Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/uxYYj24EnZ2IPlYa42e6wO2eVso.roa
File: uxYYj24EnZ2IPlYa42e6wO2eVso.roa (raw, json)
Hash identifier: ABqmK2RLIY0P+QRDFe73i4EB1Rrve5rlh23XNIVIrIo=
Subject key identifier: BB:16:18:8F:6E:04:9D:9D:88:3E:56:1A:E3:67:BA:C0:ED:9E:56:CA
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0C98DF75
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/uxYYj24EnZ2IPlYa42e6wO2eVso.roa
Signing time: Mon 30 May 2022 09:57:14 +0000
ROA not before: Mon 30 May 2022 09:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197343
IP address blocks: 2.189.128.0/20 maxlen: 20
2.189.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211345269 (0xc98df75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: May 30 09:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb16188f6e049d9d883e561ae367bac0ed9e56ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2d:9c:85:59:11:5c:f3:ec:45:22:9e:bc:0e:
f1:c9:df:85:34:59:ec:11:2e:f4:32:08:cb:d6:75:
48:aa:4b:9a:f7:38:3f:e6:6e:4f:f9:bc:b0:de:ca:
54:07:24:15:0a:17:3a:a9:80:8d:8f:23:68:1c:71:
50:a7:05:2b:2a:03:e4:85:f3:ae:e8:1a:a2:66:cf:
22:d1:f3:61:5c:3c:c8:36:a0:ae:f9:ef:aa:14:3f:
df:e3:8d:77:32:82:b0:b3:31:24:c4:1e:a8:6f:32:
12:0e:e4:b8:fb:2d:24:10:2f:61:65:f6:83:95:93:
36:fc:c1:37:05:87:07:6a:90:48:4f:95:df:ff:c7:
85:5c:35:8c:89:97:18:93:52:4c:e9:bb:84:10:29:
f6:26:9f:59:fc:b6:93:e3:09:0e:cb:21:fd:bb:9e:
10:7c:ed:4e:81:51:6f:de:39:5a:3f:60:8e:69:eb:
3c:55:ed:62:c6:98:f8:99:66:4f:81:97:79:7f:f9:
4b:44:5a:4b:d4:0d:70:e1:e7:29:b8:53:56:af:c2:
a0:15:e5:77:57:a8:4f:b6:89:67:92:31:2b:f2:1c:
f4:a3:2f:50:ef:56:34:b7:20:4e:5c:ce:59:d1:11:
e7:c8:6b:76:7c:5e:60:8b:1f:5e:15:3b:98:72:19:
24:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:16:18:8F:6E:04:9D:9D:88:3E:56:1A:E3:67:BA:C0:ED:9E:56:CA
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/uxYYj24EnZ2IPlYa42e6wO2eVso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.189.128.0/19
Signature Algorithm: sha256WithRSAEncryption
77:5c:ff:90:63:66:80:61:cb:82:c6:04:80:9f:4c:7b:4d:2e:
20:74:5d:94:b7:56:2a:e6:f7:21:c9:64:b4:a2:77:75:fa:37:
5e:d4:64:28:7a:f1:9b:8d:5b:de:6a:26:cc:59:18:70:0a:92:
22:09:fb:24:c7:a5:09:80:07:4b:92:7c:c3:42:d9:af:57:4a:
44:5c:61:5e:cb:df:b2:74:74:1b:79:00:97:9d:4b:69:9b:ce:
97:7e:d5:50:d6:e2:50:ec:c4:67:39:07:19:40:ec:1b:df:81:
33:96:5c:8d:37:cc:f9:b3:b0:7b:d8:33:f0:7d:0b:22:fc:38:
43:1b:a3:85:da:15:5a:c9:bc:8c:62:a6:25:21:a8:e7:aa:04:
41:87:b1:fc:e1:21:55:3b:59:d5:57:68:6f:1c:95:81:46:df:
1d:c1:0c:81:6c:01:50:c8:d1:30:4b:50:30:78:d5:c7:01:03:
79:d4:20:97:4a:f9:79:64:b7:73:52:dd:b9:08:4a:b9:94:83:
38:c9:d4:6e:76:20:03:8b:2d:98:66:ef:8c:43:1d:fb:aa:75:
f7:00:09:a3:f6:b2:75:17:93:c2:27:10:e4:42:af:e1:bc:a7:
b1:87:f4:56:ce:17:26:ac:2e:d7:a3:8d:7e:dd:67:b4:49:fc:
be:dc:2e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org