Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/uxB_qI__wTVZgTCCHBXfZ8o5FWc.roa
File: uxB_qI__wTVZgTCCHBXfZ8o5FWc.roa (raw, json)
Hash identifier: 6R6sTrdHnCQo/TyxS6xjNcsAoApzgZglEg89JCrr3pE=
Subject key identifier: BB:10:7F:A8:8F:FF:C1:35:59:81:30:82:1C:15:DF:67:CA:39:15:67
Certificate issuer: /CN=22582c47b01e06d883694841e3c980382c559406
Certificate serial: 016DB49D
Authority key identifier: 22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/uxB_qI__wTVZgTCCHBXfZ8o5FWc.roa
Signing time: Wed 13 Apr 2022 16:09:31 +0000
ROA not before: Wed 13 Apr 2022 16:09:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.52.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23966877 (0x16db49d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22582c47b01e06d883694841e3c980382c559406
Validity
Not Before: Apr 13 16:09:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb107fa88fffc135598130821c15df67ca391567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c4:b4:2e:d9:b3:25:31:2f:26:7f:ce:e9:aa:
1f:28:08:64:cf:10:17:29:4e:aa:39:6d:24:46:50:
79:b8:ff:b2:e8:fd:8e:53:eb:c5:6c:16:ad:9c:6a:
a3:6f:92:f6:12:b8:6c:d8:ab:3a:a7:83:53:97:9d:
d9:b1:c2:a4:d2:4d:3b:68:c3:76:45:05:5c:96:e4:
90:cb:85:85:02:50:ff:52:18:7f:86:e3:5a:d4:6a:
6f:44:ca:93:ca:14:24:50:e9:a6:e7:3f:0c:73:7b:
5a:7f:3c:b4:cf:c5:54:be:1a:29:b3:d8:d9:f9:2b:
cb:02:c2:6e:1b:9a:c3:84:97:18:70:3e:90:0a:db:
a5:34:2b:bd:bc:e9:90:ae:63:85:c2:70:ec:5b:47:
2e:06:73:1c:e3:49:45:9f:27:1c:f3:c0:21:a1:29:
b3:55:af:89:57:d1:02:d6:7e:23:92:cc:ff:cd:99:
0e:e0:7b:88:99:73:eb:27:b2:82:3b:4f:d4:a6:3c:
4f:78:aa:53:6d:c9:c0:75:32:41:83:0b:c5:9e:e6:
f6:bc:94:3d:7b:be:02:4a:9b:94:b5:70:90:43:02:
54:04:0e:ee:63:42:fd:74:0d:20:77:25:32:86:c1:
52:98:fe:6d:ee:74:e0:25:51:a0:b3:77:ae:6d:2a:
85:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:10:7F:A8:8F:FF:C1:35:59:81:30:82:1C:15:DF:67:CA:39:15:67
X509v3 Authority Key Identifier:
keyid:22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/uxB_qI__wTVZgTCCHBXfZ8o5FWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/IlgsR7AeBtiDaUhB48mAOCxVlAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.20.0/24
Signature Algorithm: sha256WithRSAEncryption
02:04:50:51:74:79:ca:e3:41:f7:b5:1a:03:56:6b:96:ba:2b:
11:7e:32:d2:c5:e7:b2:9e:2e:90:5b:26:53:d1:df:75:89:72:
b0:b5:fe:dd:6a:f7:32:83:ee:5f:e7:43:48:a3:9c:2a:00:62:
b9:d4:73:67:5d:f5:10:53:79:38:fe:fe:7b:35:bb:c0:a0:8a:
85:32:8b:82:eb:5e:c6:92:14:9f:02:75:1d:56:6b:7b:d6:d6:
ac:94:e2:41:aa:e7:5f:30:a1:1b:77:7a:95:77:31:12:b6:61:
ee:cc:ea:d3:a8:32:e1:5f:c0:88:53:93:21:ec:c2:81:69:65:
c3:87:30:46:4c:6f:1a:ca:79:92:5c:e6:f0:48:23:db:c7:8d:
0b:48:0b:c4:3b:4d:f1:2b:03:d4:12:9b:be:1c:26:22:0d:ca:
1e:6b:c6:0f:d7:44:d6:33:1f:4f:db:25:af:64:10:6e:03:fa:
c2:da:ec:6e:c3:52:cb:61:8c:0c:a2:c2:fd:00:d9:ac:a8:25:
4b:06:f4:0f:13:89:8c:4f:c8:3a:eb:78:c6:99:eb:8a:f7:08:
19:57:d2:7d:ad:7d:d7:c9:f6:9f:9c:aa:73:b8:b0:f7:b8:ad:
46:9b:de:e3:d8:bc:0c:68:e9:ff:00:27:a2:ea:d8:1f:67:5e:
f3:29:5f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:21 2023 by rpki-client on console-ams.rpki-client.org