c1b05555b899312b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c9:86:2d:e2:37:7c:f7:2a:ef:90:f2:23:45:
dc:59:7d:71:41:b0:44:14:13:61:3d:99:2e:a8:d6:
b2:c5:d2:8d:8a:b6:6b:1a:96:e7:52:a4:43:a0:e4:
0e:c3:e3:9a:8e:06:31:02:c4:b6:f4:54:3a:89:ea:
d9:cd:39:c9:7f:82:b2:9b:41:3b:10:ae:71:2a:41:
45:e4:83:0a:5a:4d:c6:f0:17:9b:73:37:40:f9:2a:
27:ac:1c:92:ff:55:67:a7:f4:3a:76:66:fa:33:c1:
5b:aa:76:30:c8:ea:6e:1d:f5:82:aa:2f:82:b3:f3:
87:39:2e:7d:bd:e5:4e:3b:e5:bf:c8:b7:de:6f:29:
3e:e7:8f:1a:15:35:ba:12:4b:9e:49:ce:d8:96:b1:
c0:c1:f4:37:b8:56:78:b1:66:7c:c5:dd:a8:a7:a7:
27:b4:d8:c5:3b:29:bb:14:b4:e4:25:fb:c9:19:0a:
cc:a3:cc:18:dd:ff:84:12:d2:d6:e4:e0:58:45:90:
60:5d:61:81:19:da:fd:5d:c7:5e:0c:88:6d:8d:c4:
fd:80:1f:be:26:1f:04:26:e9:1e:67:10:08:02:f8:
79:3f:b7:a0:f0:87:d5:0e:93:67:7e:d0:9a:6e:d4:
7c:4d:2a:74:27:29:6f:e2:bb:80:44:52:91:2f:03:
8e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F1:1D:6D:71:7F:59:B9:A9:57:14:64:C1:B0:55:55:B8:99:31:2B
X509v3 Authority Key Identifier:
keyid:8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/UfEdbXF_WbmpVxRkwbBVVbiZMSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.208.0/24
Signature Algorithm: sha256WithRSAEncryption
88:62:2b:17:09:82:16:5e:07:55:84:e4:b7:c9:f0:a8:dd:96:
4b:24:0d:df:57:3b:fb:78:5f:e0:35:86:5b:46:e1:eb:e4:f4:
ac:b3:a3:89:1a:e6:fd:2c:ba:8b:56:39:71:db:98:43:c2:1d:
49:c2:75:77:e0:f0:af:c9:07:5a:dd:70:3f:a5:d1:24:e2:e7:
14:7d:4d:24:97:1b:e6:51:c3:47:69:ff:5a:85:59:d5:a0:78:
bd:d6:2c:4e:b9:f7:f6:d7:64:41:87:80:e5:3d:62:82:33:36:
47:36:b2:e4:f3:98:d9:a6:3e:fc:c7:64:77:02:d8:f6:71:3c:
01:fa:13:b0:f8:2b:50:22:e0:ac:f7:c0:f6:ba:bb:45:b3:ca:
40:94:d8:e6:9b:bd:11:14:1c:7a:4b:f3:96:a4:a6:d0:3b:de:
c1:56:a7:31:72:38:e4:5b:ce:18:c7:3b:44:2b:26:ea:05:43:
0f:55:d2:bf:5a:4f:a4:43:8f:e7:6b:51:a2:6b:a9:fb:41:95:
b1:49:b1:4a:22:ec:c6:f0:14:f2:4d:d4:4e:af:87:f6:24:cf:
87:f2:79:ff:f9:01:7c:c9:14:dc:6e:a4:e8:09:90:17:f4:7a:
f6:57:05:71:d6:2b:0c:14:d8:9e:dc:d7:92:a1:f8:67:45:6c:
83:0a:67:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:32 2024 by rpki-client on console-fra.rpki-client.org