Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/ucpZfhI3P1Qw93tnOr44MBuonjU.roa
File: ucpZfhI3P1Qw93tnOr44MBuonjU.roa (raw, json)
Hash identifier: I9ul9m76w1HhHeIQuIJuRKCf/dwU7M70HRL023x3fck=
Subject key identifier: B9:CA:59:7E:12:37:3F:54:30:F7:7B:67:3A:BE:38:30:1B:A8:9E:35
Certificate issuer: /CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Certificate serial: 018481DF9364A2EAEE144D0AA9D8F01F19E8
Authority key identifier: B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/ucpZfhI3P1Qw93tnOr44MBuonjU.roa
Signing time: Wed 16 Nov 2022 19:17:03 +0000
ROA not before: Wed 16 Nov 2022 19:17:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43444
IP address blocks: 178.159.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:81:df:93:64:a2:ea:ee:14:4d:0a:a9:d8:f0:1f:19:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Validity
Not Before: Nov 16 19:17:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9ca597e12373f5430f77b673abe38301ba89e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:11:0b:b5:f9:ee:3a:91:75:ed:5e:a2:d2:b6:
0f:5e:e7:17:4b:f9:7c:b8:8f:9a:a2:a7:cd:c8:8a:
1a:8a:ce:b3:fd:6b:91:f8:3e:99:84:64:80:4c:e5:
19:65:fe:4c:06:db:92:eb:7c:a1:d1:31:3a:84:cd:
7e:4f:0b:f0:46:7b:d6:a1:a1:5a:39:c6:9b:4d:c0:
1a:6f:06:a8:b2:97:e9:22:23:1d:67:9a:fb:e5:e4:
70:6a:6d:18:58:8d:07:f1:de:ca:c4:40:a4:9d:6a:
03:05:92:b9:e3:de:85:9b:c9:40:ee:da:49:eb:e0:
a9:c4:26:fa:1a:1b:e9:53:2b:fb:d9:50:f0:84:8e:
59:0d:3a:76:8f:4a:52:09:4b:6c:66:be:04:21:e0:
fb:a3:91:0f:5c:0b:53:5f:b8:98:f0:ce:e3:76:a8:
57:16:6f:60:1b:66:a9:2a:08:04:29:46:e0:6b:a9:
08:38:c8:bf:5a:fd:f0:a8:07:ed:f0:ca:26:5a:05:
45:30:49:fa:e9:03:8e:23:7e:2c:08:94:61:0c:d7:
e8:cc:3f:4f:64:74:a7:a3:8b:a7:44:13:7f:9d:85:
36:b4:f8:14:64:fc:1a:12:4b:1f:00:79:af:2f:b2:
e0:05:b6:a0:1f:75:99:aa:7c:9b:59:0d:38:06:4d:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:CA:59:7E:12:37:3F:54:30:F7:7B:67:3A:BE:38:30:1B:A8:9E:35
X509v3 Authority Key Identifier:
keyid:B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/ucpZfhI3P1Qw93tnOr44MBuonjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/uC57gGjErprkykw6ayCWGZp0H_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.99.0/24
Signature Algorithm: sha256WithRSAEncryption
55:6c:f5:11:04:bb:a7:d9:c9:de:ca:51:5e:e5:e9:6f:03:7b:
d4:ab:d6:76:61:5a:dd:96:b2:79:f8:c6:31:04:0c:90:4a:8a:
46:ba:fd:cc:95:bf:12:ae:97:17:bb:84:d5:5d:cc:07:9a:29:
59:77:4a:c1:a3:d9:b4:60:f8:6c:6f:7d:e9:5e:6d:fa:80:94:
a9:d8:6b:e3:a2:24:ed:40:e2:d6:ac:3f:28:70:db:a5:3f:f2:
88:03:b2:44:ee:b0:ff:45:33:66:15:5e:73:f6:f8:d7:59:38:
03:f9:e6:52:a9:bf:c5:7e:31:82:ad:64:a2:75:67:3c:de:9a:
94:37:57:53:36:77:98:d7:7b:71:80:05:61:04:b1:bf:0f:b7:
ae:82:9d:d5:89:4d:00:0b:8c:90:62:5b:6a:c6:38:93:f7:11:
a3:2e:35:07:f2:05:c3:b2:dd:1e:8b:47:a0:10:14:2b:0a:2f:
b8:d4:dc:a3:19:55:51:48:ca:51:67:06:6a:0b:80:fb:1f:c0:
a3:29:77:9e:25:83:d5:dc:0f:59:22:db:59:08:2a:22:ab:3a:
a5:aa:71:cf:6e:f5:df:97:a2:ce:82:3e:0e:63:3d:a5:c6:8b:
64:ec:50:00:f3:97:b9:09:7c:e0:84:6a:8e:a7:00:3f:39:b3:
49:35:c8:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:44 2024 by rpki-client on console-fra.rpki-client.org